Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5t0YAHNVKyT8Yb95SEkijMU5qZA.roa
File: 5t0YAHNVKyT8Yb95SEkijMU5qZA.roa (raw, json)
Hash identifier: RKuXh1XmlhnwJuV2//GrtcGrkcqTektCGPr3FroavO4=
Subject key identifier: E6:DD:18:00:73:55:2B:24:FC:61:BF:79:48:49:22:8C:C5:39:A9:90
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018A98D0BAFEE0B9ED34320ACA0016A4FBEE
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5t0YAHNVKyT8Yb95SEkijMU5qZA.roa
Signing time: Fri 15 Sep 2023 12:28:50 +0000
ROA not before: Fri 15 Sep 2023 12:28:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216353
IP address blocks: 2a0e:97c0:d90::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:98:d0:ba:fe:e0:b9:ed:34:32:0a:ca:00:16:a4:fb:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Sep 15 12:28:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6dd180073552b24fc61bf794849228cc539a990
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:c4:22:a4:2b:5a:a4:79:33:b5:29:23:36:1c:
04:c0:b8:a3:f5:9f:f2:64:4d:52:50:c2:de:d5:06:
65:4d:92:b2:98:a7:76:ba:30:fb:4e:1d:06:b2:14:
5a:41:50:dd:81:54:34:3d:5f:3e:49:fe:0b:ec:18:
95:c8:a9:2c:52:8b:d7:13:96:b5:a1:5b:2d:42:e7:
37:9a:c2:c9:96:f1:45:b9:f0:13:c1:0b:48:a4:64:
da:c0:a3:81:52:d2:db:ea:83:5f:f0:06:a1:54:af:
aa:62:26:3b:6c:49:b8:df:16:71:2a:c8:ed:b2:64:
ed:60:bd:a9:e3:ba:f4:e5:fe:6f:e6:68:21:2c:8a:
1c:44:1b:9f:44:89:56:84:1d:40:ab:62:b4:d3:4a:
2d:15:e0:29:88:e8:9e:de:bb:18:d5:be:81:2f:ff:
bc:b4:48:4f:9c:52:b2:b7:06:b5:9c:45:f0:c8:7b:
b9:7d:dd:a8:d7:3b:ef:6c:a9:74:be:fe:00:02:e7:
d9:f0:63:da:d0:75:f7:df:35:4e:d7:3b:c5:1f:03:
cf:b4:99:5e:fb:ee:ce:e8:ba:77:56:ba:c9:47:b1:
ee:0c:2b:fc:5a:0c:f0:d4:69:2f:41:27:8b:0a:a6:
d6:c8:f0:a5:6c:ae:8c:ae:e1:ba:a4:10:de:7a:a5:
0b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:DD:18:00:73:55:2B:24:FC:61:BF:79:48:49:22:8C:C5:39:A9:90
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5t0YAHNVKyT8Yb95SEkijMU5qZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:d90::/44
Signature Algorithm: sha256WithRSAEncryption
7e:fd:86:b0:fc:6a:ed:fc:8e:28:34:99:a5:3c:3b:28:9f:57:
27:0d:0d:89:15:d4:71:ac:6e:77:5f:84:7a:c9:de:3a:6d:35:
35:6a:c0:64:8c:08:12:e3:b3:f1:b4:79:87:89:57:c1:b0:f7:
07:40:5a:69:13:e7:64:e2:62:e5:db:f9:1c:2b:a0:f6:1c:69:
ae:d6:e0:d3:96:b0:24:fb:ec:47:36:3f:a3:c3:b3:10:17:e5:
e6:9d:6e:e0:f3:f3:ae:bc:5c:95:21:7d:44:b2:f9:69:48:8d:
e4:e2:7a:f1:14:19:85:43:3b:38:be:b5:7c:59:64:4e:f0:01:
0d:c3:7b:d4:0a:d8:8f:66:e0:dc:29:0c:da:25:83:b1:4e:57:
3b:59:7b:6c:b5:9f:95:14:e8:60:e1:15:b1:0f:1a:55:3c:60:
8a:a0:4b:9a:11:10:f9:4b:2b:a7:55:3f:0d:07:8f:88:fb:af:
65:1e:62:de:ff:65:ca:61:f0:b1:33:6a:ea:82:92:30:b2:6a:
25:61:c4:9a:3a:8b:96:b0:12:03:2a:fe:f7:b0:b9:42:69:d3:
89:85:70:73:83:74:b8:3c:ca:bb:00:66:eb:cf:0e:46:df:4d:
15:7a:b8:08:3a:87:a1:19:4e:cd:74:fe:4f:0b:6e:27:f5:e3:
aa:b9:16:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:29 2024 by rpki-client on console-fra.rpki-client.org