Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/D5aMdA4K_bu0KnL8TyCn-QAMAJI.roa
File: D5aMdA4K_bu0KnL8TyCn-QAMAJI.roa (raw, json)
Hash identifier: EtDEtfOTXaQ0tk/ogqlBIq/QqO9OFvU3WZ2OAOr0BM0=
Subject key identifier: 0F:96:8C:74:0E:0A:FD:BB:B4:2A:72:FC:4F:20:A7:F9:00:0C:00:92
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018CD514A2CEAB769B90054B1C1BB9B9E490
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/D5aMdA4K_bu0KnL8TyCn-QAMAJI.roa
Signing time: Thu 04 Jan 2024 15:25:48 +0000
ROA not before: Thu 04 Jan 2024 15:25:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 63473
IP address blocks: 2a10:ccc3:ccca::/47 maxlen: 48
Validation: Failed, certificate revoked on Sun 07 Jan 2024 14:09:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d5:14:a2:ce:ab:76:9b:90:05:4b:1c:1b:b9:b9:e4:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 4 15:25:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0f968c740e0afdbbb42a72fc4f20a7f9000c0092
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c3:57:a2:d5:c1:90:a2:7d:37:22:c9:cf:13:
2c:4f:9d:1c:bd:32:36:8c:ab:ee:4d:ec:fc:4e:bf:
89:dd:00:c7:1c:38:3d:1e:d9:34:94:aa:a6:94:fc:
78:82:3e:51:2d:2b:35:33:b7:28:52:c1:b8:f0:95:
d6:71:3a:43:74:68:1c:a4:02:3b:a4:c6:18:ec:72:
fc:e1:1c:e1:00:5c:31:bb:71:48:1a:e3:0f:a1:0a:
c1:41:d5:9a:79:44:28:b3:cd:9c:f3:ad:2b:bf:b3:
c6:82:00:bb:25:5e:c2:c1:29:61:63:2e:4c:aa:20:
4b:4b:e0:2f:ff:cb:d4:21:37:60:67:f7:6b:4f:96:
ed:44:d4:1b:21:67:8c:85:81:23:7b:8d:67:2b:b8:
6b:cb:dc:41:1b:aa:ff:e3:04:ca:37:64:10:78:98:
12:c4:bf:57:7d:c7:78:61:aa:28:9f:39:ca:7a:e6:
da:60:9b:d2:29:7e:b5:58:fd:c7:93:90:15:c2:83:
28:76:b6:c7:50:be:d1:cb:77:38:f7:3f:33:ff:0c:
67:3c:03:ce:7f:6d:9d:e5:f8:b3:33:eb:6e:1b:7e:
c1:b8:c0:36:be:e6:8a:41:d2:ed:0b:4b:99:8f:2c:
c8:4c:43:64:23:b7:ec:b2:77:6b:ae:f1:63:ad:49:
01:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:96:8C:74:0E:0A:FD:BB:B4:2A:72:FC:4F:20:A7:F9:00:0C:00:92
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/D5aMdA4K_bu0KnL8TyCn-QAMAJI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:ccc3:ccca::/47
Signature Algorithm: sha256WithRSAEncryption
65:3d:0e:ef:7e:a2:c6:02:96:53:c7:74:4c:40:16:81:06:7b:
ea:11:d1:39:f3:6f:80:97:c8:c7:7d:e3:13:5e:82:82:53:b0:
0b:3b:21:83:97:f2:fa:d3:94:ae:5c:3e:55:80:49:2a:bb:e0:
d7:d3:b1:a3:09:2a:d4:4b:6b:02:b5:51:e9:4c:fd:dc:de:24:
be:4d:28:c6:d6:93:db:e2:b9:ff:9a:c9:ef:e9:76:ee:c8:77:
74:72:56:46:bc:d8:1d:ad:40:32:80:ca:1a:9c:e6:7e:84:a0:
24:39:f9:c2:f7:9d:6d:73:28:f6:88:c0:79:94:4f:2b:8b:13:
fe:ab:87:8d:de:01:36:32:87:79:b0:ff:74:10:1a:af:aa:b8:
50:2a:62:1a:20:ee:98:1a:87:89:fb:4d:0f:86:50:10:3b:a5:
32:9b:54:67:9a:0d:d0:39:6c:a6:91:90:a0:bd:b0:59:ec:83:
eb:c9:a3:c6:0f:6d:ee:3d:dd:88:43:5a:77:dc:76:70:fb:34:
69:aa:58:05:a6:cf:43:10:0d:e9:26:65:52:79:e1:b1:11:a8:
24:4f:19:bc:e2:e2:08:c7:8d:7b:b5:56:2a:b5:48:c8:45:04:
bf:78:3e:03:ae:38:ab:f1:2f:2e:01:16:0c:bf:df:56:71:30:
51:92:13:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jan 7 15:22:13 2024 by rpki-client on console-fra.rpki-client.org