Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4hchEsZ_5gIDcgiLzSlE8XLF0_o.roa
File: 4hchEsZ_5gIDcgiLzSlE8XLF0_o.roa (raw, json)
Hash identifier: C1yYIApbzsU0pAAzw/xjhmdSKmWz5LLT8KW5evHudak=
Subject key identifier: E2:17:21:12:C6:7F:E6:02:03:72:08:8B:CD:29:44:F1:72:C5:D3:FA
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E821500F9C707C8390D921C8BD8A6F
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4hchEsZ_5gIDcgiLzSlE8XLF0_o.roa
Signing time: Mon 02 Jan 2023 05:15:39 +0000
ROA not before: Mon 02 Jan 2023 05:15:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212948
IP address blocks: 2a0e:b107:cb0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e8:21:50:0f:9c:70:7c:83:90:d9:21:c8:bd:8a:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2172112c67fe6020372088bcd2944f172c5d3fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6a:dc:90:ca:80:50:b1:d0:95:07:83:0a:fb:
60:a3:e9:3f:5f:41:41:8f:e1:92:fb:a7:3e:9a:77:
2e:3b:ea:37:95:32:9a:a7:7f:a3:e7:ea:75:73:ce:
c6:da:a7:27:67:f8:fd:ef:61:18:3e:83:fb:f8:a1:
3e:15:db:5f:e0:74:e7:af:af:08:4e:b5:d3:ca:2f:
0c:33:79:5a:06:43:39:da:cf:8a:42:bf:b3:87:02:
a1:83:93:94:4c:3a:22:3d:d2:10:eb:0b:64:90:ae:
74:6c:b3:a8:93:2a:c6:6a:c6:36:95:76:88:bf:71:
23:22:f5:8f:9d:9f:75:29:53:96:ea:14:0d:78:af:
3a:b3:17:8a:7b:31:19:78:73:94:aa:d1:a0:c2:d9:
b9:84:7b:23:84:05:d9:1b:33:52:34:8f:e7:79:4b:
39:7c:de:44:0d:77:54:28:0a:79:91:b2:b6:cd:3e:
ad:48:cc:c7:50:da:57:c6:07:b9:3f:62:a1:8a:a6:
ea:0f:d2:da:b5:5b:4c:63:1f:b7:ab:29:1b:f5:46:
65:37:b1:ca:39:79:0f:e3:60:4e:97:34:39:76:62:
32:11:bf:2f:a5:ae:8f:57:ff:1a:e7:0d:0b:b8:17:
9b:b3:16:4b:10:bf:2d:5a:5d:5f:7b:a2:4c:3c:ae:
fe:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:17:21:12:C6:7F:E6:02:03:72:08:8B:CD:29:44:F1:72:C5:D3:FA
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4hchEsZ_5gIDcgiLzSlE8XLF0_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:cb0::/44
Signature Algorithm: sha256WithRSAEncryption
36:fb:c9:98:29:bf:06:72:a0:2a:f7:b7:a0:96:1d:7d:2a:50:
b5:50:75:98:7a:dc:3b:b2:16:91:64:d3:e6:f6:86:19:de:4f:
7d:68:2a:6a:65:ae:aa:c0:a7:e9:32:23:ef:52:ae:9d:a6:29:
c6:b5:12:0e:1b:86:63:1f:28:fd:77:e5:eb:6d:a6:38:04:3f:
d1:c5:ee:dc:ae:e4:f0:92:89:c5:a2:5f:f9:e1:f7:cf:9d:9f:
35:e1:71:8e:86:2c:01:e3:f6:08:59:3a:31:5d:97:f7:c5:e3:
06:b5:a4:9a:3f:17:42:98:93:3e:18:0a:d0:42:57:e9:bc:64:
d5:71:b0:2c:a2:74:22:9a:af:cb:bd:1e:d9:b4:b9:52:2e:3f:
e7:a1:9b:d4:6c:3d:cd:3c:ae:f2:b5:17:ed:b8:1c:b7:24:78:
e3:0d:ab:f0:6b:db:92:d4:3e:9b:ce:9c:0e:43:21:6f:74:5d:
ee:a0:8e:89:f1:ac:5f:e1:0a:e5:13:33:c2:9a:5c:9e:74:71:
d6:9e:ea:0e:ff:48:65:e8:2f:27:db:7b:c7:78:41:67:90:b9:
76:60:54:b6:e3:4c:ea:77:89:34:ea:67:44:05:7e:41:45:78:
44:be:78:ae:6b:31:f1:05:29:eb:46:b3:34:a4:60:ef:f2:87:
32:b5:ec:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:54 2023 by rpki-client on console-ams.rpki-client.org