Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/DGsTtiS9Mr3XEzCLCNwbfqldzUg.roa
File: DGsTtiS9Mr3XEzCLCNwbfqldzUg.roa (raw, json)
Hash identifier: OGOIKTkljeFV9sKTtHpZB0EEM33ZPVlEzq5t4ojeAkU=
Subject key identifier: 0C:6B:13:B6:24:BD:32:BD:D7:13:30:8B:08:DC:1B:7E:A9:5D:CD:48
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7F81950B1803636CDAE93F0C799B7
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/DGsTtiS9Mr3XEzCLCNwbfqldzUg.roa
Signing time: Mon 02 Jan 2023 05:15:28 +0000
ROA not before: Mon 02 Jan 2023 05:15:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211013
IP address blocks: 2a0e:b107:1580::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 23 Jan 2023 10:50:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:f8:19:50:b1:80:36:36:cd:ae:93:f0:c7:99:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c6b13b624bd32bdd713308b08dc1b7ea95dcd48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:33:87:37:6a:f9:03:5d:51:19:9e:71:fc:29:
12:47:f5:e5:9f:df:69:6a:67:b8:98:86:7e:b7:9a:
96:13:41:af:e1:40:1a:08:cb:ba:6b:bc:43:c9:4f:
7b:0d:d3:9c:d5:21:08:c1:06:10:30:62:93:43:94:
67:c9:72:fd:1f:35:ec:49:9a:dd:c6:cf:0e:fc:9b:
2d:73:5a:89:e9:22:96:42:a6:94:88:7d:6e:f1:7e:
6b:c9:9f:c6:a2:84:ee:08:7c:bc:ca:15:16:6c:94:
e8:02:7b:71:5f:4e:df:35:f4:a9:a8:8e:b8:3b:ea:
61:50:46:44:d5:6b:ac:cb:0a:fe:81:83:b9:5d:6b:
82:e7:84:dd:86:0e:25:6e:ef:ff:93:83:7a:17:76:
dd:db:db:0f:96:bd:7e:ec:ec:3f:0a:12:f8:b2:bf:
54:9b:97:65:9d:f0:81:45:86:7f:c0:e5:c0:c4:65:
28:87:50:1b:b2:2c:5e:8f:cc:59:2e:ce:a5:43:b7:
04:c2:9f:75:cb:85:4d:2b:a1:90:f6:f2:ca:3c:6b:
dc:de:27:99:6f:32:84:7b:39:1b:e3:e7:bd:5e:dd:
b5:fe:9d:89:4e:cc:f4:ce:bf:b5:91:85:82:12:3a:
81:97:9a:dd:b5:bd:90:60:6c:68:0b:a1:e7:82:c4:
fb:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:6B:13:B6:24:BD:32:BD:D7:13:30:8B:08:DC:1B:7E:A9:5D:CD:48
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/DGsTtiS9Mr3XEzCLCNwbfqldzUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1580::/48
Signature Algorithm: sha256WithRSAEncryption
24:5e:a9:9d:ae:61:6d:da:7b:60:4c:76:6c:f4:5c:c4:f2:4d:
a5:ec:62:f8:a7:2b:81:a6:5a:4d:be:2a:14:82:e6:bf:82:d8:
18:f9:b0:13:07:fe:8b:7a:7d:98:5b:63:d8:85:08:68:bd:9d:
f2:c6:33:a6:39:0f:de:58:f1:6b:a0:ba:58:58:a7:bf:fa:dd:
38:c7:0d:c8:f8:f9:9b:c6:83:1c:10:66:5a:f0:a2:1f:ff:a8:
6b:50:f2:8f:52:a5:d9:f5:70:35:68:4d:e3:f1:23:88:26:48:
9e:57:09:36:d1:a1:a2:6e:89:f7:a7:5b:0c:8c:14:53:85:4e:
ab:fe:92:4e:d7:d0:1b:7d:e3:03:1a:a3:35:94:78:04:ea:ba:
3e:0c:80:5a:ea:b7:c8:d5:85:c0:b1:ac:c7:1b:7f:30:56:e6:
10:95:02:0d:01:57:4d:08:18:c5:fe:8c:ce:91:82:d2:05:ed:
30:52:9a:3a:9c:9d:97:b0:c0:e6:5c:18:0a:e1:8d:25:a9:53:
8a:68:f2:1e:cf:36:11:55:dd:56:73:3a:09:2e:be:05:6b:0a:
07:73:b1:44:63:5c:68:42:1c:51:5b:aa:02:84:20:c6:37:1b:
a5:32:03:ea:8f:35:af:67:84:a4:54:ff:ca:2e:e0:19:87:5b:
02:cc:f6:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:57 2024 by rpki-client on console-ams.rpki-client.org