Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y9A1dV13JlOhfLwnxWdSv7MYUPw.roa
File: Y9A1dV13JlOhfLwnxWdSv7MYUPw.roa (raw, json)
Hash identifier: FICsx6X6dbq5NJxyJHotJ5NuN/0UiAjKPBVTCcy/h2Y=
Subject key identifier: 63:D0:35:75:5D:77:26:53:A1:7C:BC:27:C5:67:52:BF:B3:18:50:FC
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018CA7171F1D860514A9264B64938F402E6E
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y9A1dV13JlOhfLwnxWdSv7MYUPw.roa
Signing time: Tue 26 Dec 2023 17:05:59 +0000
ROA not before: Tue 26 Dec 2023 17:05:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200237
IP address blocks: 2a06:de01:f0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a7:17:1f:1d:86:05:14:a9:26:4b:64:93:8f:40:2e:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 26 17:05:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63d035755d772653a17cbc27c56752bfb31850fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:49:e1:70:dc:9d:0e:7d:70:bc:c5:59:84:3a:
7a:a7:da:67:4c:8b:61:a1:95:6a:63:31:3e:e7:bd:
83:ba:f2:aa:94:c5:95:54:fa:a0:d6:d2:22:9c:a5:
0f:11:a0:92:57:82:d8:15:ce:aa:f6:29:5f:10:95:
1f:3a:10:25:d2:03:d7:d8:00:52:9e:f9:50:64:3f:
af:24:0a:e7:65:c6:be:aa:c1:70:af:db:6e:65:76:
b0:b7:2d:6f:a7:93:e8:1e:c9:48:3f:b0:48:ee:d5:
35:22:0f:01:9c:59:6e:b7:03:18:8e:31:80:b5:2b:
55:4b:4a:66:1f:8f:e4:43:aa:3d:05:da:63:a1:09:
28:12:c4:01:95:5d:f5:de:5f:7d:1b:c8:21:5e:9c:
7e:8a:ce:44:36:5c:a2:2d:4c:25:8d:12:fc:f0:16:
32:8b:8a:1b:09:57:ec:a7:ee:37:09:8e:31:82:f0:
75:d2:af:d8:24:1a:c2:51:d8:a2:34:fd:0a:c9:fe:
92:a8:e7:0c:c6:0e:67:70:8a:e3:28:92:e3:0a:73:
ca:ee:e6:f1:c5:a1:ce:7d:11:d3:c9:64:e1:27:d4:
66:72:fe:1f:ff:e8:58:67:67:cb:84:d1:bf:06:99:
b4:fe:fb:71:be:48:22:f8:b8:3c:6f:3f:6d:b1:c4:
5a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D0:35:75:5D:77:26:53:A1:7C:BC:27:C5:67:52:BF:B3:18:50:FC
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y9A1dV13JlOhfLwnxWdSv7MYUPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:de01:f0::/44
Signature Algorithm: sha256WithRSAEncryption
55:0d:1f:9e:13:47:0c:e5:c7:82:58:2c:0c:4a:26:9c:90:aa:
31:10:62:86:fa:fb:8a:d8:dc:8a:4a:23:87:e2:86:30:69:ab:
e4:ae:99:cf:fc:f7:a6:fe:fc:2f:4b:e5:0b:a0:12:9b:c1:44:
10:68:ea:1b:9b:6c:42:67:fe:c2:39:f8:d1:4a:ab:d6:4b:e9:
af:6d:dd:88:55:70:d9:ce:79:48:ba:eb:1f:c0:c9:28:87:43:
09:4a:87:29:44:31:e1:82:98:a6:c3:9b:cf:b0:b5:86:85:f1:
01:74:41:ab:ae:34:c1:71:dd:9d:14:cd:b2:5f:af:e6:fc:0e:
fa:c3:66:21:b8:c0:48:bf:a0:c0:d8:3c:d3:61:34:b5:dd:1e:
09:de:16:27:0e:a8:9f:94:52:e2:b4:0d:89:b1:20:98:73:ad:
92:f0:9f:8e:af:e6:4d:a6:d3:8b:b7:11:e5:6e:f1:0c:2a:9b:
51:46:40:b7:78:36:57:53:39:47:3a:4c:ff:3e:7d:57:f5:16:
4d:68:1e:44:c6:f5:cc:80:63:a1:ea:4b:1f:60:23:37:ef:45:
2d:56:aa:6a:71:7e:14:9e:02:02:d9:89:2c:cf:9e:4b:2b:b0:
ec:de:60:ec:e0:0e:ab:fd:6c:1b:9b:64:91:a1:d8:cd:b9:9b:
bd:55:70:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 26 19:30:13 2023 by rpki-client on console-fra.rpki-client.org