Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/6m-deHgCpXjqzC8jqXeWfpUSmro.roa
File: 6m-deHgCpXjqzC8jqXeWfpUSmro.roa (raw, json)
Hash identifier: UoBmf7GzL3S0Gqa/+CmVOcGQRKkcvDLzhKctklmdpbc=
Subject key identifier: EA:6F:9D:78:78:02:A5:78:EA:CC:2F:23:A9:77:96:7E:95:12:9A:BA
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018D1C7516EE731C79148EB3B68C5DF15572
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/6m-deHgCpXjqzC8jqXeWfpUSmro.roa
Signing time: Thu 18 Jan 2024 12:04:12 +0000
ROA not before: Thu 18 Jan 2024 12:04:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211738
IP address blocks: 2a0e:b107:fd0::/44 maxlen: 48
Validation: Failed, certificate revoked on Fri 19 Jan 2024 22:37:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1c:75:16:ee:73:1c:79:14:8e:b3:b6:8c:5d:f1:55:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 18 12:04:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea6f9d787802a578eacc2f23a977967e95129aba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:d3:b9:d8:73:74:41:dc:74:ee:aa:ca:61:b2:
c6:53:db:0d:2f:73:ed:05:ca:14:85:5b:7d:04:79:
b9:df:58:5a:22:e2:b5:c3:16:85:1a:e2:74:bb:03:
3b:55:0f:f5:36:1a:ad:8e:57:97:71:c3:0b:ea:92:
19:00:bc:34:af:01:82:f5:6f:58:10:0f:7a:6f:fe:
42:88:e6:60:ad:1e:b4:79:75:a1:d7:1e:db:e5:9d:
6e:7b:c2:de:24:4a:fe:52:98:7d:74:fc:01:d2:ff:
3c:1b:0f:4b:d5:fc:53:62:5c:8a:fa:85:1a:70:21:
15:05:0f:a7:0c:02:c5:bb:62:d5:0c:05:66:cc:6a:
f1:4d:b8:66:5a:8a:5a:cb:a3:77:af:98:f4:0d:dd:
a3:6a:9c:a9:fd:ac:df:1d:05:ce:c0:75:60:fd:84:
83:26:86:56:f2:5d:d4:69:6e:2a:87:e2:6b:df:f6:
35:cc:f0:e3:22:74:cc:ce:dc:02:7d:b3:a7:9d:9e:
dd:d4:79:4b:0e:dd:cd:13:85:8c:30:43:db:b7:88:
c5:a2:4b:55:e8:c8:4e:d0:1c:e8:a8:2e:32:83:15:
71:43:0a:ff:53:61:21:d8:98:99:ec:9b:36:66:99:
3f:ba:77:df:31:e2:4c:c4:13:d6:6b:53:3e:7a:d4:
f3:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:6F:9D:78:78:02:A5:78:EA:CC:2F:23:A9:77:96:7E:95:12:9A:BA
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/6m-deHgCpXjqzC8jqXeWfpUSmro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:fd0::/44
Signature Algorithm: sha256WithRSAEncryption
48:79:c9:02:d9:01:50:6b:59:43:f4:82:f6:38:e5:0a:7e:67:
66:b4:33:ee:d5:b4:22:6f:47:8a:50:91:d1:e2:5c:ce:b0:88:
f1:fb:c3:5f:2e:63:0e:b9:a3:c8:13:8e:5a:8d:e7:74:1c:0a:
ba:c1:bc:53:28:13:89:57:17:d2:d8:21:11:25:58:66:eb:a2:
4e:1c:bf:19:b1:db:38:d3:81:2e:59:f2:51:94:dd:9e:33:cd:
24:70:76:c1:23:b4:82:fe:2a:64:8b:1d:32:3a:94:ea:fd:76:
ea:86:7b:f4:a0:66:0e:bf:1f:a4:b4:c7:3b:62:c5:f6:44:00:
9f:f9:82:2d:58:99:55:e7:c5:8e:65:f8:d6:f8:44:6c:cf:f1:
8d:81:eb:2f:7a:40:ad:29:ff:74:88:17:17:ca:5d:98:51:63:
93:92:96:6e:29:96:96:1e:52:87:8f:91:e2:ee:9c:0e:a0:83:
60:09:f5:b4:05:a2:3d:24:04:f6:fe:f7:4a:ee:fd:1d:a4:38:
af:41:3c:9f:2d:1b:f5:18:82:40:df:1e:5d:eb:13:20:65:6b:
ed:e8:96:e7:8d:37:eb:12:85:80:0d:28:df:97:60:3c:4a:86:
c9:ba:25:2f:7d:eb:90:04:b3:fc:38:d0:dd:ef:58:2f:24:af:
c2:45:b0:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jan 20 02:38:43 2024 by rpki-client on console-ams.rpki-client.org