Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/BoLwZf7vm7FlYZ4G0llLu-cCQvk.roa
File: BoLwZf7vm7FlYZ4G0llLu-cCQvk.roa (raw, json)
Hash identifier: 82zDTA3cMkETsgAbpb0rmLAvJy3gYX72d8RSnsp86Nc=
Subject key identifier: 06:82:F0:65:FE:EF:9B:B1:65:61:9E:06:D2:59:4B:BB:E7:02:42:F9
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7C328319BA7BA3D7D7EC785ABFDDA
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/BoLwZf7vm7FlYZ4G0llLu-cCQvk.roa
Signing time: Mon 02 Jan 2023 05:15:14 +0000
ROA not before: Mon 02 Jan 2023 05:15:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205121
IP address blocks: 2a0e:97c0:ad0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:c3:28:31:9b:a7:ba:3d:7d:7e:c7:85:ab:fd:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0682f065feef9bb165619e06d2594bbbe70242f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:6b:c5:e9:c9:1a:00:72:e5:cd:67:0a:52:4c:
a4:5b:89:5b:6e:60:4a:60:c5:93:27:1b:5f:17:df:
c7:c2:79:37:fb:f4:cf:6e:dc:88:c5:b3:33:7f:96:
2c:35:cf:0b:8c:79:0e:c6:e5:ff:6d:42:19:a5:a3:
c4:53:f2:da:60:fa:3e:03:a1:b4:27:e7:86:e6:c1:
cd:54:8f:6e:39:5e:25:53:0f:b5:62:38:80:ba:ac:
6a:e5:42:1b:0e:08:ff:48:5d:bf:ca:a5:ca:a1:49:
b5:14:9a:d9:f9:68:91:db:b2:06:3d:fb:d4:1e:67:
c5:6b:a1:6a:6c:a1:ed:9a:67:b7:92:52:1b:44:74:
7d:1e:a8:d4:d4:c5:b2:29:2c:8d:07:d3:c4:d7:d0:
27:72:4f:d8:f5:ef:88:11:fc:1e:cb:23:7a:fa:c9:
53:ad:89:5d:cc:23:7e:f6:3b:16:e1:25:8a:d9:5c:
5c:03:d7:51:9b:ca:41:ba:7d:ce:b4:88:46:c5:93:
b2:ef:d9:61:4c:49:d2:4c:21:38:c2:c8:25:c5:39:
b1:c4:44:63:98:ec:61:ff:68:c2:04:3b:92:93:37:
88:3e:7f:4d:e1:51:ea:16:1c:89:23:07:2c:75:17:
d8:13:4f:9c:2c:14:cb:a7:f1:03:dd:8b:15:fd:b0:
b2:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:82:F0:65:FE:EF:9B:B1:65:61:9E:06:D2:59:4B:BB:E7:02:42:F9
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/BoLwZf7vm7FlYZ4G0llLu-cCQvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:ad0::/44
Signature Algorithm: sha256WithRSAEncryption
00:2f:01:63:c4:62:3c:17:f1:af:16:07:86:c5:56:bb:47:6f:
65:8c:9c:a5:13:78:a7:0e:d7:7a:cb:fe:e2:17:85:44:3b:74:
2a:2e:94:93:94:6e:99:55:ed:08:39:2a:3d:d0:78:a3:3d:66:
49:d7:53:91:fb:23:8a:bb:5b:79:ae:f7:78:e4:8b:78:ac:2e:
91:0f:1e:41:65:7d:2f:5b:73:49:81:d6:d7:3c:c7:ad:4b:e7:
3a:20:eb:6c:74:cb:0f:64:2f:48:d3:01:a6:5c:3e:b3:d7:e3:
ed:b9:d2:50:33:e5:33:45:0e:b7:9e:f4:b3:89:ca:60:38:69:
03:f3:8c:66:01:9b:5e:84:bb:e3:41:08:1d:40:ca:95:97:e5:
92:ae:fb:4f:fd:b3:21:27:93:7c:e3:00:4c:b1:7b:7c:48:e1:
d5:f9:8a:2d:15:f1:65:12:0d:95:35:54:62:d0:77:c8:39:48:
ab:40:b6:99:7b:a9:e8:2a:6d:0e:48:7d:04:e8:23:67:2e:f9:
e1:f9:e8:d9:76:e5:b6:82:a6:db:a7:43:9c:e7:12:e6:1d:8f:
58:c2:c3:32:49:e4:5c:8d:18:10:b3:f2:5c:75:68:f3:71:25:
42:39:a4:d9:e0:a0:a0:62:d9:97:cb:76:36:69:50:16:8b:c5:
d4:be:51:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:30 2024 by rpki-client on console-fra.rpki-client.org