Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/52HsFQAbPDeFI1hofSrMpXy3pB8.roa
File: 52HsFQAbPDeFI1hofSrMpXy3pB8.roa (raw, json)
Hash identifier: VAepEm6O2voJRGoLo0+8BVF4ozlwSQ9o2XbArxsuSLA=
Subject key identifier: E7:61:EC:15:00:1B:3C:37:85:23:58:68:7D:2A:CC:A5:7C:B7:A4:1F
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185DE40ABCBC0CDF36EF96FEA11B881EB4F
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/52HsFQAbPDeFI1hofSrMpXy3pB8.roa
Signing time: Mon 23 Jan 2023 10:50:58 +0000
ROA not before: Mon 23 Jan 2023 10:50:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202000
IP address blocks: 2a0e:97c0:c50::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:de:40:ab:cb:c0:cd:f3:6e:f9:6f:ea:11:b8:81:eb:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 23 10:50:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e761ec15001b3c37852358687d2acca57cb7a41f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a3:c9:14:cf:2f:80:0c:2c:38:d1:aa:6d:4f:
3e:e8:0c:a6:03:41:b3:4c:e1:99:c2:0e:6d:0c:0a:
3a:9d:4a:39:a2:1b:6c:f3:df:1d:cd:ab:51:59:a2:
45:92:92:c1:55:a3:fd:42:da:bd:d3:ad:af:bf:eb:
6a:fe:16:d2:32:7f:66:f8:3a:47:e5:76:70:8d:3d:
cf:51:03:7f:cc:ba:cd:e3:6d:91:28:e3:7c:29:47:
31:39:b2:c2:a6:46:ee:29:b0:c1:78:b7:1e:64:11:
90:06:94:e2:4e:7c:86:a7:d6:de:bc:95:ca:c2:64:
ab:38:fa:ea:0f:4b:40:3d:92:10:82:23:9d:6e:e9:
dc:4c:bc:3e:2e:7b:b3:6d:c8:29:6d:ff:55:a3:60:
39:2e:9a:96:70:83:dd:ee:86:ab:3f:08:e7:58:19:
29:c8:1e:c7:37:ff:c5:14:3b:22:03:db:35:21:f5:
3a:1f:2b:5e:01:ea:2f:95:e6:0e:58:39:98:02:79:
3e:8e:1f:e0:09:2f:35:28:f6:f5:ee:91:80:ff:f2:
69:f4:65:a8:02:a8:64:5f:7b:66:94:d3:99:47:96:
0c:df:20:de:17:1b:49:ed:2c:94:6d:91:8b:28:09:
c9:6e:b8:d1:f2:0f:7e:3d:eb:20:34:7e:f3:0d:37:
29:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:61:EC:15:00:1B:3C:37:85:23:58:68:7D:2A:CC:A5:7C:B7:A4:1F
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/52HsFQAbPDeFI1hofSrMpXy3pB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:c50::/44
Signature Algorithm: sha256WithRSAEncryption
3f:94:37:64:6e:b0:37:40:91:16:ee:d5:47:6b:a1:c8:64:a7:
cc:55:1d:d3:f7:ee:90:38:3c:5d:5b:23:1b:46:bc:cd:c1:6b:
04:22:e4:f0:d2:13:32:3a:31:25:5d:1f:a6:a3:17:53:5b:6f:
ea:c7:6a:95:5a:1f:4c:0e:65:5b:35:a7:14:53:d5:0b:5a:be:
da:da:72:15:52:8e:50:e6:0b:22:d4:d4:e4:ff:2a:90:05:e7:
42:7e:d6:9a:ab:e7:74:5e:47:bc:a0:32:3f:14:b2:77:7e:d6:
80:9c:ba:a3:85:4b:24:64:9a:b5:7d:8a:8a:4c:4d:d5:08:bf:
0f:ed:7c:6c:f7:9c:b2:85:16:ac:d1:8b:4b:8d:ac:2d:eb:b6:
34:c1:8b:97:9c:4a:9a:4e:f0:f9:3b:00:1b:13:8a:ca:01:2f:
2f:e1:25:f9:67:af:e4:67:92:6e:09:46:ee:84:05:d3:1c:d8:
e1:e5:d1:84:f6:70:01:e4:e1:05:d1:ad:fa:a2:d0:49:0a:a5:
7e:cb:ac:db:62:92:98:7b:90:64:85:45:ba:db:83:f2:b9:c2:
27:30:52:bc:27:b1:45:8e:82:87:16:06:59:51:31:e0:32:ba:
3a:bc:00:f8:49:c0:db:bf:63:59:80:3b:15:cd:43:86:3d:d5:
0f:f5:2b:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:13 2023 by rpki-client on console-fra.rpki-client.org