Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AHYDMZPvSjCkb8ca3SqZn9DEfyo.roa
File: AHYDMZPvSjCkb8ca3SqZn9DEfyo.roa (raw, json)
Hash identifier: 4BEdb9jrn9mHHqmq+OggigLDHXTq1z3RDKDchrpbiu0=
Subject key identifier: 00:76:03:31:93:EF:4A:30:A4:6F:C7:1A:DD:2A:99:9F:D0:C4:7F:2A
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0186179FBFFA340ACAECE98A4D12D42D267C
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AHYDMZPvSjCkb8ca3SqZn9DEfyo.roa
Signing time: Fri 03 Feb 2023 14:13:10 +0000
ROA not before: Fri 03 Feb 2023 14:13:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a0e:b107:1870::/48 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a0e:b107:5d0::/44 maxlen: 48
2a0e:b107:5e0::/44 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:b107:900::/44 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a0e:97c0:736::/48 maxlen: 48
2a0e:b107:11b1::/48 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:b102:12f::/48 maxlen: 48
2a0e:97c0:76f::/48 maxlen: 48
2a0e:97c0:73f::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 04 Feb 2023 02:54:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:17:9f:bf:fa:34:0a:ca:ec:e9:8a:4d:12:d4:2d:26:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 3 14:13:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0076033193ef4a30a46fc71add2a999fd0c47f2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1e:31:55:2d:80:1e:31:c4:bb:2e:67:ef:a8:
bd:dd:87:89:85:c9:f2:23:8b:be:e8:ad:17:39:88:
ad:57:98:34:5b:2e:07:cd:09:ea:3d:11:9a:a2:85:
de:fc:47:ad:0f:c3:26:1d:50:60:d4:d6:19:92:3d:
13:a3:36:ca:38:e6:46:90:d8:a0:7b:ef:7b:a6:b6:
75:c6:fe:b1:48:b0:ae:94:5c:0a:17:54:fc:cb:c1:
4c:55:43:2f:e2:4b:46:82:33:a9:4a:a4:04:00:eb:
3f:ef:c6:a1:a1:fc:ea:65:32:8f:33:06:da:e3:97:
6a:0e:17:ee:86:5b:4f:86:75:f5:65:d2:a6:93:c1:
7d:39:df:a2:7a:d5:49:b5:b1:77:36:ba:23:3e:24:
40:ee:41:de:d9:a7:c3:f1:20:11:99:b6:8d:54:04:
c6:01:33:c0:41:a4:e7:f4:ab:2d:af:b9:e6:cc:9b:
46:f6:ea:16:8f:c2:8a:10:ef:05:fe:04:1a:a7:02:
12:cc:a7:54:2f:fe:52:0a:d0:f6:9f:63:6c:9a:0b:
e5:9a:8f:94:b4:1a:0b:97:34:c9:15:76:12:c4:f6:
65:ea:c0:3c:ad:2a:3b:1d:60:7d:3c:3d:3f:36:ad:
82:63:03:f6:c7:b5:e5:1e:d3:ea:11:35:1d:02:fd:
04:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:76:03:31:93:EF:4A:30:A4:6F:C7:1A:DD:2A:99:9F:D0:C4:7F:2A
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AHYDMZPvSjCkb8ca3SqZn9DEfyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:736::/48
2a0e:97c0:73f::/48
2a0e:97c0:750::/48
2a0e:97c0:76f::/48
2a0e:b102:12f::/48
2a0e:b107:5d0::-2a0e:b107:5ef:ffff:ffff:ffff:ffff:ffff
2a0e:b107:900::/44
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:11b1::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
Signature Algorithm: sha256WithRSAEncryption
bb:9c:2b:85:f9:64:2c:04:67:bb:98:0d:52:9b:94:24:dc:65:
ec:f6:1e:85:03:0e:03:de:46:51:b4:d1:9c:6e:17:b0:17:ba:
3e:01:79:a3:de:da:0d:06:08:00:08:76:9f:9c:40:fd:b3:91:
07:08:b7:26:20:ab:4b:05:93:eb:80:38:86:d3:71:08:56:56:
9f:1e:a2:bf:6e:ca:2e:63:84:ad:a1:66:e4:10:17:38:f8:97:
9a:a6:16:51:f5:e7:47:5d:99:d4:34:86:c6:af:04:8f:19:06:
fa:7f:be:c9:60:9b:c2:4b:8d:f8:36:84:c0:04:ac:02:5b:86:
ac:6c:f6:8b:0e:c9:87:73:65:4a:a9:57:8c:72:69:b7:de:88:
58:b1:6f:6b:a3:2f:bb:fc:7e:0a:49:ea:98:85:1a:4a:b9:b9:
f1:d7:a2:a5:b4:be:36:10:ad:1b:43:91:a2:70:4f:70:12:0f:
9f:1b:71:6a:23:37:71:6a:ac:5a:cf:06:a3:74:52:4d:7d:4a:
98:e2:f3:b6:13:8a:f0:0e:42:c3:58:1b:7c:38:a2:48:91:24:
c6:00:4d:f9:1b:1f:17:ff:61:d5:4b:42:9a:6f:98:a4:55:39:
a6:2f:54:fc:e6:aa:40:56:99:b4:6f:4c:2f:14:bb:be:d9:3d:
78:35:4a:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:56 2024 by rpki-client on console-ams.rpki-client.org