Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/7KB5yCIGWPu5tz4Qs4av3o51CBM.roa
File: 7KB5yCIGWPu5tz4Qs4av3o51CBM.roa (raw, json)
Hash identifier: ZoTznMDl8LwUjEnzJzzeZh3gPmEb3L6cyxU7McSsEO0=
Subject key identifier: EC:A0:79:C8:22:06:58:FB:B9:B7:3E:10:B3:86:AF:DE:8E:75:08:13
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018BB4ED13AFA3B8D7E7F378A378EFB594CF
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/7KB5yCIGWPu5tz4Qs4av3o51CBM.roa
Signing time: Thu 09 Nov 2023 16:31:57 +0000
ROA not before: Thu 09 Nov 2023 16:31:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a0e:b107:1870::/48 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a10:ccc0:110::/44 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a10:ccc3:ccce::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:97c0:76f::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b4:ed:13:af:a3:b8:d7:e7:f3:78:a3:78:ef:b5:94:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 9 16:31:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eca079c8220658fbb9b73e10b386afde8e750813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:36:da:44:31:cd:8c:a4:51:3b:37:b8:f4:72:
72:10:d6:a6:c3:f3:cb:46:1d:54:3f:05:cf:93:d4:
77:b2:1c:52:03:fe:08:0e:4b:20:67:e3:e7:cf:97:
a9:05:99:ec:fe:63:f2:8b:e6:92:c9:48:aa:72:3f:
5a:56:3a:df:44:57:d9:a4:c7:d9:70:9b:d6:f4:7c:
52:87:11:13:98:8a:c6:c6:b1:6e:c7:67:54:0c:73:
3f:5c:cc:6d:ce:a9:50:c9:cb:de:64:5d:ea:d0:1a:
ad:68:85:4d:03:26:45:31:26:c8:9f:91:52:41:95:
f6:a6:78:22:ef:49:63:48:a4:ea:24:ad:a6:83:df:
a1:d7:5c:ce:65:26:2a:af:0e:4a:ce:d0:a9:d8:87:
e5:03:02:6e:2e:31:83:77:38:91:8d:4b:19:54:10:
e0:c1:7f:20:3d:ba:4d:f7:8b:64:74:72:da:4e:38:
19:e8:ec:c8:39:30:c9:c8:d5:38:8a:e7:a6:71:00:
5d:e8:65:64:30:bf:e3:7f:15:2c:8b:9c:56:6d:1e:
3f:68:56:90:70:48:00:3a:5e:4e:48:dd:86:de:38:
15:14:bc:a3:6f:07:98:0e:17:a3:a5:96:b5:59:d7:
dc:9f:26:f2:bc:5f:52:48:24:dc:66:17:8e:9e:82:
23:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:A0:79:C8:22:06:58:FB:B9:B7:3E:10:B3:86:AF:DE:8E:75:08:13
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/7KB5yCIGWPu5tz4Qs4av3o51CBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:76f::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c4:ac00::/38
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc0:110::/44
2a10:ccc3:ccce::/48
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
99:36:ff:67:58:1c:fc:29:af:08:d8:9e:63:6f:6c:69:fc:3e:
9d:d0:ab:ae:e9:cd:44:74:e3:f7:2f:83:dd:d3:29:54:f0:6b:
29:3b:ae:47:a5:37:55:22:62:40:16:2d:61:7b:3c:74:94:51:
6a:3a:84:d7:c1:f7:46:08:06:d3:40:ce:3e:f8:18:4d:af:f3:
70:f4:c9:9d:4f:b5:5f:b6:7e:5e:8a:a9:2e:76:3d:31:a3:83:
06:11:7d:7a:14:77:8d:ba:90:4e:23:e4:65:cb:2c:42:e8:9e:
c5:e4:74:2b:bb:ed:e4:c6:63:b5:d0:d1:16:58:5b:9e:3d:be:
3e:db:82:0f:22:bf:68:d8:49:1c:ad:b1:c8:97:76:e1:62:db:
ae:4a:7f:6d:ff:72:ea:01:02:45:6f:2f:c1:a6:4e:d6:fa:d6:
44:10:79:f7:6f:88:70:d6:dc:7e:e0:a3:e2:1f:34:3b:7a:b0:
da:5e:1d:d2:c2:a1:04:09:04:19:a0:0c:90:7e:f4:ef:9f:ee:
24:2a:8d:eb:08:21:ce:7a:a1:de:d2:b1:25:14:83:8f:b9:91:
7f:f3:ae:ad:c7:ba:d2:7b:3e:bc:7e:66:6d:d6:11:92:04:7c:
6c:20:b5:60:2b:f6:77:df:c8:0f:70:ea:4d:75:21:31:b0:b9:
24:75:f7:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 9 18:22:37 2023 by rpki-client on console-fra.rpki-client.org