Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AQegx0PpNOnfE3ZlPR0OBK02ReY.roa
File: AQegx0PpNOnfE3ZlPR0OBK02ReY.roa (raw, json)
Hash identifier: RvjSHn0bXxTZogodxzxusnJpXmig+FSO5GtRScAbO4o=
Subject key identifier: 01:07:A0:C7:43:E9:34:E9:DF:13:76:65:3D:1D:0E:04:AD:36:45:E6
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7FE8F64421D6FCA58B7BCBD40A114
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AQegx0PpNOnfE3ZlPR0OBK02ReY.roa
Signing time: Mon 02 Jan 2023 05:15:30 +0000
ROA not before: Mon 02 Jan 2023 05:15:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211267
IP address blocks: 2a0e:b107:1370::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 23 Jan 2023 10:50:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:fe:8f:64:42:1d:6f:ca:58:b7:bc:bd:40:a1:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0107a0c743e934e9df1376653d1d0e04ad3645e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d4:38:b3:c0:a7:7e:d0:87:f6:79:7a:4f:f3:
97:0c:c4:eb:ff:5a:c2:91:50:74:4d:58:33:83:01:
89:3f:2f:8b:17:e9:0e:9c:c0:6a:14:7c:ef:a1:a6:
12:a8:11:f5:f3:05:74:06:09:ce:4c:d6:f5:9a:73:
d0:a5:42:c5:17:5d:49:ff:c3:49:85:94:7f:55:7b:
71:a0:27:33:58:8e:4d:5c:64:b0:e3:ec:c4:31:59:
9f:cf:26:3a:9f:7b:db:e9:b6:07:21:1f:9d:8a:ce:
5e:5e:94:9d:c4:09:46:5a:b5:c3:a1:04:55:1b:ed:
7b:cc:86:2d:5a:4c:f9:84:d6:f1:25:73:f4:f1:49:
7c:93:e1:31:06:12:c7:5e:29:37:3c:56:6c:08:d2:
46:05:ae:8f:d2:8e:43:35:d4:3b:56:89:5a:99:9c:
89:ed:bf:70:72:f2:1d:fe:6b:66:b5:4d:27:15:47:
35:57:12:c5:81:03:07:c2:4e:f4:1d:92:b1:a7:d9:
1f:be:34:37:fa:9a:3f:1c:7b:75:ad:36:37:63:88:
96:28:33:ab:5a:22:96:46:e8:35:61:8a:88:68:43:
be:cb:db:54:90:44:00:15:26:58:88:17:f5:de:e3:
42:50:ae:7e:e9:b8:1b:37:ef:12:a3:6f:3e:dd:e5:
f4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:07:A0:C7:43:E9:34:E9:DF:13:76:65:3D:1D:0E:04:AD:36:45:E6
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AQegx0PpNOnfE3ZlPR0OBK02ReY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1370::/44
Signature Algorithm: sha256WithRSAEncryption
4a:6e:34:5b:56:a5:67:77:bf:ec:2c:6b:e0:ad:4c:07:87:b5:
14:2b:37:19:aa:27:58:f1:dc:6e:aa:55:65:78:f4:aa:04:93:
9b:51:8d:37:23:c0:8d:7e:75:fe:61:78:15:1e:56:98:66:f6:
42:d2:ae:14:ac:16:0a:79:c6:0b:51:29:fa:0f:f2:0c:5d:cd:
5c:ef:22:05:bb:c5:82:15:c8:ab:e0:69:58:21:70:45:3d:c9:
a9:56:40:e6:32:96:0d:98:3a:dd:e9:79:db:bc:23:82:25:d9:
08:01:c9:78:8e:2b:2f:b8:f7:3c:bd:a8:b5:36:0d:0e:e3:1f:
ca:95:bc:ab:9a:86:7a:c4:1d:75:d1:07:04:9b:f7:eb:37:c5:
63:4c:af:3f:45:46:0c:b8:f5:4e:84:e3:d9:3d:cd:6e:40:b6:
15:8f:0b:27:86:10:45:a2:45:9b:f8:b8:44:89:16:f0:58:09:
a9:77:af:94:12:cd:43:25:13:f9:17:c6:e8:84:c5:85:75:d6:
f5:fa:47:f9:64:d6:61:2b:de:53:85:94:cb:13:3f:bd:b5:1d:
0e:8a:f1:cc:d4:4d:82:c0:ba:68:eb:6d:5a:70:f6:4e:90:43:
19:a8:e8:ce:6b:52:e4:71:73:2e:08:51:ef:12:8f:20:f1:d2:
77:6a:d9:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:56 2024 by rpki-client on console-ams.rpki-client.org