Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AUCfRC6gNE9zcuvXONxlvIomEL8.roa
File: AUCfRC6gNE9zcuvXONxlvIomEL8.roa (raw, json)
Hash identifier: rB3Yu44JN/YuS/wAQ7v/dWnkqRhetOYPbXNOi6iCgKM=
Subject key identifier: 01:40:9F:44:2E:A0:34:4F:73:72:EB:D7:38:DC:65:BC:8A:26:10:BF
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7983F89EC8C44485B8F9FF4E3ED35
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AUCfRC6gNE9zcuvXONxlvIomEL8.roa
Signing time: Mon 02 Jan 2023 05:15:03 +0000
ROA not before: Mon 02 Jan 2023 05:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142382
IP address blocks: 2a0e:b107:1790::/48 maxlen: 48
2a0e:b107:1795::/48 maxlen: 48
2a0e:b107:1792::/48 maxlen: 48
2a0e:b107:1794::/48 maxlen: 48
2a0e:b107:1791::/48 maxlen: 48
2a0e:b107:1793::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 23 Jan 2023 10:50:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:98:3f:89:ec:8c:44:48:5b:8f:9f:f4:e3:ed:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01409f442ea0344f7372ebd738dc65bc8a2610bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:34:8e:db:4a:29:62:94:b4:af:f3:2e:40:53:
af:ad:f3:7f:26:81:7c:ab:a9:a8:d2:89:cf:de:74:
e2:06:e0:19:6c:2b:33:e3:23:0e:41:49:b3:8a:9d:
de:41:36:05:bc:7d:4b:cf:66:20:c0:0e:da:bf:7e:
38:76:39:f4:29:4d:86:7c:67:a4:8b:d3:05:f8:6d:
6c:11:91:96:6f:c0:79:76:ee:20:b0:fa:b4:ac:45:
6d:d3:d4:27:f4:b6:30:46:a4:99:f4:30:4a:82:e0:
9e:35:ab:44:db:25:d4:ee:b8:bc:c5:2e:ed:03:3d:
0b:f7:61:06:40:58:de:85:3b:1c:16:cc:c4:41:ff:
ee:94:7a:a1:03:de:3f:99:35:12:a9:59:16:99:81:
1c:6d:eb:3a:be:38:cd:a8:56:15:7b:60:88:d9:07:
a5:08:6f:b4:4d:bf:5e:d3:8e:1e:c5:d0:b3:f8:19:
1f:6f:f7:20:71:fb:0e:f5:c3:b6:a7:22:05:57:4d:
e6:4c:cd:28:92:ca:f8:15:29:46:5b:2a:b1:b4:d3:
39:3d:fe:54:2b:2c:fa:8a:96:c7:5c:c4:df:0a:91:
21:8d:54:a3:fb:fa:43:02:9b:57:d5:fd:4a:39:88:
02:30:59:03:b4:fc:fd:39:f2:ba:cc:e2:05:0a:31:
0c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:40:9F:44:2E:A0:34:4F:73:72:EB:D7:38:DC:65:BC:8A:26:10:BF
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AUCfRC6gNE9zcuvXONxlvIomEL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1790::-2a0e:b107:1795:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
41:37:74:67:48:f5:d4:f6:bf:1c:fc:65:08:2e:6d:5b:b8:a8:
b2:b0:fb:49:ff:4b:f1:c7:dc:71:65:d8:ce:b9:87:86:a0:5e:
26:9b:de:7e:ef:65:a4:99:c1:2e:05:02:a2:71:ef:a0:eb:0c:
2f:5f:67:4d:4c:75:8d:8b:e4:0e:5f:7a:13:69:b5:cf:aa:12:
7b:48:a5:96:c1:5d:35:fa:b3:db:38:7e:2d:21:1c:74:5e:50:
bf:24:58:7f:b2:e3:c0:a6:81:c8:d6:24:54:eb:1a:0e:d3:eb:
96:e8:41:bf:66:59:89:e6:ff:38:5e:4e:79:62:9a:83:59:30:
e3:58:a7:f9:59:a6:7d:89:76:2a:40:0c:80:52:fc:fb:fc:3e:
59:c2:59:a9:94:37:a7:52:fe:f4:3e:24:6b:a6:46:9a:96:1a:
cd:23:c1:53:a5:6e:63:37:ee:92:89:f3:a8:5f:61:20:8a:cb:
75:98:b3:c6:10:81:d8:d9:0a:40:f0:6a:61:85:96:54:d2:96:
49:d1:49:96:f5:d6:85:21:5f:2d:0a:c1:71:62:83:60:bd:b3:
b5:43:f6:c5:98:68:d5:d8:69:d6:8c:b5:3b:a9:1c:fe:2f:65:
2f:8a:21:f0:b7:90:59:44:75:65:a7:e9:0a:56:4f:5e:7a:a9:
86:6e:f5:6d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:27 2024 by rpki-client on console-fra.rpki-client.org