Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/agnsZzHNO-fkRI02VSRDFpsfuhY.roa
File: agnsZzHNO-fkRI02VSRDFpsfuhY.roa (raw, json)
Hash identifier: NtvoJWXlr6W5UEHUUfoQHc03qK17pkSA+YYZWC6IO1s=
Subject key identifier: 6A:09:EC:67:31:CD:3B:E7:E4:44:8D:36:55:24:43:16:9B:1F:BA:16
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018F35260D3BA50B8FEB06B1BF20EDE9A549
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/agnsZzHNO-fkRI02VSRDFpsfuhY.roa
Signing time: Wed 01 May 2024 17:13:57 +0000
ROA not before: Wed 01 May 2024 17:13:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215697
IP address blocks: 2a0e:97c0:ec0::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 13 May 2024 14:15:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:35:26:0d:3b:a5:0b:8f:eb:06:b1:bf:20:ed:e9:a5:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 1 17:13:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6a09ec6731cd3be7e4448d36552443169b1fba16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:15:67:81:81:0b:64:fa:69:ae:eb:e9:75:f0:
8c:75:13:87:c3:7c:13:10:b9:c9:6a:a2:65:f2:c4:
4f:ff:20:86:34:9e:e8:4d:57:8f:7f:8a:87:26:2b:
80:99:30:54:e6:f7:88:0f:b4:86:ec:b9:9f:dc:00:
1f:80:1e:36:2f:42:d1:3e:67:09:d4:de:f3:de:0f:
b2:51:d8:2c:a3:df:7d:e8:4c:c4:16:59:34:5a:08:
fc:29:ab:94:87:2e:ee:7e:c3:a4:fb:b1:ad:b2:53:
2b:a1:d7:bd:a8:40:8c:fb:be:cf:94:3f:5d:35:01:
83:fd:74:7d:8a:f7:de:95:8e:bf:b3:29:d6:b0:da:
30:b5:bd:6f:01:b9:69:9d:63:f4:50:90:b6:04:4a:
35:42:78:07:9a:b6:da:c7:e0:48:bb:14:c0:83:8b:
1a:58:a3:09:37:3a:b0:c2:f8:6e:76:c4:a8:22:c4:
24:9f:61:c6:88:ef:8c:d5:56:a4:d6:24:00:79:bb:
50:a9:7e:f5:0b:2d:65:55:b7:f9:a9:e2:9c:a3:b0:
d6:a2:9b:15:6a:79:b7:66:9d:00:4d:a4:04:f6:2b:
f8:ef:7a:8a:05:45:a4:fa:e6:19:2b:56:1e:fc:d2:
12:22:94:db:0c:75:6a:ee:02:7e:ed:46:a1:0d:07:
a2:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:09:EC:67:31:CD:3B:E7:E4:44:8D:36:55:24:43:16:9B:1F:BA:16
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/agnsZzHNO-fkRI02VSRDFpsfuhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:ec0::/44
Signature Algorithm: sha256WithRSAEncryption
64:48:f2:da:a4:d3:da:23:26:96:0f:db:2f:84:49:f6:a0:b7:
34:be:76:b8:af:50:68:29:79:e9:25:2a:68:cb:5a:02:c8:60:
d1:55:b7:b0:52:23:44:5e:20:7d:fa:3d:4d:6b:b0:74:85:20:
59:0f:e3:7d:12:fa:36:23:b5:13:ea:63:a1:dc:df:b8:e2:3b:
d9:0f:4b:e1:21:d4:8e:d4:2e:11:8a:0f:f4:d7:30:dc:0d:53:
72:d2:b1:02:7e:42:1a:a5:e2:c2:5d:08:9f:d7:cf:07:56:5e:
87:15:1a:e7:6c:21:ad:12:7d:73:3e:05:e4:5a:e1:47:90:8f:
5e:72:49:1e:0e:98:06:e8:b9:60:eb:d0:81:bc:4c:47:dd:b9:
2c:e4:9d:6f:a4:e3:c8:0c:ad:c0:d9:f8:89:8a:8b:e4:ee:9a:
59:66:f5:35:7d:47:7e:3d:6f:3a:1c:7e:40:60:10:1e:96:85:
b4:36:f6:b3:8a:49:46:18:c7:e2:50:d2:2a:5b:7c:35:2f:ce:
16:d8:01:52:84:af:6f:ca:eb:5d:1a:22:bf:a8:3c:ab:e6:36:
48:10:93:6e:02:f4:df:02:f6:54:ef:4d:9c:1e:c6:db:e2:75:
43:0a:eb:c1:3b:4d:36:45:30:6d:0a:70:0c:79:17:54:ba:d1:
9a:4d:a2:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 13 17:57:47 2024 by rpki-client on console-fra.rpki-client.org