Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/64Ft74PW-E28NejVk1iQyteC2fU.roa
File: 64Ft74PW-E28NejVk1iQyteC2fU.roa (raw, json)
Hash identifier: VEh5jRspKdP940HwjTjZSqULZMXAPSQESnX9VRDYXq0=
Subject key identifier: EB:81:6D:EF:83:D6:F8:4D:BC:35:E8:D5:93:58:90:CA:D7:82:D9:F5
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018BD9D205C7C5DC7D783B76022B5558B331
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/64Ft74PW-E28NejVk1iQyteC2fU.roa
Signing time: Thu 16 Nov 2023 20:28:21 +0000
ROA not before: Thu 16 Nov 2023 20:28:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212888
IP address blocks: 2a0e:b107:c00::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d9:d2:05:c7:c5:dc:7d:78:3b:76:02:2b:55:58:b3:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 16 20:28:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb816def83d6f84dbc35e8d5935890cad782d9f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:52:ba:ef:39:31:f8:7b:31:9d:f1:8e:32:2a:
37:b5:ff:5c:a6:6b:76:e3:64:0a:97:ab:fc:57:ec:
5f:c1:52:ed:d1:be:8b:be:a3:95:05:3d:f5:46:c1:
99:ac:73:4f:4b:54:38:11:25:fa:8a:61:7c:ab:0f:
d2:73:fd:a2:a2:13:51:23:2f:11:66:39:b0:10:5b:
1b:f6:91:04:9c:a6:8e:85:dc:8e:9f:64:e6:0a:5d:
f7:52:79:1b:2e:f7:0a:41:dc:c0:da:6f:6d:f5:52:
33:29:b6:3f:14:e4:81:90:1a:a8:e4:43:58:46:4c:
72:e4:22:b6:03:81:70:6f:1e:70:84:ab:4b:e4:95:
05:78:a5:86:e8:55:2b:46:20:c2:f5:ea:19:7f:47:
26:50:89:fa:a5:36:f4:94:14:55:2f:4b:da:50:09:
a6:79:e5:39:8a:0a:8c:66:cc:70:6a:0e:53:be:e5:
9a:95:3d:67:98:70:43:07:dd:d0:c6:88:10:9a:51:
3a:62:ba:98:4d:ff:3a:91:50:e0:91:a8:18:ca:68:
36:bd:3e:c6:51:e3:4d:e5:0a:c6:81:b5:30:81:e3:
65:6f:64:b0:b3:39:c7:03:b3:09:42:27:4c:13:80:
04:10:8c:21:61:59:0a:7e:99:6f:37:dc:41:b0:51:
ec:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:81:6D:EF:83:D6:F8:4D:BC:35:E8:D5:93:58:90:CA:D7:82:D9:F5
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/64Ft74PW-E28NejVk1iQyteC2fU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:c00::/44
Signature Algorithm: sha256WithRSAEncryption
67:72:c3:6f:03:e1:ae:8d:10:fc:4c:98:e0:c6:d3:af:c4:49:
b9:60:e3:54:91:23:85:82:14:5e:2f:01:8f:d2:3a:4f:3e:9d:
54:78:53:0c:af:8f:eb:8d:ed:07:24:55:be:5c:53:eb:90:ad:
98:05:1c:c4:b2:96:91:5c:0a:36:37:a7:d7:a7:f3:d6:6c:e7:
88:04:a9:3a:46:c5:ae:ce:3c:15:55:4d:86:c8:7a:dc:dd:ec:
2d:92:5a:78:9c:7b:33:8d:6f:b8:fc:03:92:9b:08:d3:ec:ac:
56:e4:c7:ee:f5:6d:97:c5:00:c2:58:7b:fd:2e:de:f7:93:22:
87:e4:c8:20:92:d3:d1:f9:f5:97:28:d0:d6:de:a2:1e:7a:df:
7f:7c:1e:e7:9f:40:50:d3:6e:4e:ea:a2:07:c8:9c:e9:3e:aa:
3e:b9:a9:0d:42:cd:7d:a5:34:15:1d:88:f8:3c:e1:9b:cf:0a:
15:fc:52:32:e4:4e:5e:13:7d:82:b0:96:39:d2:7b:cb:51:82:
03:9f:2c:1e:dd:12:cd:a5:db:fd:dc:ca:94:04:bf:f4:5d:8a:
58:9e:ca:a7:be:bd:4c:64:6a:43:83:f2:6d:47:aa:66:13:3b:
44:30:16:38:35:db:eb:79:d3:8b:2b:27:fd:c0:7d:69:43:f1:
35:13:83:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:29 2024 by rpki-client on console-fra.rpki-client.org