Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/2Weu8Yvc5uBOOxAT0ZXq6q-i_UA.roa
File: 2Weu8Yvc5uBOOxAT0ZXq6q-i_UA.roa (raw, json)
Hash identifier: X7L3w7DbA3syZ9hIbY1OfSqGGgCxKTTQpR8juDyYB2Q=
Subject key identifier: D9:67:AE:F1:8B:DC:E6:E0:4E:3B:10:13:D1:95:EA:EA:AF:A2:FD:40
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0186DA69D54EF368041CD01B03C31A1E475B
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/2Weu8Yvc5uBOOxAT0ZXq6q-i_UA.roa
Signing time: Mon 13 Mar 2023 10:00:14 +0000
ROA not before: Mon 13 Mar 2023 10:00:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213267
IP address blocks: 2a0e:b107:1f40::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 28 Mar 2023 20:06:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:da:69:d5:4e:f3:68:04:1c:d0:1b:03:c3:1a:1e:47:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 13 10:00:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d967aef18bdce6e04e3b1013d195eaeaafa2fd40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:50:fe:c6:d6:56:07:a7:06:1e:4d:04:a0:bd:
04:06:7c:0c:3d:21:60:d4:50:c8:26:5e:e6:b0:b3:
cd:28:64:e3:1a:45:2a:d7:f0:1f:57:b1:10:c5:4d:
4c:a8:bb:55:4a:4f:bd:53:d9:31:ae:be:25:e3:9d:
90:b8:e8:01:12:5f:39:c3:c3:f3:cc:c1:c7:cc:9e:
e2:d4:08:29:a5:4a:56:fb:b3:be:06:d7:ae:66:23:
f7:87:8f:98:d9:a1:58:a8:b3:0e:c2:56:04:bc:2c:
89:a3:85:74:06:8e:35:df:15:af:5a:5f:4d:9b:46:
bf:51:2d:1e:a4:17:9f:72:a5:44:f9:78:77:a2:e3:
0b:91:5e:aa:2c:23:11:5d:f1:f4:38:5c:6d:8b:1a:
0c:64:f2:64:45:68:87:23:dc:24:fd:f3:5f:1d:93:
18:d8:2c:64:89:3a:9c:57:fb:d6:e9:a1:c0:f4:cf:
d1:ee:d7:99:6a:31:3a:a0:2a:b6:91:02:d4:27:a5:
41:de:f1:8f:a3:5d:b8:4d:e5:d7:f3:77:ff:de:d5:
d9:26:ed:d4:4f:49:78:0e:b7:00:e9:13:97:60:39:
39:3c:2c:db:b2:cf:a9:23:26:8d:46:5b:3b:bf:8b:
c0:0e:48:19:f5:b7:ea:86:16:59:91:4d:3a:be:a2:
44:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:67:AE:F1:8B:DC:E6:E0:4E:3B:10:13:D1:95:EA:EA:AF:A2:FD:40
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/2Weu8Yvc5uBOOxAT0ZXq6q-i_UA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1f40::/44
Signature Algorithm: sha256WithRSAEncryption
99:14:76:66:1c:e8:33:87:a3:d4:87:ea:40:a7:19:b4:d2:66:
db:11:de:7c:0a:3d:58:b7:92:71:9d:cd:58:22:5d:54:18:3b:
73:40:16:63:30:2d:51:c0:93:57:84:f4:e1:61:d1:7f:26:e0:
66:47:a8:8c:38:5d:51:01:bb:25:ce:02:8f:43:e6:20:d2:8c:
9f:a3:5e:d3:37:a0:fe:29:7f:86:ce:46:2b:92:a6:e4:d6:8b:
4c:74:0c:fa:56:ff:8b:f7:9f:9f:bc:5d:31:8f:ee:b0:25:c9:
5d:54:19:be:58:1a:e7:8f:a7:ea:33:ec:01:86:4d:32:26:70:
5c:93:c5:4d:da:fb:f7:b1:9a:23:be:a3:d6:cd:ff:bc:d3:9e:
e4:fe:4d:26:c5:94:9f:81:a0:b9:24:59:76:ab:db:19:bd:4f:
47:56:f9:84:e2:97:c5:5c:43:90:16:d5:59:ea:8f:ae:93:e3:
c2:22:c8:61:c8:c8:77:8c:9a:0e:b0:62:c1:78:14:be:fc:51:
29:25:c8:69:a8:20:dd:92:04:7f:f2:80:00:97:1e:1a:7e:18:
da:c0:84:59:08:7e:1f:88:77:a2:05:02:f3:b1:d7:03:66:83:
b6:c1:07:39:01:d3:0b:83:ca:15:e9:99:59:9f:db:b6:97:e1:
39:03:d4:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:52 2024 by rpki-client on console-ams.rpki-client.org