Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/f23fb6-3229-4e8b-936a-9279547eca55/1/KNerkkXuxiEeNgsfoPAm4R4IIYU.roa
File: KNerkkXuxiEeNgsfoPAm4R4IIYU.roa (raw, json)
Hash identifier: LUoGjIjoJ32uz4L8ICRZg130Yu4NVMUg/SLTTPHBnQ8=
Subject key identifier: 28:D7:AB:92:45:EE:C6:21:1E:36:0B:1F:A0:F0:26:E1:1E:08:21:85
Certificate issuer: /CN=049d4f66598668079353721c21935a00319f6759
Certificate serial: 01856CF864EA86A6F369DE7D01924A041BF8
Authority key identifier: 04:9D:4F:66:59:86:68:07:93:53:72:1C:21:93:5A:00:31:9F:67:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BJ1PZlmGaAeTU3IcIZNaADGfZ1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/f23fb6-3229-4e8b-936a-9279547eca55/1/KNerkkXuxiEeNgsfoPAm4R4IIYU.roa
Signing time: Sun 01 Jan 2023 10:54:56 +0000
ROA not before: Sun 01 Jan 2023 10:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 2a11:7400:d1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:f8:64:ea:86:a6:f3:69:de:7d:01:92:4a:04:1b:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=049d4f66598668079353721c21935a00319f6759
Validity
Not Before: Jan 1 10:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28d7ab9245eec6211e360b1fa0f026e11e082185
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:2b:ac:92:ce:a7:f8:eb:0c:0e:fe:57:e8:98:
92:f6:69:ff:42:3d:97:11:31:f0:3c:c7:78:52:56:
65:69:54:d5:8f:84:30:2f:bc:55:de:51:98:ff:06:
dc:cd:ba:cb:b0:a2:34:8c:84:7e:f7:d5:a8:1c:04:
3b:4a:43:d5:c7:e9:5d:7e:03:ae:f8:ce:84:8c:6a:
22:81:60:a1:dc:a3:3f:fe:17:8b:13:4d:c4:ef:01:
17:aa:b5:10:a9:38:96:90:29:ee:04:52:13:03:08:
4e:2e:fc:ac:d9:41:1b:42:41:e3:29:af:ae:95:1a:
aa:80:ab:12:06:84:84:1e:de:5e:06:b9:01:62:a6:
4b:f7:09:d0:9c:16:75:a4:b4:5a:5c:98:3e:43:cc:
5f:5f:37:4d:8e:d7:e1:68:1a:5b:dd:ff:44:fe:f5:
38:78:cd:86:03:59:b3:99:51:9a:8a:63:42:ad:8a:
5c:8d:6d:30:88:65:b9:91:f5:73:8e:7b:8e:60:9b:
41:be:00:26:1a:56:c4:e0:7a:03:71:d2:8b:c9:79:
c3:16:db:cc:3f:25:a8:b8:0a:c8:08:80:a7:b1:b9:
b0:31:67:27:8a:fe:70:06:55:a6:74:05:bf:60:f8:
dc:9c:a1:56:66:9a:e4:01:e9:5b:28:ad:2c:e0:f8:
5c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:D7:AB:92:45:EE:C6:21:1E:36:0B:1F:A0:F0:26:E1:1E:08:21:85
X509v3 Authority Key Identifier:
keyid:04:9D:4F:66:59:86:68:07:93:53:72:1C:21:93:5A:00:31:9F:67:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BJ1PZlmGaAeTU3IcIZNaADGfZ1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/f23fb6-3229-4e8b-936a-9279547eca55/1/KNerkkXuxiEeNgsfoPAm4R4IIYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/f23fb6-3229-4e8b-936a-9279547eca55/1/BJ1PZlmGaAeTU3IcIZNaADGfZ1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:7400:d1::/48
Signature Algorithm: sha256WithRSAEncryption
06:7f:70:9e:58:5a:20:7c:f2:ed:06:24:2d:fe:60:2b:b6:ac:
bc:c0:30:37:53:3e:91:42:1a:36:36:e2:36:11:f2:b7:3f:cb:
69:e7:99:65:43:58:a8:9c:fb:d9:93:b3:da:fd:95:d7:14:11:
5d:f7:d8:4d:f1:da:d2:63:db:45:6b:f4:9d:15:16:6d:0c:e9:
40:ca:46:8b:2f:7f:92:b0:d1:29:6f:cc:fb:fe:86:a1:19:30:
f5:1e:83:a9:33:7d:ec:66:12:4c:17:ad:58:6c:67:b1:b2:43:
96:88:33:19:95:0a:e6:c3:75:1e:57:f8:3f:e5:8a:c7:97:90:
d7:68:8c:47:37:4d:35:1f:3d:4c:a4:d3:f9:82:f6:88:38:79:
6c:78:07:f1:fa:0c:7c:37:06:b4:5a:fe:3a:db:63:31:06:e0:
02:a5:23:2a:06:e7:36:bf:b0:fe:09:f8:ba:26:2e:b3:74:06:
90:5f:f0:bd:f1:8d:b4:14:8b:7e:21:30:5a:9b:92:71:a8:d6:
b7:9b:90:1d:b9:59:3b:2f:2c:15:78:fb:e1:dd:3b:cc:60:5b:
82:f2:bf:5d:0b:2a:c9:4e:2c:d1:56:c8:c4:34:d0:67:52:3f:
32:38:74:5e:60:6d:3e:7a:af:ee:8f:43:5d:5b:3e:07:6e:75:
40:66:77:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:38 2024 by rpki-client on console-fra.rpki-client.org