Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/8Fro0PilAYmatxfcYSC4LGh9G0M.roa
File: 8Fro0PilAYmatxfcYSC4LGh9G0M.roa (raw, json)
Hash identifier: i3x0m89Qm1n/4oYVkbaQoCRIvnKFO4Qjfkfsm9cCFAw=
Subject key identifier: F0:5A:E8:D0:F8:A5:01:89:9A:B7:17:DC:61:20:B8:2C:68:7D:1B:43
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185DE40A8D628AD7E8CD3A463721EFC1009
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/8Fro0PilAYmatxfcYSC4LGh9G0M.roa
Signing time: Mon 23 Jan 2023 10:50:57 +0000
ROA not before: Mon 23 Jan 2023 10:50:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42394
IP address blocks: 2a0e:97c7:160::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:de:40:a8:d6:28:ad:7e:8c:d3:a4:63:72:1e:fc:10:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 23 10:50:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f05ae8d0f8a501899ab717dc6120b82c687d1b43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e0:cd:24:7d:14:b7:4e:d2:9a:74:51:d9:1d:
b2:dc:1e:05:de:a5:f3:f7:12:48:a6:78:77:8d:73:
2e:bd:92:7d:40:06:ee:13:eb:53:b5:f5:38:b2:99:
13:03:d6:9a:19:9b:6d:83:e8:64:75:ff:6c:4a:27:
54:b6:5b:44:06:f4:5e:0f:75:f7:43:eb:40:38:3d:
d6:19:7a:18:4e:e9:b4:b0:27:93:2f:66:00:46:92:
05:de:49:04:e8:92:10:62:83:90:5d:51:2e:29:d4:
59:35:2f:c8:1c:0a:3c:b9:b2:89:0f:33:c6:d9:1a:
5a:90:31:18:69:8a:eb:31:2b:4f:24:f0:9f:ef:39:
15:49:7d:3f:61:90:b8:10:ab:88:60:13:14:86:e4:
b1:d3:10:b7:01:c4:44:8f:79:ff:0e:85:d9:8d:5a:
e3:bc:b7:0b:74:4d:33:43:55:f8:69:34:72:08:c1:
32:5c:fe:3c:20:86:b8:36:9b:57:c6:1f:f4:90:25:
48:d6:ea:f1:70:c8:ff:4a:67:a2:ac:b3:4d:b8:4c:
aa:3e:df:13:11:a4:1f:c4:69:f2:1b:d0:00:38:31:
8f:88:55:a8:5a:77:34:9c:dd:14:1c:bc:37:2a:63:
f9:f8:39:c8:f8:e6:0b:cf:ba:12:47:ae:32:db:99:
54:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:5A:E8:D0:F8:A5:01:89:9A:B7:17:DC:61:20:B8:2C:68:7D:1B:43
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/8Fro0PilAYmatxfcYSC4LGh9G0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c7:160::/44
Signature Algorithm: sha256WithRSAEncryption
2d:a8:4a:99:81:0d:c0:5d:be:9a:cb:61:7a:2c:35:77:a2:4d:
1f:fc:5b:90:41:2d:18:2f:0c:8c:45:a2:fc:12:21:37:85:51:
9b:a0:82:ae:96:b6:ae:42:02:0b:66:d4:ed:33:07:f5:a9:61:
10:38:f9:ab:2b:4b:6f:fc:46:70:28:9a:40:10:92:66:4d:5f:
f8:75:b1:29:cc:dd:91:78:e4:8a:a8:67:f1:4e:39:4c:8b:43:
96:41:91:89:5d:ff:ad:03:d0:f5:9e:f9:a6:41:2c:5b:82:d0:
a0:8f:46:63:a3:f1:a4:7e:ab:79:db:43:d6:63:04:bf:55:f7:
e9:09:4c:37:09:32:c8:7d:65:c3:33:6b:d0:6e:45:79:5e:fa:
29:40:20:0b:1e:8e:db:bb:2f:3c:9d:8a:10:0a:11:07:50:81:
4e:7c:6e:41:a8:d4:70:76:1e:58:6a:f9:e7:c6:72:9b:8d:4f:
29:49:55:67:ee:44:af:30:e2:7d:df:38:77:23:41:db:7d:b4:
a7:0d:2b:ae:e5:3e:de:88:42:33:17:43:c0:f5:21:1e:ed:e8:
0b:da:2a:76:b0:df:d7:6f:dd:6c:0f:d1:98:2d:95:f6:c8:c7:
a7:85:c6:3b:42:91:d8:c0:65:ae:f5:d3:16:20:c7:03:9f:33:
bf:b9:88:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:56 2023 by rpki-client on console-ams.rpki-client.org