Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/3hlThCP1XUKfAT5BBTp53mPwJ4Y.roa
File: 3hlThCP1XUKfAT5BBTp53mPwJ4Y.roa (raw, json)
Hash identifier: 9zxWB1tjfMhQPcRkMATzvAKGEd5xvMCJS25/LASNlUA=
Subject key identifier: DE:19:53:84:23:F5:5D:42:9F:01:3E:41:05:3A:79:DE:63:F0:27:86
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E822842FFE2509CB6EECB77A3B21C5
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/3hlThCP1XUKfAT5BBTp53mPwJ4Y.roa
Signing time: Mon 02 Jan 2023 05:15:39 +0000
ROA not before: Mon 02 Jan 2023 05:15:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213045
IP address blocks: 2a0e:b107:1030::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e8:22:84:2f:fe:25:09:cb:6e:ec:b7:7a:3b:21:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de19538423f55d429f013e41053a79de63f02786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ea:17:9a:43:75:ff:a7:01:21:e2:33:53:f8:
5f:62:ad:b9:fb:4c:5b:3e:a1:52:ef:87:23:a6:72:
38:aa:db:b9:3c:d9:0f:4b:9d:ff:47:72:33:aa:65:
d4:3c:48:e5:2b:bd:6a:c7:2e:9b:fd:02:23:f8:16:
31:f3:19:42:b8:9c:76:88:ee:fd:7b:1c:19:a1:ce:
91:e6:35:90:a7:68:4e:c5:75:c5:b7:b5:20:e8:10:
2f:24:65:e1:ca:d5:e6:ff:23:16:51:9b:2f:be:19:
bc:37:8c:77:15:0d:ea:08:88:33:43:6e:9d:09:5d:
eb:d5:96:b5:a9:b6:df:ec:2a:36:49:37:b1:48:ea:
5f:04:ca:63:fd:f4:db:a7:ec:ce:65:37:7b:de:28:
0e:21:ce:48:07:dc:9b:a3:d0:0c:84:70:4e:d6:ef:
d7:a3:f7:ba:3a:dc:6e:38:c9:88:ce:e7:0d:48:8c:
e6:72:c4:96:8e:d3:b2:8c:c7:12:d2:53:2b:37:b2:
53:6e:fb:4d:39:40:06:e1:49:51:24:18:95:e2:40:
43:17:29:d3:3d:38:82:b0:02:26:d3:ac:4f:57:f6:
ce:df:78:89:b4:fa:b9:e0:3a:46:76:01:6c:26:43:
0d:1f:04:41:78:31:00:a2:48:11:c1:cc:22:0d:d9:
49:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:19:53:84:23:F5:5D:42:9F:01:3E:41:05:3A:79:DE:63:F0:27:86
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/3hlThCP1XUKfAT5BBTp53mPwJ4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1030::/48
Signature Algorithm: sha256WithRSAEncryption
3d:1c:6e:be:6a:a8:d5:51:62:c9:1a:a9:20:83:ea:f3:c1:d4:
75:f2:23:4b:a8:57:a1:ef:db:f8:35:47:a0:da:da:16:8f:54:
df:c0:ee:2e:a7:21:fe:93:a0:12:a2:a2:b5:7f:ed:4d:2d:89:
48:8f:6c:4e:e3:6a:82:1f:2e:b6:2a:f3:40:15:0b:e0:2e:ea:
d7:b7:4d:c1:d3:25:19:60:a1:c1:27:ae:ad:e0:73:0a:e5:b6:
4d:35:1c:fb:1c:0a:2b:c3:b9:7d:d3:f6:8c:a9:c8:d4:aa:fd:
f4:b6:e2:cf:d1:00:73:2e:bc:98:fb:61:ef:e7:06:ef:cf:6d:
c3:df:72:8e:c0:40:3c:f3:8e:8b:aa:5b:07:e0:e1:5a:91:d2:
08:70:dd:ed:8a:3e:db:f5:0d:ef:0f:a9:9a:59:01:91:5f:86:
1d:bf:17:1e:18:ba:89:df:99:6a:6d:ab:07:f8:ec:ff:1c:72:
43:f6:8d:9e:50:ad:05:5b:db:de:27:bf:3a:f8:0e:ee:1f:c1:
53:ff:93:ff:ef:76:fa:95:2f:3d:f1:a9:8c:cd:b6:79:cb:5f:
06:df:ed:ce:95:8c:29:42:df:3e:f7:ff:73:c6:42:c0:b5:73:
b2:8e:3a:81:ae:68:d9:de:ca:ed:df:a3:63:ae:ba:81:b4:09:
38:cc:84:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:13 2023 by rpki-client on console-fra.rpki-client.org