Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/kWNKztVaAOtjgfy_XnG4rD39TBo.roa
File: kWNKztVaAOtjgfy_XnG4rD39TBo.roa (raw, json)
Hash identifier: 2xK9uuBQ8LEsAdNxVE2TH/zCI5Mj+//xfAKt9lUKcuM=
Subject key identifier: 91:63:4A:CE:D5:5A:00:EB:63:81:FC:BF:5E:71:B8:AC:3D:FD:4C:1A
Certificate issuer: /CN=005ff9cc89c66a8a3a5d734a0d65c61fdc8518be
Certificate serial: 018573686CBE23B2933361CB00533ED8487E
Authority key identifier: 00:5F:F9:CC:89:C6:6A:8A:3A:5D:73:4A:0D:65:C6:1F:DC:85:18:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/kWNKztVaAOtjgfy_XnG4rD39TBo.roa
Signing time: Mon 02 Jan 2023 16:55:01 +0000
ROA not before: Mon 02 Jan 2023 16:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34685
IP address blocks: 2a01:7f0::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:68:6c:be:23:b2:93:33:61:cb:00:53:3e:d8:48:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=005ff9cc89c66a8a3a5d734a0d65c61fdc8518be
Validity
Not Before: Jan 2 16:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91634aced55a00eb6381fcbf5e71b8ac3dfd4c1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b2:36:2f:17:e9:f3:c0:71:86:5e:d9:9e:4f:
3c:11:42:3e:55:e4:8c:cd:69:30:73:e7:4d:30:42:
db:ab:ce:6b:32:0f:b3:23:ee:c4:6e:77:e2:ba:db:
89:f2:24:4f:3f:4c:a0:2f:5e:77:2d:96:de:d4:e9:
15:e7:c6:19:af:fd:0a:f6:e1:bc:4a:6a:64:df:30:
fd:d8:49:8c:95:b6:00:83:3b:d9:d6:08:c6:78:2c:
1e:f3:48:49:b0:71:21:c7:7b:32:78:a8:16:5d:67:
44:58:11:d6:73:f1:be:99:a2:a9:87:3e:a5:b2:ce:
e1:9b:3d:89:da:03:21:79:c7:96:7e:b3:34:8d:90:
03:85:7c:fa:fa:7d:14:37:b0:2e:c9:46:a6:ab:39:
2d:06:80:f1:f9:42:43:f7:70:c6:c4:ba:51:e6:25:
46:1e:0e:43:04:8c:e3:56:e8:0f:9f:0b:cc:38:4c:
59:29:0b:5f:8b:1c:33:7b:15:2b:5b:0e:d2:6e:da:
c1:29:f3:0e:1d:cf:3c:aa:a8:be:86:a0:4f:54:7a:
bc:ec:63:a8:b4:fc:4e:3a:2b:ff:c2:3f:77:e6:3c:
6f:79:56:a4:97:f9:d3:05:e4:e6:22:18:65:33:2e:
97:b2:40:86:39:9d:14:12:18:f4:95:8a:82:e5:e1:
4c:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:63:4A:CE:D5:5A:00:EB:63:81:FC:BF:5E:71:B8:AC:3D:FD:4C:1A
X509v3 Authority Key Identifier:
keyid:00:5F:F9:CC:89:C6:6A:8A:3A:5D:73:4A:0D:65:C6:1F:DC:85:18:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/kWNKztVaAOtjgfy_XnG4rD39TBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:7f0::/32
Signature Algorithm: sha256WithRSAEncryption
2a:03:77:6b:17:a7:e2:38:9f:f4:1d:4e:36:a9:9d:bc:1b:f5:
fe:d5:9e:56:de:c4:2d:fe:29:0e:42:c5:27:51:20:f7:df:a3:
4b:e0:e9:56:ca:31:e7:c3:0d:94:fa:83:43:ee:df:bf:fe:6a:
bd:44:1b:b6:e3:cd:c2:e8:42:ff:8b:c9:cb:02:c9:82:93:54:
81:36:d6:a0:d0:f0:96:b9:9f:12:2b:de:22:71:47:c4:54:fc:
79:36:be:02:d2:48:05:46:62:34:07:24:14:ab:dc:7f:8a:d3:
48:3e:19:2c:ca:ce:27:6f:2a:0b:74:96:73:1a:e6:43:36:c5:
11:63:e6:6a:90:e8:7e:67:76:5b:d6:bc:54:ff:96:53:57:f9:
36:c5:14:56:63:8c:da:ec:a7:e1:b9:19:91:f5:be:d0:ac:72:
44:11:cb:66:3a:3a:37:fa:a6:c9:ac:f0:58:14:5e:48:37:b2:
c2:b6:dc:7e:d6:d2:3c:13:f1:72:d0:11:4d:c6:ac:a1:ab:85:
e3:1d:68:1e:2f:fe:89:05:ce:e4:54:a2:d1:54:71:a9:e0:69:
08:5c:cb:cb:a5:86:01:15:b0:e4:36:83:c1:9e:0d:91:64:8d:
65:94:58:03:4c:5c:f4:b2:85:c2:a2:7f:ff:a9:e9:df:42:05:
3d:65:3b:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:30:54 2024 by rpki-client on console-ams.rpki-client.org