Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/8iTdhk307_3SxrxOcZuKZfDpYEo.roa
File: 8iTdhk307_3SxrxOcZuKZfDpYEo.roa (raw, json)
Hash identifier: ZF7u1In2MeExKZ4V55SXmty1vzVSjBCzMOFqmzqK9KU=
Subject key identifier: F2:24:DD:86:4D:F4:EF:FD:D2:C6:BC:4E:71:9B:8A:65:F0:E9:60:4A
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018C9C9D8844E6040A44F5E2C6B304012B1A
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/8iTdhk307_3SxrxOcZuKZfDpYEo.roa
Signing time: Sun 24 Dec 2023 16:16:58 +0000
ROA not before: Sun 24 Dec 2023 16:16:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a0e:b107:19a0::/48 maxlen: 48
2a10:ccc0:3002::/48 maxlen: 48
2a06:de00:10::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 24 Dec 2023 18:36:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:9c:9d:88:44:e6:04:0a:44:f5:e2:c6:b3:04:01:2b:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 24 16:16:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f224dd864df4effdd2c6bc4e719b8a65f0e9604a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:36:1b:46:ff:53:43:97:2b:18:2a:cc:8c:42:
43:42:44:38:86:16:cc:72:c7:0d:96:8e:39:2e:31:
f1:2d:50:ad:57:46:c8:34:5a:52:d4:d4:36:74:4a:
99:28:25:7e:5b:e7:cb:b6:a9:46:e5:f6:de:72:08:
9f:0b:43:7f:a6:48:57:8d:b0:a5:6c:a7:ef:38:47:
92:3b:5d:73:c2:33:5b:d2:96:f4:db:b9:51:8b:29:
d2:7c:c0:0d:31:79:12:20:7f:18:fa:72:ed:20:38:
99:d7:1c:73:79:7a:e3:b2:a6:95:c5:24:f0:e2:25:
63:0f:f8:87:f3:8f:2e:f7:56:c1:47:65:4c:ec:2d:
06:61:31:89:c4:88:3a:86:75:da:60:52:fa:07:ce:
ac:6d:90:20:9b:33:13:13:ef:73:b8:6d:66:68:ce:
79:6f:d4:9e:04:c3:e1:a5:7c:d3:25:54:31:73:c0:
60:79:75:9c:36:48:cb:7e:07:a8:bf:72:20:48:d4:
74:1b:30:3c:ce:ec:23:6d:d4:8b:dd:72:b6:88:2d:
16:55:40:ab:75:1b:06:dc:cc:c2:55:f6:53:d4:c4:
01:a9:a1:4e:cc:b7:3d:c1:e6:87:12:92:cf:c1:30:
95:45:0b:2d:ea:86:71:da:72:82:62:f2:86:18:c1:
74:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:24:DD:86:4D:F4:EF:FD:D2:C6:BC:4E:71:9B:8A:65:F0:E9:60:4A
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/8iTdhk307_3SxrxOcZuKZfDpYEo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:de00:10::/48
2a0e:b107:19a0::/48
2a10:ccc0:3002::/48
Signature Algorithm: sha256WithRSAEncryption
7f:89:f7:2e:6e:76:ab:b9:7f:f4:ca:6d:6d:15:d5:47:8f:16:
72:80:18:2b:ff:f9:56:b3:69:14:b2:52:09:5c:f9:44:3a:aa:
6b:36:cb:b0:a3:bd:11:73:0e:5d:16:70:aa:0c:5c:94:52:48:
c9:43:47:62:cb:3f:c1:f5:f8:5d:f4:1e:d8:3d:4d:4a:95:9c:
08:13:d5:0f:d1:46:23:40:b9:1a:e4:3b:74:e9:83:f1:63:86:
eb:f3:fe:07:1c:6a:b1:d7:35:b7:08:f4:44:3c:c5:b3:d1:63:
25:06:77:5b:a6:53:78:5e:c4:cd:e6:2d:e5:b5:36:95:c2:5b:
e0:30:fd:72:68:a1:1f:7f:c4:89:16:71:37:92:c0:c4:0c:57:
8d:c9:9f:9b:23:6f:7a:e6:f5:ba:c9:f8:c7:1b:35:b8:1a:54:
c1:21:33:99:ee:b2:09:83:60:32:5a:c0:f4:1f:03:da:8c:3f:
10:9c:68:88:42:0e:19:f0:ec:87:e1:b1:dd:eb:f1:7b:c4:6a:
6b:4e:95:09:31:22:60:ec:a1:c4:05:44:9f:9b:69:76:03:84:
3d:95:39:18:b7:71:6e:bf:1d:fe:32:68:77:49:4f:db:60:81:
02:31:c8:8a:73:62:a3:ca:6b:53:2c:a0:97:94:fe:c1:a0:f9:
75:77:0e:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:55 2024 by rpki-client on console-ams.rpki-client.org