Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/0m3CP3TlwCbwTOc0rUOrAIAnlfs.roa
File: 0m3CP3TlwCbwTOc0rUOrAIAnlfs.roa (raw, json)
Hash identifier: xhuzUDOU+7rLJn1gf+AWIjYoJoeTv+z6v6/WoXgcD/Y=
Subject key identifier: D2:6D:C2:3F:74:E5:C0:26:F0:4C:E7:34:AD:43:AB:00:80:27:95:FB
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01861B3173E8A516C912BF093B974B7D1884
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/0m3CP3TlwCbwTOc0rUOrAIAnlfs.roa
Signing time: Sat 04 Feb 2023 06:51:11 +0000
ROA not before: Sat 04 Feb 2023 06:51:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200866
IP address blocks: 2a0e:b107:1400::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:1b:31:73:e8:a5:16:c9:12:bf:09:3b:97:4b:7d:18:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 4 06:51:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d26dc23f74e5c026f04ce734ad43ab00802795fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:02:c8:9d:70:1b:02:58:fc:f3:23:60:fa:a5:
9a:27:b6:b2:63:9e:28:25:c8:79:e2:a6:4a:ce:dc:
6b:e0:5e:50:3f:6c:ba:dc:5c:a6:c7:79:e2:00:87:
50:c4:fe:74:9d:c2:2f:b6:2f:b6:23:0e:45:d1:a1:
58:34:84:05:ac:4b:9c:ac:b2:d1:56:84:4f:97:26:
b7:a1:0a:2a:3b:d4:ad:c5:1d:d3:37:7d:f2:d6:26:
2a:e5:1f:f9:fe:47:78:81:49:26:ea:97:4a:60:1d:
b7:a7:5a:30:c3:14:53:26:ad:bf:65:22:9d:f0:e9:
27:4f:5e:18:6b:f5:69:4b:69:da:43:8c:30:ed:1b:
7d:88:3e:9b:26:4f:22:41:eb:70:eb:09:f9:47:89:
f1:f6:94:be:39:60:e7:cc:7f:6f:db:d0:7d:a6:9f:
31:8a:6a:09:c3:45:a5:9f:46:1b:7e:55:8e:bb:87:
3f:d0:b2:2e:54:b4:5a:51:d8:dd:1c:82:e2:55:cb:
f4:60:a7:e9:1b:50:6e:2d:ea:06:7d:1d:e0:37:0e:
9f:c6:57:db:a1:f1:76:cd:12:25:11:ed:c1:23:af:
b3:74:3a:e5:f2:52:bf:78:9e:84:ad:b6:1b:3e:98:
97:97:f4:1b:c7:34:a9:b6:d0:56:81:7d:0e:47:4f:
af:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:6D:C2:3F:74:E5:C0:26:F0:4C:E7:34:AD:43:AB:00:80:27:95:FB
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/0m3CP3TlwCbwTOc0rUOrAIAnlfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1400::/44
Signature Algorithm: sha256WithRSAEncryption
90:f2:4c:1a:22:a1:3b:41:a3:28:cc:64:41:f7:9d:7b:c1:b6:
d6:c8:8d:21:ce:96:ac:9e:db:ab:83:54:7e:f5:c1:98:e6:74:
ec:bd:80:71:63:47:ab:c6:d6:1c:f8:cd:6d:ca:ce:a6:ba:2b:
cc:57:d7:c8:19:af:8e:5d:ae:2a:81:d8:15:d1:5b:62:31:07:
a8:73:90:3a:c4:db:4d:01:e4:65:0b:cc:26:fe:32:6c:e8:01:
92:ee:e9:c4:3e:df:ed:3d:ed:34:3f:5d:89:44:37:c9:bf:a0:
eb:c8:99:c9:1e:1d:6a:ac:15:8e:17:8e:b7:d2:ac:7a:4f:20:
ff:37:94:de:ee:5d:1b:de:65:27:51:e3:38:f5:90:5c:44:a4:
81:19:45:d9:0d:7c:a5:e1:c6:ad:f4:7d:d5:a8:89:a1:5f:d1:
30:86:62:e4:82:ca:29:e0:49:3c:a8:d0:d0:01:60:e7:11:d6:
c5:ed:f9:ae:ad:be:32:67:48:25:39:b8:0b:29:3d:9a:ad:14:
09:e4:91:26:7f:73:0a:1d:0e:c3:24:bd:76:a4:d2:78:d0:22:
25:39:03:20:98:35:24:68:6b:c1:ff:c0:02:80:a2:4d:51:90:
28:53:3c:f5:42:1b:2a:04:31:4a:2d:6b:8e:87:16:08:e6:45:
d5:eb:f0:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:51 2024 by rpki-client on console-ams.rpki-client.org