Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/C4l5FlXH8BSKi0AmWLxXcspsxNw.roa
File: C4l5FlXH8BSKi0AmWLxXcspsxNw.roa (raw, json)
Hash identifier: 5EVA5oufLbizHOCnJvp10UFG2l5N5j6KaKEEDnfW3Eg=
Subject key identifier: 0B:89:79:16:55:C7:F0:14:8A:8B:40:26:58:BC:57:72:CA:6C:C4:DC
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E795A06396ECD96A24067D835E421B
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/C4l5FlXH8BSKi0AmWLxXcspsxNw.roa
Signing time: Mon 02 Jan 2023 05:15:03 +0000
ROA not before: Mon 02 Jan 2023 05:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142055
IP address blocks: 2a0e:b107:df5::/48 maxlen: 48
2a0e:b107:1172::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 23 Jan 2023 10:50:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:95:a0:63:96:ec:d9:6a:24:06:7d:83:5e:42:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b89791655c7f0148a8b402658bc5772ca6cc4dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:7f:fd:63:ec:ef:33:66:e7:4f:7c:58:04:f1:
38:c0:1a:13:af:3f:97:0c:f7:49:9a:ac:6c:94:29:
3c:0a:c3:c9:53:b9:cb:3f:b3:22:e1:94:9b:2c:3b:
36:eb:4d:f0:37:35:b4:b2:cd:e0:a2:de:42:c4:01:
27:e5:6e:6f:94:4f:fc:0a:22:45:12:5b:c1:36:c6:
ac:fd:3b:6d:87:45:73:49:aa:dd:dc:f9:4e:f6:39:
60:f6:70:a6:e2:7b:92:a4:59:00:42:ba:51:8e:1e:
70:a3:c2:b4:90:0a:db:f3:a2:86:01:53:f2:89:fa:
c9:23:74:f3:0a:0d:32:46:48:57:96:fa:0f:c8:9c:
04:14:2b:db:71:0e:c2:5e:ff:ed:3e:91:78:7c:00:
de:7f:65:6a:04:76:38:5d:fd:2a:1c:fd:b4:2e:8a:
2c:8d:63:76:61:39:7d:53:b2:ce:c0:49:33:2a:2b:
3c:08:af:64:0f:51:97:54:62:36:0a:01:ec:50:01:
f4:50:59:a0:1b:dc:3a:fd:2e:be:3c:99:dd:ae:08:
54:b7:ee:8f:3c:6f:40:0f:f6:13:c1:29:58:a1:cc:
96:17:47:86:ff:be:86:c4:68:97:5c:48:39:5d:18:
01:42:fc:3a:1c:c3:6b:9c:46:b3:a1:5c:84:34:3c:
7c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:89:79:16:55:C7:F0:14:8A:8B:40:26:58:BC:57:72:CA:6C:C4:DC
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/C4l5FlXH8BSKi0AmWLxXcspsxNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:df5::/48
2a0e:b107:1172::/48
Signature Algorithm: sha256WithRSAEncryption
0b:5d:4c:9c:a7:93:d4:ae:af:71:21:18:1d:24:c4:67:a6:a3:
d4:38:5d:bf:ce:da:1d:cf:d8:2b:a9:23:e1:a3:72:a2:ef:cb:
f2:ad:7c:72:c2:b0:4a:04:5e:40:78:23:23:4e:bd:f1:8e:22:
1d:0b:b5:d1:05:77:ba:28:29:a6:e5:3d:15:0a:ab:aa:34:9a:
ee:8c:f5:44:32:e0:36:13:cf:75:89:62:ee:41:35:c5:87:b3:
3c:1a:c9:ef:33:1d:2c:64:35:ba:9b:cb:4f:10:eb:5a:a3:de:
ef:5d:62:41:d9:1c:16:53:81:b4:93:88:0e:4d:54:ad:35:4b:
1e:4c:40:45:52:a4:26:17:e8:a9:e9:db:b5:7e:40:0e:5b:78:
05:82:f0:bc:ba:bd:26:6f:52:a3:28:29:c9:c4:13:52:69:54:
c4:ca:8e:b5:55:45:3b:ca:79:3a:43:6b:b9:7b:76:83:f4:e3:
bb:f2:b4:e1:e0:3e:2a:0f:ef:ca:11:33:2a:80:76:c9:fa:81:
4f:5d:13:ab:be:d7:c6:d7:cb:67:23:0f:53:a3:8e:27:03:1d:
75:62:9e:0b:bf:d3:4e:e8:dd:b2:4f:78:e7:09:5e:13:c2:62:
28:0e:46:11:dc:c7:5f:4c:5f:e2:b5:54:ff:31:dd:c5:4f:35:
39:bf:3b:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:57 2024 by rpki-client on console-ams.rpki-client.org