Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/37nA3SMhPq9sTvXfpee3aVwKKGM.roa
File: 37nA3SMhPq9sTvXfpee3aVwKKGM.roa (raw, json)
Hash identifier: RdwcUSAUgYJ3FaBvfaSLLA8bOA6BLPAsyTg3atLejXY=
Subject key identifier: DF:B9:C0:DD:23:21:3E:AF:6C:4E:F5:DF:A5:E7:B7:69:5C:0A:28:63
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185E48ABC013B3920FB444F5A9B165E1098
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/37nA3SMhPq9sTvXfpee3aVwKKGM.roa
Signing time: Tue 24 Jan 2023 16:09:35 +0000
ROA not before: Tue 24 Jan 2023 16:09:35 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 38173
IP address blocks: 2a0e:b107:1520::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e4:8a:bc:01:3b:39:20:fb:44:4f:5a:9b:16:5e:10:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 24 16:09:35 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dfb9c0dd23213eaf6c4ef5dfa5e7b7695c0a2863
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c5:d8:ac:63:92:b4:78:d2:22:a6:81:68:f1:
c5:fe:08:28:26:bd:25:f8:eb:08:81:81:8d:df:33:
76:39:e2:09:37:6c:9c:5a:31:0c:02:70:68:57:39:
97:0a:30:5d:bc:0e:97:42:55:27:ee:3b:ab:95:8f:
8f:96:8a:a5:24:39:d8:e3:6e:53:15:28:84:2c:52:
8e:2e:51:1c:49:89:c2:60:a9:41:ed:87:ac:07:c5:
19:19:d7:5a:82:9d:6a:92:d8:a0:9d:70:de:a0:fc:
96:06:cc:ad:19:c8:dd:a5:b9:96:25:7b:71:c4:3d:
9f:c5:9a:b4:61:89:69:6e:c2:fd:13:8d:fa:72:68:
e4:d2:bd:a8:0c:0b:8f:16:2f:5b:8f:26:46:22:6a:
f3:ba:0a:1a:50:f2:2d:45:18:01:ae:bc:42:dd:72:
7d:a2:6b:9a:fa:e0:6d:81:e5:b6:f8:40:f9:a8:f1:
2e:8f:11:0e:c4:c7:99:56:bc:65:68:a7:e6:c3:aa:
8f:fb:63:c7:b1:b9:28:86:77:0b:64:f4:29:cd:ff:
b5:4d:59:1d:48:18:7d:a3:62:83:76:21:b2:31:f7:
07:fd:34:8a:4c:75:66:83:47:db:bb:34:fe:f0:2a:
05:f9:95:1c:36:75:4e:70:0d:cc:8f:1c:e0:f5:3d:
a7:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:B9:C0:DD:23:21:3E:AF:6C:4E:F5:DF:A5:E7:B7:69:5C:0A:28:63
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/37nA3SMhPq9sTvXfpee3aVwKKGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1520::/48
Signature Algorithm: sha256WithRSAEncryption
35:2b:b0:c9:ef:9c:c8:f6:39:3b:63:50:78:4e:61:b7:92:c9:
a5:6d:74:63:a4:e0:bf:47:56:70:06:85:3d:ec:62:c4:2f:ed:
1f:d1:7c:34:de:de:bb:36:63:f9:3b:d6:2b:6a:ad:97:d7:76:
a0:c7:12:d6:79:70:04:38:62:da:fb:9f:9d:a6:b5:69:f6:ad:
0a:36:de:fa:d4:3e:b4:0b:6d:26:ec:5e:e0:30:d2:fb:30:fe:
5c:a9:32:18:c1:22:75:d7:90:9a:79:07:ee:91:f5:c5:97:f1:
0c:b7:8f:18:62:58:f4:95:3e:06:73:c2:76:ab:59:04:a8:a0:
7d:7c:98:27:da:3c:ee:24:d2:5b:11:7a:60:95:94:7a:48:3f:
04:16:b6:88:18:75:83:18:92:34:27:a5:39:7e:2e:e5:3f:55:
42:a5:ca:3c:d7:e2:03:da:bd:93:5e:0e:60:c2:d2:0e:6a:f2:
c6:eb:6a:c9:7a:e0:55:2c:cc:fd:bb:f1:81:50:ec:fe:23:47:
6b:a5:71:55:09:16:c6:b7:5a:cd:5a:3f:57:7d:28:14:97:0f:
ef:80:d7:21:26:13:5e:20:17:4f:77:93:73:2c:01:ee:b3:6b:
8d:34:c6:54:4d:2a:8c:2c:51:f4:aa:cc:8e:4f:3d:dd:ea:a6:
38:a2:cb:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:49 2024 by rpki-client on console-ams.rpki-client.org