Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AbkrAkDxjtwH7mCd6jfbm3MBizk.roa
File: AbkrAkDxjtwH7mCd6jfbm3MBizk.roa (raw, json)
Hash identifier: 5Mq3ZnRk+NSPz2uUBynopTIdC4mAKhFqDigo55wfEw4=
Subject key identifier: 01:B9:2B:02:40:F1:8E:DC:07:EE:60:9D:EA:37:DB:9B:73:01:8B:39
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185E48AE80F2BCBF33399BBC40AA0D878E9
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AbkrAkDxjtwH7mCd6jfbm3MBizk.roa
Signing time: Tue 24 Jan 2023 16:09:46 +0000
ROA not before: Tue 24 Jan 2023 16:09:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209710
IP address blocks: 2a0e:b107:340::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e4:8a:e8:0f:2b:cb:f3:33:99:bb:c4:0a:a0:d8:78:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 24 16:09:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01b92b0240f18edc07ee609dea37db9b73018b39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:81:e2:b5:64:39:96:13:ab:00:b6:0a:c7:b4:
d0:1f:0b:59:a0:77:e2:fc:a8:e9:fa:5b:32:29:46:
06:1a:65:85:da:92:c2:2f:ee:72:31:74:ed:17:0b:
78:44:29:13:6c:59:a3:9b:cb:89:c8:7e:0d:b2:4b:
37:77:9d:d4:df:d0:a5:f6:6d:9c:3d:e9:b8:0f:64:
bd:03:c6:36:bd:41:01:53:d0:ca:fe:e1:29:e8:c5:
a7:2d:84:ce:eb:d2:26:96:10:8d:53:fe:1c:22:d0:
6d:5a:ac:32:19:07:36:81:f0:be:68:3d:22:2e:ee:
62:fb:ea:62:f4:e4:fa:7e:22:8f:d5:7a:be:01:6c:
7b:42:e7:7a:6e:a5:51:47:9f:06:c2:4f:99:39:fe:
1b:fd:88:7a:9c:a9:90:bc:ef:db:cf:1a:ff:1e:78:
6b:c7:ea:4b:69:ae:88:93:b5:c6:8f:28:cd:7e:55:
8b:dd:b8:44:c4:25:a6:91:0d:ef:b2:d7:8c:43:5f:
06:b3:7d:73:d4:18:e5:30:e4:f4:3d:c5:3e:51:d8:
76:4f:21:81:1d:1c:a5:71:fb:05:8c:af:70:2d:22:
dd:a9:8f:eb:5a:6a:16:c6:72:6e:76:bf:18:6b:37:
ae:e4:81:55:80:c5:88:8c:8c:4d:31:9f:af:01:2d:
c0:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:B9:2B:02:40:F1:8E:DC:07:EE:60:9D:EA:37:DB:9B:73:01:8B:39
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AbkrAkDxjtwH7mCd6jfbm3MBizk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:340::/44
Signature Algorithm: sha256WithRSAEncryption
8d:1b:5b:09:aa:84:ba:54:d4:37:48:ef:c1:b5:78:3b:2c:ed:
7e:1f:20:20:33:81:5c:08:bd:43:2c:05:bd:57:73:d1:5c:cc:
6f:08:bb:49:01:2d:44:51:e7:9b:ff:8f:ad:0b:10:0c:9d:92:
f0:b6:41:a9:b8:45:21:6e:c7:2b:76:60:ba:d7:b8:dd:9e:16:
57:cd:e2:fc:99:52:4b:ff:d0:62:8a:ae:90:54:1b:38:57:da:
96:89:d1:e8:2a:2d:8f:7d:13:8f:5e:4b:15:8f:9c:17:36:00:
0e:db:69:3c:ad:62:45:44:49:c5:bd:43:46:e0:95:44:c7:6f:
59:c7:1e:e6:2e:c2:06:48:1e:ce:84:63:e0:15:ea:0d:6b:21:
61:38:08:81:e9:a8:22:fc:70:1e:b5:92:f8:39:5f:32:c3:d8:
96:e2:28:10:45:fc:69:3b:8a:57:05:0b:13:e2:4a:98:72:be:
bc:86:64:4a:a5:58:58:82:58:8d:42:d5:cd:cf:47:66:ff:e4:
ef:7f:5a:78:c2:c4:24:7b:8e:25:c5:66:f1:21:82:4e:25:37:
34:25:b7:a5:be:da:d6:c1:12:aa:52:22:f2:8a:16:6f:7a:dd:
96:e1:7f:3f:60:eb:21:85:50:06:23:79:e7:4c:f7:2b:54:77:
17:57:2e:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:49 2024 by rpki-client on console-ams.rpki-client.org