Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/8420e6-8c3e-4ccb-b143-e7acf941f375/1/KLVs2h_bEDOz7u9oeO4XTSBM44Q.roa
File: KLVs2h_bEDOz7u9oeO4XTSBM44Q.roa (raw, json)
Hash identifier: DCGJRqUWgZy/1K7jn9CnuxRdWVZiYgqPBTrswVDLML8=
Subject key identifier: 28:B5:6C:DA:1F:DB:10:33:B3:EE:EF:68:78:EE:17:4D:20:4C:E3:84
Certificate issuer: /CN=8f3f9e7ffe8858387ed1b3a7eca76205ef0e21f6
Certificate serial: 01856D2F342286F813392E6B2450C38EF00D
Authority key identifier: 8F:3F:9E:7F:FE:88:58:38:7E:D1:B3:A7:EC:A7:62:05:EF:0E:21:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jz-ef_6IWDh-0bOn7KdiBe8OIfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/8420e6-8c3e-4ccb-b143-e7acf941f375/1/KLVs2h_bEDOz7u9oeO4XTSBM44Q.roa
Signing time: Sun 01 Jan 2023 11:54:48 +0000
ROA not before: Sun 01 Jan 2023 11:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1725
IP address blocks: 134.206.0.0/16 maxlen: 16
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:2f:34:22:86:f8:13:39:2e:6b:24:50:c3:8e:f0:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3f9e7ffe8858387ed1b3a7eca76205ef0e21f6
Validity
Not Before: Jan 1 11:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28b56cda1fdb1033b3eeef6878ee174d204ce384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:45:30:0b:34:fa:af:7a:f7:d0:f9:36:21:08:
8e:74:6b:a4:6e:3c:08:19:4a:ad:1f:ab:37:7d:48:
2e:57:1c:61:24:56:ce:d5:71:dd:7d:99:a4:76:68:
48:48:c9:a5:a9:76:60:e0:1c:13:b5:eb:90:71:e8:
ac:fe:2a:6d:14:c5:0f:10:4c:dc:87:08:e8:b3:06:
75:98:a6:30:81:ef:ad:7c:e5:5c:d9:13:97:bb:f4:
e7:87:d5:a3:13:5b:12:d0:19:ca:a1:7f:fd:a4:18:
dc:64:8e:b6:5e:96:6d:61:4b:eb:2f:69:d2:62:3c:
ee:2a:64:94:3d:a1:7b:ba:83:69:31:2d:e1:e2:5d:
b0:f9:7d:b2:ac:91:b7:53:95:7a:fd:9e:d8:03:24:
ef:5c:4e:18:c0:d8:d2:87:ef:34:65:57:08:0b:61:
2d:da:13:a6:5f:a8:74:b9:e9:9f:66:e8:09:f8:5f:
d4:a1:e7:f6:fd:49:86:be:7c:24:91:97:de:69:db:
e1:a8:be:f9:e7:c8:02:38:65:d5:4f:fa:31:c5:b9:
2c:9b:1e:36:e2:b4:5d:59:0e:fc:f0:e0:c9:28:8c:
42:b2:84:2c:3f:e5:19:cf:23:bd:e1:3d:ca:23:8c:
4e:88:18:ea:4e:05:37:27:b7:ea:70:7a:d5:84:20:
15:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:B5:6C:DA:1F:DB:10:33:B3:EE:EF:68:78:EE:17:4D:20:4C:E3:84
X509v3 Authority Key Identifier:
keyid:8F:3F:9E:7F:FE:88:58:38:7E:D1:B3:A7:EC:A7:62:05:EF:0E:21:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jz-ef_6IWDh-0bOn7KdiBe8OIfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/8420e6-8c3e-4ccb-b143-e7acf941f375/1/KLVs2h_bEDOz7u9oeO4XTSBM44Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/8420e6-8c3e-4ccb-b143-e7acf941f375/1/jz-ef_6IWDh-0bOn7KdiBe8OIfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.206.0.0/16
Signature Algorithm: sha256WithRSAEncryption
14:61:95:4a:dc:33:42:c7:bc:e3:08:96:64:6f:8c:a3:23:28:
3c:a3:db:0b:68:87:6b:b9:ea:d2:34:2a:79:7c:56:dc:58:9c:
04:89:5b:84:2c:e4:10:05:1e:8b:79:51:b6:9d:fb:13:3a:93:
23:82:cc:bb:b8:e0:dc:84:ea:2a:cd:79:92:4e:46:31:bc:79:
16:ef:06:46:07:d7:61:83:f0:e4:7e:96:51:57:51:15:63:06:
13:b3:21:e6:9e:52:0b:7b:32:f6:dd:90:4b:d7:73:77:cf:1d:
fc:b2:90:6b:57:32:1c:85:c5:d7:32:fe:26:ed:f3:ba:5a:14:
ec:9f:80:c4:73:56:d2:93:a8:49:3e:0c:66:53:ef:9f:a3:80:
18:3e:e5:d1:53:16:1d:00:96:6e:08:9e:96:be:92:1d:93:09:
24:db:cf:10:1c:cb:a2:47:88:e2:bb:de:3e:11:6e:84:d5:10:
ea:56:cd:2e:65:b1:64:c8:22:cd:98:b1:87:a3:3c:ca:f5:81:
76:2a:dc:00:b3:42:6c:74:ca:77:7f:f6:1c:f6:c9:1e:b1:bd:
a5:ae:43:bc:70:81:67:79:2a:1d:01:97:5a:b6:ce:ba:5e:dd:
ce:f5:9d:0c:90:82:93:39:c2:e7:de:11:80:98:0d:70:fb:a0:
03:cd:4f:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:56 2024 by rpki-client on console.sobornost.net