Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Bqa2sUWCWXqvGE4aeuXle5yY3uo.roa
File: Bqa2sUWCWXqvGE4aeuXle5yY3uo.roa (raw, json)
Hash identifier: p52GptKaqmCNYzMHZevSxI5r35Kxu4ylwnR4WDAAtCI=
Subject key identifier: 06:A6:B6:B1:45:82:59:7A:AF:18:4E:1A:7A:E5:E5:7B:9C:98:DE:EA
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185E48ACA44E36802E7F75DF834A828E538
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Bqa2sUWCWXqvGE4aeuXle5yY3uo.roa
Signing time: Tue 24 Jan 2023 16:09:38 +0000
ROA not before: Tue 24 Jan 2023 16:09:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142382
IP address blocks: 2a0e:b107:1790::/48 maxlen: 48
2a0e:b107:1795::/48 maxlen: 48
2a0e:b107:1792::/48 maxlen: 48
2a0e:b107:1794::/48 maxlen: 48
2a0e:b107:1791::/48 maxlen: 48
2a0e:b107:1793::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e4:8a:ca:44:e3:68:02:e7:f7:5d:f8:34:a8:28:e5:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 24 16:09:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06a6b6b14582597aaf184e1a7ae5e57b9c98deea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:5e:53:f9:3c:e5:f7:a3:1c:47:85:c5:49:23:
13:0c:7c:8d:8d:fd:31:e6:71:52:9b:56:65:4e:58:
ee:8f:60:01:ec:46:87:bd:ff:67:04:5c:3d:d8:bb:
d9:a6:ec:a2:e3:ac:72:cd:d8:04:72:af:88:38:bf:
88:2a:50:02:35:d3:8a:27:50:95:08:39:01:8f:40:
81:f8:c3:52:5b:dd:93:14:bb:9b:c7:61:c6:1e:f5:
98:ca:f9:56:0a:fc:21:c9:58:2b:2c:36:20:94:a4:
70:24:5b:a7:c1:f2:ef:24:ff:78:3c:60:8b:14:5f:
05:c7:ef:f1:38:53:dd:9b:83:fb:8c:15:2b:48:41:
12:f4:d2:ee:61:57:6e:ff:bf:44:31:1d:da:2f:d7:
6e:69:2c:89:ce:f2:1f:c7:b8:a5:ef:df:d9:89:31:
06:3c:19:07:a6:05:08:59:35:d6:9a:fd:87:6c:04:
4b:23:ab:a0:b6:be:9d:5f:ea:8d:76:e9:cd:af:11:
c1:11:9e:d3:78:0c:b4:53:1e:ad:3d:88:64:7c:1b:
ee:c9:43:73:39:e6:d5:b0:28:ce:6f:de:49:b8:cc:
7e:da:1b:b2:49:bf:8e:83:6c:56:6d:e8:ed:ac:77:
6a:a3:cb:25:6a:f1:10:45:e4:a2:6a:41:b2:f2:ec:
e8:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:A6:B6:B1:45:82:59:7A:AF:18:4E:1A:7A:E5:E5:7B:9C:98:DE:EA
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Bqa2sUWCWXqvGE4aeuXle5yY3uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1790::-2a0e:b107:1795:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
90:8f:c1:d5:1f:4b:ec:90:bf:98:16:9d:7d:9b:e1:a4:bd:e2:
14:29:a7:b8:87:57:53:69:02:ec:6c:a7:f4:7c:f5:cd:bf:35:
b8:a9:17:9b:4f:d4:e2:34:e4:c0:08:5b:33:f8:61:a3:a9:fa:
cd:5a:2c:bf:4e:2a:f6:28:74:a1:5e:41:c6:66:68:bd:cf:f6:
03:55:14:84:5e:18:7c:8a:bb:f7:0b:58:4c:1f:94:93:62:1e:
c7:aa:d4:47:46:2e:ea:42:85:58:9f:71:89:d6:e5:f1:9f:a5:
05:66:c3:3d:ce:b8:de:7b:3d:98:d9:a8:8f:5b:ad:b9:46:30:
80:bb:2b:f5:20:46:ef:fe:40:22:1e:8b:6a:dc:17:c0:fb:fe:
87:ee:9a:d6:59:18:83:2f:48:e1:8f:2c:2a:b5:4f:de:bd:4c:
79:bd:b4:c9:c9:45:28:0b:63:79:3e:ae:dd:40:3c:a0:04:9b:
df:e3:af:09:a2:67:ee:01:52:16:f7:9e:7f:ea:18:6e:0e:2b:
d8:6c:ce:7e:95:09:1e:91:97:b6:c5:9a:5d:59:91:6e:ef:80:
ec:82:73:03:69:dd:43:e8:46:b2:6d:53:28:b2:f4:ec:1d:fb:
b4:b1:8b:d1:54:7c:d5:b7:29:01:d5:ad:cd:09:6e:2a:d7:60:
99:d7:14:4f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:14 2023 by rpki-client on console-fra.rpki-client.org