Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/6v2a2S0dIC8NvYQhiN_7FNieiPo.roa
File: 6v2a2S0dIC8NvYQhiN_7FNieiPo.roa (raw, json)
Hash identifier: 1tGwLXmfjqR4E29jxnt+RsCsrZ+trniwdtgQiOD/D6U=
Subject key identifier: EA:FD:9A:D9:2D:1D:20:2F:0D:BD:84:21:88:DF:FB:14:D8:9E:88:FA
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018CC9BD58E4E4C4D5680F140D924E391422
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/6v2a2S0dIC8NvYQhiN_7FNieiPo.roa
Signing time: Tue 02 Jan 2024 10:34:38 +0000
ROA not before: Tue 02 Jan 2024 10:34:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216387
IP address blocks: 2a06:de01:502::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 27 Feb 2024 23:51:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bd:58:e4:e4:c4:d5:68:0f:14:0d:92:4e:39:14:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 10:34:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eafd9ad92d1d202f0dbd842188dffb14d89e88fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c3:a9:2c:1b:d2:13:1d:88:d7:b1:6c:8f:46:
10:f1:e4:25:5e:a4:d9:eb:97:8a:af:91:24:72:63:
6d:63:89:00:d8:4d:e3:64:e2:c0:f8:6e:2f:ad:86:
83:63:71:07:96:2e:c2:1f:7d:8a:a8:20:b2:65:75:
32:5e:61:64:e0:7f:f2:df:04:a6:a3:13:2a:e3:0c:
b8:b5:ee:42:9b:4f:68:84:da:e3:b2:47:04:bd:ca:
ad:24:46:2a:96:b0:d3:79:96:82:25:37:fa:cf:29:
e0:de:d9:a7:21:7f:eb:a0:96:d8:0d:e5:3f:44:cf:
b8:17:71:8d:9a:45:0e:01:d8:3b:8f:10:bb:43:7f:
c4:a0:1d:d8:e4:0f:e1:53:d7:b9:97:1a:a7:6d:6d:
1c:f3:c4:ee:c0:04:ac:e9:2e:b9:3a:c5:91:b8:08:
57:52:38:fd:be:e9:0f:77:80:47:5d:04:18:1f:c5:
c5:73:5a:ce:9f:70:0e:07:66:d5:d8:25:d6:8a:0f:
d7:b3:d4:14:90:c1:56:99:07:d1:3f:70:51:cc:68:
29:2a:1a:60:d1:c3:db:19:a8:8e:f1:24:d3:57:83:
b2:0e:b6:44:7c:ea:17:87:2c:3b:dd:9d:c8:6a:c1:
fa:eb:ce:ec:bd:cb:70:d8:71:47:ee:4a:14:f5:34:
96:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:FD:9A:D9:2D:1D:20:2F:0D:BD:84:21:88:DF:FB:14:D8:9E:88:FA
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/6v2a2S0dIC8NvYQhiN_7FNieiPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:de01:502::/48
Signature Algorithm: sha256WithRSAEncryption
b8:fe:dd:55:f7:cf:9c:50:7a:84:ea:32:76:43:3f:8b:c1:22:
65:99:2e:c4:eb:97:72:de:cc:8c:69:c0:69:4d:12:dd:5c:3e:
ba:6a:65:4d:ac:b0:c8:91:d7:28:3f:ca:d8:f1:b2:ad:75:98:
a5:18:d3:a3:a0:74:7d:a9:28:d5:93:3c:71:7f:93:05:17:b8:
87:ac:05:bb:5e:56:3e:cc:92:cf:fe:8b:16:45:ab:4d:2f:c8:
15:7b:99:a3:8a:84:48:94:f0:3e:4f:0b:b0:df:c4:95:26:0b:
92:37:10:ea:07:66:00:ef:11:6c:41:ff:9f:e4:e6:9e:10:d0:
68:64:0c:39:94:8e:3d:16:5f:ac:e4:c7:78:31:67:bb:e4:75:
a6:dd:a7:12:f8:95:56:b5:53:a0:8d:a7:19:d0:10:70:8f:0e:
74:64:66:18:78:97:e7:07:19:88:03:12:d0:ae:1b:a4:43:8e:
5a:e1:4c:8a:90:31:e3:e4:0e:dd:35:d5:f3:ee:1a:53:55:73:
83:12:58:71:e8:0c:b7:e5:ec:43:4b:98:63:b5:7e:20:db:db:
10:5f:d6:e8:80:26:85:5e:40:52:33:75:b4:21:ae:22:84:af:
b1:6e:36:c7:8b:d2:4e:50:5e:26:50:9a:aa:f4:19:c2:dd:6d:
bf:08:cf:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 28 02:53:50 2024 by rpki-client on console-fra.rpki-client.org