Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/3iPtcDtB6IymTBRYfWN8P3G93CM.roa
File: 3iPtcDtB6IymTBRYfWN8P3G93CM.roa (raw, json)
Hash identifier: S37djvdWHe2rr6/XqbkTAAd8U1v3CIalVuJtDdpBouc=
Subject key identifier: DE:23:ED:70:3B:41:E8:8C:A6:4C:14:58:7D:63:7C:3F:71:BD:DC:23
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185E463115A9061BD23881DB598627F7104
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/3iPtcDtB6IymTBRYfWN8P3G93CM.roa
Signing time: Tue 24 Jan 2023 15:26:15 +0000
ROA not before: Tue 24 Jan 2023 15:26:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200160
IP address blocks: 2a0e:b107:660::/44 maxlen: 48
2a0e:b107:900::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 24 Jan 2023 23:18:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e4:63:11:5a:90:61:bd:23:88:1d:b5:98:62:7f:71:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 24 15:26:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de23ed703b41e88ca64c14587d637c3f71bddc23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c6:7d:17:ca:e0:41:fc:41:84:0e:43:58:c4:
8e:d9:92:02:3a:5d:fe:f7:5a:af:2a:07:33:9b:26:
a1:3c:64:24:d6:12:72:d1:b6:9a:29:3a:56:47:55:
71:80:a3:4f:93:99:2c:c2:65:25:59:aa:ec:69:d7:
35:a7:d4:70:b9:d4:6a:6e:15:90:18:9d:1b:93:b9:
56:78:10:6b:18:0e:3a:de:ae:c9:c6:48:41:1f:89:
a0:01:bc:1a:d7:8d:06:89:e7:c0:46:ca:e6:bf:c2:
b2:d2:0d:bb:a3:94:06:34:c2:20:c6:4e:67:5c:c6:
30:fc:63:a3:f2:20:32:9c:2c:e4:0b:05:38:8b:44:
97:18:5d:36:72:31:ef:9d:7e:73:aa:83:94:15:d1:
7f:66:0e:8e:ea:fb:43:ab:c0:5b:84:7c:fa:8a:b3:
4b:d9:6c:c5:23:07:f1:28:53:f0:21:9e:15:d0:b6:
02:4a:72:cf:0a:6e:30:ed:7e:d9:b0:0a:2c:73:df:
d6:a9:c4:a3:2b:74:9a:6b:22:df:c0:c9:d6:a0:ea:
52:dd:f9:23:fa:97:81:26:34:7b:a3:57:27:c4:d3:
4f:f4:87:28:16:1f:65:eb:9f:46:a9:e6:6b:de:97:
b6:87:65:97:34:d5:39:2f:a8:f6:2b:82:99:86:f5:
17:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:23:ED:70:3B:41:E8:8C:A6:4C:14:58:7D:63:7C:3F:71:BD:DC:23
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/3iPtcDtB6IymTBRYfWN8P3G93CM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:660::/44
2a0e:b107:900::/44
Signature Algorithm: sha256WithRSAEncryption
78:2a:3b:37:26:6f:3c:3b:eb:c6:90:28:f8:74:c3:ed:ec:cb:
02:32:1f:29:53:d3:37:8c:d1:2f:93:d2:ae:04:a0:8b:09:ed:
64:49:3b:c5:64:ce:35:09:14:b6:c5:1e:c6:18:07:5f:00:25:
6d:73:8d:f6:0a:4b:61:ec:a2:5b:15:21:9d:1d:90:72:6b:48:
95:dd:9d:3a:01:3b:35:0c:1c:30:9a:b8:0f:74:2e:28:51:75:
a3:11:99:b0:47:19:f9:4d:ee:ad:2c:25:e4:2e:d4:5b:13:6d:
db:39:1b:2f:48:d1:e5:35:78:ac:d9:ef:ec:f2:1c:34:ce:e8:
0e:9a:7b:43:b0:0e:b0:73:38:ce:7e:a3:44:c2:77:bd:c4:58:
51:89:57:e5:d0:e1:4b:6d:98:5a:e4:72:63:58:0c:70:68:50:
21:92:be:79:b7:b9:1d:b2:82:91:37:a0:9c:05:a4:f6:ed:26:
7a:70:2c:8c:49:2a:0c:f8:76:13:70:18:9c:13:2b:50:aa:31:
2f:be:76:66:3d:9e:d8:1f:ca:eb:43:44:2b:fe:c9:cd:de:1a:
8f:20:17:9b:f8:5f:4c:3f:37:76:b5:b7:02:90:26:4d:41:90:
fa:ef:ad:b3:73:27:88:86:62:fc:88:42:94:55:a1:b9:e8:b9:
72:87:36:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:22 2024 by rpki-client on console-fra.rpki-client.org