Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/8hvCuteblueLflzrs-48QP9qwkQ.roa
File: 8hvCuteblueLflzrs-48QP9qwkQ.roa (raw, json)
Hash identifier: aRHI4SKjrqoOrDIJQEiWuTRAXkBlQ0KCnRtihIvT3io=
Subject key identifier: F2:1B:C2:BA:D7:9B:96:E7:8B:7E:5C:EB:B3:EE:3C:40:FF:6A:C2:44
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01867924BD71AF794F68781AF29373320825
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/8hvCuteblueLflzrs-48QP9qwkQ.roa
Signing time: Wed 22 Feb 2023 12:41:36 +0000
ROA not before: Wed 22 Feb 2023 12:41:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199762
IP address blocks: 2a0e:b107:11b0::/44 maxlen: 48
Validation: Failed, certificate revoked on Wed 22 Feb 2023 15:45:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:79:24:bd:71:af:79:4f:68:78:1a:f2:93:73:32:08:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 22 12:41:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f21bc2bad79b96e78b7e5cebb3ee3c40ff6ac244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:31:3f:81:d2:d6:47:af:c4:c9:fd:1a:b9:d7:
da:35:4c:01:c2:dc:f7:ce:12:a1:3b:b1:67:5f:be:
a3:1c:bc:70:5f:4f:3c:d8:ff:47:d8:91:4a:b6:2d:
0f:61:09:e2:ff:2c:fd:74:e5:63:c1:48:9b:ac:79:
ef:49:85:e8:57:12:83:95:5a:2b:c0:fd:82:ca:6c:
b9:74:89:3f:16:5e:2a:ef:b2:39:5e:de:ae:1a:de:
9b:14:c0:50:e8:94:32:b6:62:7a:0a:93:62:d9:5b:
d7:db:76:0c:8c:aa:b0:ad:d1:b5:25:25:2e:da:da:
e6:df:94:8b:11:21:50:ac:d0:57:51:7f:f7:6f:9b:
22:75:3b:de:a5:f1:74:60:d8:a9:e4:1e:73:08:50:
d9:ca:ce:29:38:b3:02:15:b0:6d:7d:58:8d:c3:bf:
a0:80:ab:2b:b0:e0:b2:47:09:fa:de:16:ec:c5:49:
de:26:c7:f5:eb:bc:3c:ac:07:77:c3:e4:3a:1e:f9:
36:ea:c6:94:86:06:cb:4a:14:7b:c8:9a:bd:fa:35:
bb:6a:d2:1e:0e:40:d2:7b:a2:9e:01:d8:43:1a:29:
db:ce:1d:15:85:04:40:1c:a1:82:4f:96:30:f0:02:
43:3e:2e:7a:0e:20:31:76:ea:d9:dd:3d:d4:d1:fd:
17:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:1B:C2:BA:D7:9B:96:E7:8B:7E:5C:EB:B3:EE:3C:40:FF:6A:C2:44
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/8hvCuteblueLflzrs-48QP9qwkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:11b0::/44
Signature Algorithm: sha256WithRSAEncryption
3b:33:28:8c:38:81:bd:41:6c:50:0e:06:fc:03:ca:74:a0:a0:
18:96:a0:36:5d:72:96:4b:f6:47:3f:45:55:fe:15:f4:43:02:
aa:f8:79:d5:b4:b1:e6:37:58:6e:53:de:07:a3:f6:a6:24:90:
96:4c:fe:9a:24:b1:80:f6:bf:d6:53:d3:93:d9:c3:e2:d1:1c:
8c:51:93:8a:f3:f3:a1:43:88:58:b3:85:b0:f5:c2:e0:35:20:
f5:73:92:91:df:46:94:ee:25:63:0c:82:0f:0c:58:f9:ab:c2:
b8:7f:f3:de:3b:8e:94:20:f5:6a:7f:ec:1f:df:8c:54:a3:e4:
aa:a4:78:80:1d:ac:7d:06:ff:cb:8d:a3:79:e5:51:34:c4:d6:
2b:10:56:b8:15:89:c5:a4:01:f4:c2:eb:3d:a6:0a:b1:c0:3b:
c3:52:78:dd:27:f9:21:1e:c0:d7:25:ae:ed:2b:b0:bd:3b:3b:
c9:19:26:40:19:e9:8b:d5:93:fd:0d:10:0b:59:8b:b8:f8:d8:
49:d0:b9:85:04:28:47:52:0c:eb:42:78:24:d6:23:d7:57:34:
56:83:7c:0b:a6:a3:2c:ab:2f:f7:bc:ec:26:c5:4a:68:af:b0:
47:db:2d:a2:b7:d7:10:9e:ae:f8:78:b8:08:87:bd:75:17:09:
51:c3:a3:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:23 2024 by rpki-client on console-fra.rpki-client.org