Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/EMDHlXjLcohYE_qq1epGqlGC3ws.roa
File: EMDHlXjLcohYE_qq1epGqlGC3ws.roa (raw, json)
Hash identifier: 76LCTsT5axiSYiTObJ80cnkV+Hu9n5GOALRK3b6ubrM=
Subject key identifier: 10:C0:C7:95:78:CB:72:88:58:13:FA:AA:D5:EA:46:AA:51:82:DF:0B
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185E48AD5B148743EB09A982A527010EECB
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/EMDHlXjLcohYE_qq1epGqlGC3ws.roa
Signing time: Tue 24 Jan 2023 16:09:41 +0000
ROA not before: Tue 24 Jan 2023 16:09:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204406
IP address blocks: 2a0e:b107:1b94::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e4:8a:d5:b1:48:74:3e:b0:9a:98:2a:52:70:10:ee:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 24 16:09:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10c0c79578cb72885813faaad5ea46aa5182df0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:71:63:19:ad:89:44:f0:fa:79:0a:98:bf:3d:
7f:13:cf:a5:76:a8:c9:bd:2e:a7:43:bc:70:43:b4:
ba:e7:c6:c0:b4:98:c6:cc:2c:1f:73:19:bd:0b:14:
18:33:46:3e:88:79:7e:28:6a:48:e5:19:76:18:e1:
35:ad:44:de:77:58:4f:3f:ea:14:e4:9e:46:e7:84:
d6:d4:ef:05:9d:da:84:2d:00:8c:4e:30:07:6f:1c:
7c:cf:f8:4c:e1:21:d4:25:8b:7d:35:cc:3e:0b:93:
15:b1:54:9b:aa:61:c0:38:40:0f:ae:03:77:ed:ae:
ad:ab:38:09:ae:be:62:e1:44:43:09:1e:e9:7a:62:
a1:aa:b4:db:9d:7f:09:e6:0a:e2:2d:fc:81:1b:6b:
a6:44:86:bc:e2:a9:2e:1e:1a:d4:09:1b:e6:9e:5a:
83:6e:82:bf:c7:25:3d:4f:5c:a7:2b:1b:fc:cb:2d:
73:88:99:71:35:5d:63:1e:ff:8f:c6:6e:f6:e7:6f:
13:cf:2b:c1:ee:b5:71:1c:5e:89:78:b7:54:ba:ff:
66:78:8d:01:bc:1e:34:cd:23:61:b8:94:38:68:57:
66:e1:f8:2f:c0:c4:31:3d:a5:72:4c:e0:d7:9a:02:
48:ca:76:f4:58:a7:62:6b:da:36:8f:59:8d:c1:b7:
73:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:C0:C7:95:78:CB:72:88:58:13:FA:AA:D5:EA:46:AA:51:82:DF:0B
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/EMDHlXjLcohYE_qq1epGqlGC3ws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1b94::/48
Signature Algorithm: sha256WithRSAEncryption
3c:f3:e6:59:13:57:e4:9e:b8:b0:b0:5b:61:84:02:bb:80:13:
9a:4e:8c:94:a4:26:a3:ac:a9:cf:d8:cb:fc:3d:29:35:06:d7:
38:21:2e:97:ed:af:86:89:17:2d:06:04:e8:de:f5:bb:cf:a8:
3e:dd:14:e4:fc:6a:65:e7:63:47:53:01:8d:11:be:b8:7a:9d:
92:e0:8a:fa:4c:cd:12:84:6f:ac:ee:7e:f9:d7:a6:ee:9d:a3:
42:ba:da:75:cb:9a:77:34:37:7b:06:cd:39:bf:dd:d8:2f:d9:
b2:70:94:8f:ad:46:d6:92:4c:6c:d1:99:c8:fe:66:9f:83:87:
25:8f:ca:51:a8:b2:3d:90:43:57:bb:96:7a:c5:62:d4:aa:9e:
98:84:df:59:3b:74:42:66:59:43:97:93:e5:8d:8a:6b:2a:27:
e0:72:cc:bc:ca:d2:6d:b5:75:4d:8f:db:e9:b6:f1:f9:d4:2e:
a0:90:5a:16:5f:1b:aa:03:00:26:d6:68:de:7d:ff:6f:db:f0:
12:58:6d:49:3e:5a:2c:70:b3:7f:cf:9e:0a:c8:6c:71:ba:f9:
b3:7d:d6:c4:5d:53:b1:19:6e:62:a5:f5:2f:aa:6e:ea:f5:b3:
09:02:3d:6a:7e:de:39:7a:b5:5b:78:5e:32:e9:0b:96:95:d6:
f7:af:40:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:49 2024 by rpki-client on console-ams.rpki-client.org