Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Evn-Hgn0UReaiSohYd2IjPVO0ww.roa
File: Evn-Hgn0UReaiSohYd2IjPVO0ww.roa (raw, json)
Hash identifier: Th1AO5mU/E8vfM7lk6vRqlmkcwIEhodGnfiYUBp65Ns=
Subject key identifier: 12:F9:FE:1E:09:F4:51:17:9A:89:2A:21:61:DD:88:8C:F5:4E:D3:0C
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018FF30333F39829EE49390BDD10F01F12B4
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Evn-Hgn0UReaiSohYd2IjPVO0ww.roa
Signing time: Fri 07 Jun 2024 14:03:44 +0000
ROA not before: Fri 07 Jun 2024 14:03:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 141221
IP address blocks: 2a0e:b107:e11::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 01 Aug 2024 17:46:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f3:03:33:f3:98:29:ee:49:39:0b:dd:10:f0:1f:12:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 7 14:03:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=12f9fe1e09f451179a892a2161dd888cf54ed30c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fb:fe:5e:ec:70:0c:3c:df:cf:e0:05:e5:e9:
5c:6c:a6:ee:e1:ee:28:4e:82:8d:8f:01:3c:77:82:
58:c1:43:1f:ae:06:82:f0:44:7e:5f:28:95:e8:47:
f4:97:97:67:09:6a:56:77:8a:9f:54:61:a9:71:2a:
d4:84:3c:a4:52:ed:e4:77:10:03:a3:99:c4:d3:76:
ea:86:73:8a:3a:c4:b1:cb:51:4f:0e:e7:46:f9:95:
c9:af:11:86:a5:16:61:63:bc:f4:a0:2c:28:e5:9a:
a0:8e:7d:84:4d:cb:b1:e2:46:72:a8:ba:8b:bd:58:
1a:f5:a6:e0:cb:6a:62:0c:b9:bb:20:01:c9:86:af:
5f:ad:e1:d9:0f:58:17:71:a3:ac:0c:46:78:f8:3a:
28:30:60:92:b5:8e:2f:e9:cf:97:68:44:22:77:d2:
3c:97:0c:62:ab:8b:04:55:7d:f6:1c:74:37:93:fd:
72:4a:a3:52:a8:89:ec:e9:18:14:ea:8e:ea:11:45:
76:da:53:73:8e:87:2f:37:f7:a9:66:e5:02:c9:55:
4c:06:12:47:b0:46:60:9e:ac:8f:b5:59:c7:d7:da:
b5:f4:f0:b6:1f:99:4d:24:47:bc:94:1b:7e:3a:a6:
3e:a4:54:41:3b:0b:4a:28:3c:ec:45:70:98:43:00:
d0:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:F9:FE:1E:09:F4:51:17:9A:89:2A:21:61:DD:88:8C:F5:4E:D3:0C
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Evn-Hgn0UReaiSohYd2IjPVO0ww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:e11::/48
Signature Algorithm: sha256WithRSAEncryption
9a:56:33:e8:2d:b2:f0:59:6c:06:85:40:9b:0e:85:53:ae:bb:
0f:26:d1:0b:72:8f:7d:da:6a:7a:b1:8b:7b:ee:02:b7:01:b3:
90:ef:4a:4f:83:c2:eb:60:f2:64:b6:b5:64:19:64:33:2e:ed:
60:c5:a5:64:e6:c6:0f:5b:14:dd:ca:84:02:5f:1c:47:1f:e3:
a2:5e:05:cd:23:e9:51:8b:e6:6c:4c:79:94:37:d1:db:36:64:
4b:d0:57:0d:c8:a0:48:13:21:62:01:2f:08:49:f1:67:fd:ee:
05:6e:a6:fb:63:c3:f2:06:50:76:b0:51:90:1b:b9:cd:fe:75:
f5:c0:e5:a7:0c:dd:7f:a3:36:9d:9b:38:2d:e9:61:18:6d:e9:
79:99:e5:58:35:ab:d3:45:32:7d:7a:d3:18:36:6e:dc:86:cc:
7a:e5:ee:dd:b5:59:da:b3:48:0b:f7:6a:9d:96:d3:64:f2:b6:
79:01:c1:17:25:21:dc:12:6d:59:93:3b:20:25:a3:ee:71:ad:
6b:b3:6b:21:45:cf:b7:67:5c:07:36:fa:b4:a2:1f:41:59:db:
5d:12:5b:7c:18:18:52:4b:37:a7:90:b2:36:39:c5:37:6e:6c:
dc:5b:1b:85:ee:77:eb:25:56:27:51:7a:e6:23:a2:f2:f6:70:
87:47:55:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 1 20:34:01 2024 by rpki-client on console-ams.rpki-client.org