Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/BSkOl6HyjlUUu4O4cR591gtmWPY.roa
File: BSkOl6HyjlUUu4O4cR591gtmWPY.roa (raw, json)
Hash identifier: oC5pq+z+s3U/5dhUltx64QMOBDPriTzgWJ9LjpfxE/0=
Subject key identifier: 05:29:0E:97:A1:F2:8E:55:14:BB:83:B8:71:1E:7D:D6:0B:66:58:F6
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01860CC3A27B3D54E66D6C6B93249EE61146
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/BSkOl6HyjlUUu4O4cR591gtmWPY.roa
Signing time: Wed 01 Feb 2023 11:36:32 +0000
ROA not before: Wed 01 Feb 2023 11:36:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 140731
IP address blocks: 2a0e:b107:c30::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:0c:c3:a2:7b:3d:54:e6:6d:6c:6b:93:24:9e:e6:11:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 1 11:36:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=05290e97a1f28e5514bb83b8711e7dd60b6658f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:65:42:cf:85:2e:cf:0c:e3:4f:c5:6c:b0:40:
dc:d6:74:a6:87:ec:3f:d7:cc:07:bf:13:ed:c0:10:
9f:cf:e3:f6:16:50:d1:82:d1:97:81:df:9d:6a:b3:
5c:39:95:18:e0:9b:25:41:8e:08:24:f1:22:b7:85:
70:6e:91:30:2c:f8:d7:96:38:52:91:f9:9c:8c:fb:
f8:85:94:e8:4d:ca:05:99:e9:71:ef:7c:bf:1a:a3:
2f:eb:10:60:13:0b:93:17:a0:58:d9:c4:8b:83:9d:
71:6e:ee:64:ea:87:f4:d8:d4:49:c2:f1:85:fa:9f:
cc:ae:59:ed:59:ff:b7:9c:17:52:d2:38:a5:11:2c:
3a:99:58:2c:17:f4:bf:42:31:63:86:cb:28:b5:9a:
07:d2:d4:76:94:45:3c:a0:83:87:7f:e8:d8:0f:e6:
b2:de:51:8f:03:7f:fe:8a:23:d7:e0:99:16:01:9e:
ef:26:1f:f5:79:c3:97:a0:14:df:e1:4a:15:8e:e5:
14:b8:76:6e:fb:3b:c8:35:ab:81:27:e2:b3:d9:91:
e6:55:63:da:de:3a:e6:bc:02:f1:0c:00:a3:f8:96:
e8:5d:a8:97:fa:5a:87:2b:1f:3c:c1:90:78:3f:20:
42:15:4e:92:01:76:44:f8:72:41:22:c9:8d:e2:33:
cd:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:29:0E:97:A1:F2:8E:55:14:BB:83:B8:71:1E:7D:D6:0B:66:58:F6
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/BSkOl6HyjlUUu4O4cR591gtmWPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:c30::/44
Signature Algorithm: sha256WithRSAEncryption
34:f9:bb:ae:d5:ca:12:95:01:27:5f:0f:4b:3a:ed:af:fe:e9:
a3:f6:8b:77:2d:94:83:bf:21:03:14:ff:45:62:3b:91:8c:ac:
9f:5b:cc:75:dd:81:8b:90:dc:cb:34:bc:c9:c3:85:86:97:01:
b5:4b:6f:2f:43:bb:49:f4:56:48:b0:86:5e:6b:3d:e1:e0:b6:
85:6a:0f:80:a1:e9:be:3a:8e:b8:57:cc:69:e2:42:7a:d9:e5:
4e:97:8c:e5:08:d9:8d:6b:f9:1e:61:23:0f:d1:3a:7c:7f:cc:
2e:10:da:83:9b:0a:6d:62:45:cf:36:17:c3:6e:f3:55:b7:a9:
59:ac:5f:64:6a:f0:cf:d0:a2:a8:c3:bd:90:ea:80:58:36:6e:
e1:b0:d9:df:65:e2:c8:32:0c:a6:ba:19:59:9a:16:89:ca:73:
fd:18:3e:45:b7:36:2d:13:96:c9:17:f9:9d:0f:db:ae:5b:cf:
c2:83:6f:c2:4f:24:a9:cc:8f:ed:da:c0:56:b3:72:eb:df:96:
47:31:57:25:f4:77:54:b0:d9:43:62:11:75:a7:22:96:59:8a:
55:77:17:a3:e0:69:09:06:55:c0:1c:0b:28:27:65:ff:d2:57:
c2:0d:7c:14:08:5e:98:54:b7:f8:73:6a:d1:d7:d4:1f:2e:29:
6f:67:94:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:49 2024 by rpki-client on console-ams.rpki-client.org