Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5bqLk72SsQEH6IJ37sB1oWAzMm0.roa
File: 5bqLk72SsQEH6IJ37sB1oWAzMm0.roa (raw, json)
Hash identifier: c6CaS7PRteSpu0VG7ZNm/5yRHPY58jHCtAfqEnnUx/o=
Subject key identifier: E5:BA:8B:93:BD:92:B1:01:07:E8:82:77:EE:C0:75:A1:60:33:32:6D
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185C6239A401418D9161EC04E2E90363DF8
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5bqLk72SsQEH6IJ37sB1oWAzMm0.roa
Signing time: Wed 18 Jan 2023 18:28:19 +0000
ROA not before: Wed 18 Jan 2023 18:28:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211760
IP address blocks: 2a10:cc45:100::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c6:23:9a:40:14:18:d9:16:1e:c0:4e:2e:90:36:3d:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 18 18:28:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e5ba8b93bd92b10107e88277eec075a16033326d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a5:62:fa:ba:1b:af:92:5b:05:6d:53:9a:1c:
de:99:09:c5:2a:ef:cb:cd:86:d7:df:10:d5:73:44:
14:b8:6b:fb:45:67:29:7b:48:c6:ae:d1:91:5f:14:
46:50:44:e6:ca:0f:54:a5:f1:e9:63:19:8f:44:a5:
5d:cd:55:a9:c8:e3:9f:02:0c:38:ae:8d:66:c2:75:
82:1c:ff:ec:0a:ab:77:67:f6:51:a7:8b:f6:83:59:
a7:61:4f:89:56:0c:c6:ce:4f:4f:e4:31:a9:f5:1d:
bf:17:cf:62:78:ef:5e:bc:d7:d5:ff:e5:20:e8:00:
4e:af:67:ab:21:9d:ea:18:eb:cd:c3:19:d2:8f:79:
1c:06:f5:80:8d:d6:81:1d:5a:aa:e1:c8:d7:c2:db:
9c:0b:b5:96:8a:8a:41:15:a7:60:23:42:4f:ec:9d:
91:c5:e8:79:82:0c:5e:04:30:ae:03:58:2d:b9:13:
3c:b4:25:d9:de:46:41:cd:1c:87:5a:78:1f:92:2b:
88:47:7e:2e:28:fd:48:50:2f:26:73:6e:71:b8:0f:
39:ed:70:58:27:88:8f:ef:18:47:c8:e2:ca:ad:ab:
94:99:7a:34:a8:9a:69:3f:ef:8b:6a:50:a5:cb:69:
7f:3a:dd:d2:10:89:a0:00:43:2a:79:9c:3d:dc:07:
3d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:BA:8B:93:BD:92:B1:01:07:E8:82:77:EE:C0:75:A1:60:33:32:6D
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5bqLk72SsQEH6IJ37sB1oWAzMm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cc45:100::/44
Signature Algorithm: sha256WithRSAEncryption
97:91:fd:6a:00:0c:7d:6e:82:dc:5f:49:fb:70:e5:13:5d:3d:
4f:bd:81:03:35:e9:22:8b:82:f8:ea:7f:e4:59:39:d3:37:34:
b1:6c:2b:52:11:ce:32:49:d3:f0:c5:cb:03:03:2e:7f:49:03:
3c:33:9f:06:66:08:43:75:4d:13:0c:c1:a3:fa:60:aa:ce:11:
25:e6:fb:aa:64:bf:8e:d4:0e:7b:74:e2:ec:c8:7a:19:09:bc:
3d:bd:13:df:11:12:a1:c0:38:47:ae:e3:2f:7f:06:bb:7c:6f:
b6:c8:ec:47:0b:45:29:00:b0:a1:60:60:fd:92:1d:f4:49:bc:
61:39:e2:53:73:18:b7:c1:50:6a:a7:04:f9:6c:c1:d0:c6:b1:
5f:12:05:d2:7a:29:45:5c:cb:4a:bd:09:ff:41:70:23:42:62:
c4:28:08:08:d4:e1:47:0b:38:40:12:8a:c4:38:3e:46:a8:75:
cf:7a:0c:53:3e:64:86:37:ca:c1:c3:5f:ec:30:4b:7d:47:9d:
7b:cb:b7:ba:7f:06:2b:cf:eb:60:8b:0d:6c:8e:ee:a1:7e:29:
25:82:9b:01:b7:49:d0:99:0b:cf:48:8e:0d:ac:07:23:49:f8:
14:50:76:79:60:38:3f:10:fe:71:b0:57:7f:f9:5f:4d:7d:65:
e5:a6:e1:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 24 23:19:05 2023 by rpki-client on console-ams.rpki-client.org