Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/0CYaIgvyXaLgXSk15YTS4247JvQ.roa
File: 0CYaIgvyXaLgXSk15YTS4247JvQ.roa (raw, json)
Hash identifier: QUbMTPOob1lf3S+hfq8B/JTkCAR0NTHY2dD0a2HJ4hY=
Subject key identifier: D0:26:1A:22:0B:F2:5D:A2:E0:5D:29:35:E5:84:D2:E3:6E:3B:26:F4
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185E48AFA64C07B38FE800768D25E6D5B42
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/0CYaIgvyXaLgXSk15YTS4247JvQ.roa
Signing time: Tue 24 Jan 2023 16:09:51 +0000
ROA not before: Tue 24 Jan 2023 16:09:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211781
IP address blocks: 2a0e:b107:390::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e4:8a:fa:64:c0:7b:38:fe:80:07:68:d2:5e:6d:5b:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 24 16:09:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0261a220bf25da2e05d2935e584d2e36e3b26f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:29:62:4a:19:44:5b:f6:40:ce:a7:29:c1:d1:
bf:c4:dd:9a:24:af:46:6f:d2:6a:a2:6e:c0:9f:14:
a4:f0:99:29:99:cc:6e:17:2c:24:2f:42:46:99:87:
8f:32:9b:38:1c:bb:c9:14:73:a8:dd:da:66:a5:bd:
8e:c5:69:c5:7d:25:df:c6:36:c1:2a:16:61:c3:82:
05:a0:aa:1d:bc:d0:20:1f:fc:8e:7d:e1:23:3f:cd:
14:f4:e9:74:04:95:e2:d9:8a:b5:04:f2:5b:99:c1:
18:0e:a3:96:e3:63:b5:8a:5c:03:a3:8f:7f:aa:48:
53:a9:a3:eb:73:ee:2c:9f:71:28:7e:8d:2a:2d:bb:
be:5e:9b:5b:bc:28:3c:ba:7f:65:f2:55:0e:bc:a8:
f0:7f:43:c2:d9:eb:ca:88:53:46:3b:11:69:9e:0d:
41:fa:1e:43:84:8d:93:b3:30:6f:58:9e:dc:3a:0c:
ad:9c:73:22:ba:44:a0:bb:e8:25:83:05:7d:f4:7d:
28:e5:9f:5c:56:41:34:45:e0:09:3b:df:bf:be:ce:
82:b8:41:18:59:3f:ce:03:3a:42:b9:de:aa:3d:ac:
70:a9:88:2e:ee:fb:34:8b:0c:df:13:a2:27:b6:a1:
22:3f:ef:09:c2:90:46:d9:43:be:fb:1d:41:1a:c3:
75:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:26:1A:22:0B:F2:5D:A2:E0:5D:29:35:E5:84:D2:E3:6E:3B:26:F4
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/0CYaIgvyXaLgXSk15YTS4247JvQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:390::/44
Signature Algorithm: sha256WithRSAEncryption
a5:09:64:27:52:c5:d5:ef:2d:ef:20:01:f1:37:a0:ee:b4:cb:
5a:10:ce:4d:ef:14:56:99:99:4f:2e:13:67:6a:dc:b6:26:16:
dc:39:81:45:d1:7f:66:1b:21:aa:5b:76:49:e2:c6:0a:7a:48:
36:82:4d:17:ac:53:d7:18:fb:df:ee:b0:d5:fd:21:2f:b2:2a:
2d:0f:f0:ee:6a:e9:fc:81:ae:9c:b7:24:b9:2c:03:17:ee:26:
63:68:21:f0:9d:95:5e:55:0c:83:e4:32:3d:20:7c:65:9c:fd:
1d:d7:2c:75:70:4e:a6:74:8a:67:95:fc:3a:f8:3d:ff:80:3f:
14:b1:d3:9f:5b:a6:3a:0a:13:64:82:e4:dd:37:8b:d0:52:7c:
9f:17:ae:33:bc:2e:22:3c:52:9d:82:0f:e6:a5:75:65:d5:30:
b8:95:1b:54:fd:7f:7a:e1:a7:50:33:ea:3c:78:8b:e3:78:4b:
70:11:d5:4e:53:20:bc:a3:ec:8d:05:fb:58:9c:fa:6e:0e:4e:
f5:ca:32:49:d8:57:8c:a4:42:51:11:69:68:6a:c7:c6:69:ad:
9b:bc:e7:76:8e:5b:1c:f4:7c:cf:bc:7f:04:ef:b6:47:c2:fe:
81:6c:0c:5d:47:b2:94:27:5a:68:f5:7e:d5:ac:cb:74:b9:19:
a9:2a:ea:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:20 2024 by rpki-client on console-fra.rpki-client.org