Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/95LeaWmgWe_UUbtVtGPQnw4QB_U.roa
File: 95LeaWmgWe_UUbtVtGPQnw4QB_U.roa (raw, json)
Hash identifier: POI2cyD25TUQnKnqSOHbr75yhSPQZGgntahv54dZRrg=
Subject key identifier: F7:92:DE:69:69:A0:59:EF:D4:51:BB:55:B4:63:D0:9F:0E:10:07:F5
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018BC0CCA261863F48A9DF91C8885E67784C
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/95LeaWmgWe_UUbtVtGPQnw4QB_U.roa
Signing time: Sat 11 Nov 2023 23:51:58 +0000
ROA not before: Sat 11 Nov 2023 23:51:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 2a0e:b107:27c7::/48 maxlen: 48
2a0e:b107:27ac::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 16 Dec 2023 18:37:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c0:cc:a2:61:86:3f:48:a9:df:91:c8:88:5e:67:78:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 11 23:51:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f792de6969a059efd451bb55b463d09f0e1007f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9d:68:5b:8f:ac:95:1d:e0:9a:29:e3:80:f7:
a2:e9:c6:c7:cd:7c:ab:09:52:2e:07:45:c3:e9:db:
83:14:7d:27:72:af:65:08:4c:78:e6:25:4a:30:09:
56:c5:ea:36:b1:18:15:db:09:be:f9:bd:c7:e8:bc:
64:d0:f3:a4:94:4f:8c:83:9c:f9:08:1e:68:99:ed:
90:d3:95:9c:18:05:08:70:b8:04:c9:25:73:bb:08:
ac:67:41:92:42:19:f7:ba:31:b6:4a:18:ff:64:cb:
67:38:b4:4d:bb:79:1e:2d:3a:39:8e:99:68:01:b6:
85:63:59:58:02:a3:3e:3d:99:20:59:7b:9b:fb:a6:
d3:41:fd:ea:1c:a6:22:d5:10:7e:56:03:df:14:51:
c1:cb:1e:21:17:f7:4f:12:bd:03:fd:61:27:e3:50:
3a:8b:de:66:83:48:fc:cb:89:fd:b3:95:b7:a8:66:
76:d0:ac:1d:25:81:29:bf:ef:3a:32:f0:c5:f7:91:
70:d6:01:2f:40:d5:a3:e7:af:1c:62:9a:e5:57:0e:
8b:6a:8f:04:a9:a9:50:37:03:68:7f:72:62:51:a6:
a9:cf:8d:52:4b:83:67:35:a3:23:02:75:fc:d0:14:
5d:6d:b6:5c:7c:8c:dc:5e:1c:57:49:87:32:84:b3:
bf:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:92:DE:69:69:A0:59:EF:D4:51:BB:55:B4:63:D0:9F:0E:10:07:F5
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/95LeaWmgWe_UUbtVtGPQnw4QB_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:27ac::/48
2a0e:b107:27c7::/48
Signature Algorithm: sha256WithRSAEncryption
a6:a0:46:83:ab:97:7f:3d:33:fd:d9:4f:5c:4e:c2:d9:7a:79:
36:5b:b6:9b:47:49:f1:cd:aa:ee:ac:b3:4f:dd:42:a9:1e:42:
2c:2c:fd:2b:85:7e:14:00:b4:f5:1f:f7:90:6c:eb:49:86:c7:
24:94:a2:3b:3d:ab:74:46:3f:53:f3:31:f2:bf:69:fa:0e:68:
1b:32:b1:62:fd:0d:46:47:2b:aa:b6:ea:78:4d:be:24:d8:8f:
3e:78:e5:46:cb:f0:11:c5:f5:4e:d3:34:00:cf:a9:8e:39:ca:
7d:c1:a8:ac:b0:e5:1e:17:3b:aa:c3:e4:47:f7:3a:7d:46:dd:
2f:e2:8a:1d:52:ac:5d:d9:38:b1:5d:1e:82:ba:a2:73:c4:e8:
76:a3:a6:31:01:3b:72:fc:98:8d:c6:b3:4c:83:0a:e4:6e:17:
5e:43:a7:59:b4:9e:d2:c3:05:e9:03:b3:7a:c3:e9:15:d5:8b:
eb:44:16:52:97:ae:7a:50:d9:60:a0:4c:65:6d:8d:ae:ca:92:
7b:d9:8c:cd:47:3f:1c:ee:42:2b:d7:20:51:a9:7d:d3:b6:91:
9c:88:dd:83:d2:88:57:2a:8a:84:37:e7:0b:bc:43:60:c2:79:
61:36:e1:91:e7:4f:b5:cb:d5:fe:45:fa:f5:22:90:8a:c0:7c:
ea:81:c6:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:55 2024 by rpki-client on console-ams.rpki-client.org