Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/53FKNKxtnbKTKWYvGqJbgkWYfak.roa
File: 53FKNKxtnbKTKWYvGqJbgkWYfak.roa (raw, json)
Hash identifier: sd/p53GD1p1ZVf8CbwKsy9o4xz4Q5QIBztfPSNmZB48=
Subject key identifier: E7:71:4A:34:AC:6D:9D:B2:93:29:66:2F:1A:A2:5B:82:45:98:7D:A9
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 018572CC97D5AC7C981A8C050C4BB2D07620
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/53FKNKxtnbKTKWYvGqJbgkWYfak.roa
Signing time: Mon 02 Jan 2023 14:04:48 +0000
ROA not before: Mon 02 Jan 2023 14:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a03:60c0::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:97:d5:ac:7c:98:1a:8c:05:0c:4b:b2:d0:76:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jan 2 14:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7714a34ac6d9db29329662f1aa25b8245987da9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:be:c2:74:73:79:1f:b1:dc:f5:a8:b7:a0:80:
b7:a4:66:96:41:e1:d4:a0:2d:04:09:b2:9b:3d:81:
3d:b7:64:7d:73:52:41:17:58:52:4c:31:c1:37:69:
ab:28:c3:92:d3:65:a9:01:93:b5:1a:47:b3:f6:bf:
f3:e0:a4:05:e8:d5:4f:3d:43:c1:19:b7:3e:57:a9:
9c:80:c5:fe:da:b8:1a:37:3d:9d:8a:50:1b:56:cd:
73:fb:97:ce:cf:34:e9:12:46:e0:4d:a7:51:52:6f:
6c:ca:b2:7e:33:98:8d:76:ef:69:59:a3:f5:db:a0:
5a:d3:e4:71:32:fd:c8:2d:6e:f3:9e:7f:b1:43:ba:
0c:07:a5:3c:6c:ca:f0:dd:ff:3e:4d:09:64:2a:b2:
9d:e0:cd:76:7a:1e:40:e3:5a:d2:69:dc:1e:13:02:
f5:7a:68:ff:3f:c8:b0:91:12:03:6e:ec:f0:b2:21:
60:8f:7d:47:6c:86:fb:c7:14:08:32:f7:09:d7:6e:
44:6b:31:11:12:a8:9a:48:de:a3:dc:2e:62:f1:27:
7b:a9:95:f1:73:1e:3b:a5:29:f9:29:02:8b:39:e9:
7d:68:bb:af:49:b4:03:5f:89:2b:d4:b5:aa:12:b4:
09:7b:67:5c:1e:0b:07:95:d9:b5:81:08:e6:bb:d4:
e2:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:71:4A:34:AC:6D:9D:B2:93:29:66:2F:1A:A2:5B:82:45:98:7D:A9
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/53FKNKxtnbKTKWYvGqJbgkWYfak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:60c0::/32
Signature Algorithm: sha256WithRSAEncryption
54:e8:fc:37:79:5b:24:1e:76:a5:55:52:2b:b5:bf:52:23:42:
28:e1:e6:17:53:5d:b5:19:11:64:db:c0:cf:92:f7:45:56:f7:
8c:6a:97:b4:48:02:ff:bb:84:fe:65:59:1a:ed:31:5a:1d:89:
67:72:35:b0:08:8f:c9:5f:d1:65:c6:ce:8c:5d:61:33:a4:5d:
0c:60:f8:b7:46:21:89:4a:cf:39:87:47:3c:eb:74:d7:75:1e:
44:db:08:29:b6:9d:c2:5a:86:68:fe:40:e4:b9:3c:c9:86:15:
f7:2c:c0:1f:d2:b4:98:23:de:d0:21:0d:12:be:9a:f1:db:3e:
ca:1d:20:dc:36:44:40:b0:ed:6c:7d:53:05:9f:e9:5f:5b:be:
b9:2d:84:d4:61:b3:76:3a:eb:eb:3a:19:26:f2:e5:f7:f3:2e:
78:91:34:4d:13:75:24:59:ca:cc:7d:71:d6:a6:f3:12:3b:47:
f4:f0:b2:21:97:88:0f:ce:a4:05:0f:d6:91:c6:ca:2f:b5:7c:
d2:41:19:d4:f4:8f:4d:0a:da:1a:cd:c5:b4:f4:02:d6:7c:3e:
d0:4d:81:21:70:80:a3:2f:da:8e:39:2a:6f:a0:52:b6:78:3a:
ae:56:f1:26:2e:26:74:24:44:a6:0d:3f:12:35:16:10:ea:30:
69:7b:a0:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:33 2024 by rpki-client on console-ams.rpki-client.org