Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/F3peTK3ovMNzXMhmfPwRJLAqXMQ.roa
File: F3peTK3ovMNzXMhmfPwRJLAqXMQ.roa (raw, json)
Hash identifier: tfyyPaGf4peN3qhwdqxxJAc4B6s2O129nNj6nBuhI84=
Subject key identifier: 17:7A:5E:4C:AD:E8:BC:C3:73:5C:C8:66:7C:FC:11:24:B0:2A:5C:C4
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7ABAE3D8DEDDFAFEF8E283E2F7F7C
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/F3peTK3ovMNzXMhmfPwRJLAqXMQ.roa
Signing time: Mon 02 Jan 2023 05:15:09 +0000
ROA not before: Mon 02 Jan 2023 05:15:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202747
IP address blocks: 2a10:2f00:189::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:ab:ae:3d:8d:ed:df:af:ef:8e:28:3e:2f:7f:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=177a5e4cade8bcc3735cc8667cfc1124b02a5cc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c4:8e:00:26:5f:e7:8e:14:4d:c9:09:91:da:
56:48:40:98:75:9a:25:8f:33:c5:86:26:3a:3b:bc:
1f:5f:e0:b0:4e:68:7a:b2:ed:bb:32:18:8e:18:d4:
6e:ea:f6:a6:78:86:9a:82:7f:c5:27:3d:a8:81:fc:
2d:9d:46:9c:a5:7b:8e:b5:5d:b0:c2:5a:39:80:dc:
68:b1:ba:e3:26:f9:96:7a:cc:7f:af:3e:32:3f:a3:
fa:e4:fc:81:ab:a8:04:cb:49:00:b9:6c:17:b9:04:
0d:51:78:e6:68:ab:0b:e6:bd:33:85:03:87:85:5c:
e5:84:ca:55:bc:71:89:14:45:1f:08:33:e4:e4:9b:
7c:74:f1:df:16:91:cc:7b:18:59:89:ae:50:7f:06:
67:8e:d3:ec:5e:da:1d:23:10:14:42:72:e5:f7:8e:
67:0c:6f:f8:0f:b8:c9:e2:0a:b2:d8:d7:7d:3c:b4:
b2:23:6f:b3:6a:0f:b3:67:0b:0e:86:a7:93:99:ef:
74:a9:08:d4:be:2c:c3:91:a6:0b:5e:13:b7:3c:48:
ea:c9:93:65:c6:31:91:b0:56:df:9c:a7:56:fb:d1:
9b:33:d3:59:bf:fb:7e:a9:ee:4a:b9:2e:35:f9:a3:
07:a2:e3:bf:df:d7:2b:ee:38:86:72:cc:ab:7f:95:
0d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:7A:5E:4C:AD:E8:BC:C3:73:5C:C8:66:7C:FC:11:24:B0:2A:5C:C4
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/F3peTK3ovMNzXMhmfPwRJLAqXMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f00:189::/48
Signature Algorithm: sha256WithRSAEncryption
b4:5b:68:86:1f:0f:90:6f:f5:80:3d:3e:a6:60:81:6c:17:9d:
bb:34:92:a7:c6:ad:37:2a:20:b8:dc:fa:de:2d:55:5b:7a:46:
f3:b8:88:37:83:20:f4:d3:19:01:8f:d8:56:73:ba:74:d6:87:
07:0f:dd:ac:50:9c:c9:ea:0e:e4:d0:5d:45:69:2d:c6:9b:65:
7d:56:1f:ed:a6:f2:dc:b8:a2:09:d6:67:3d:4b:68:6b:44:82:
28:8a:6f:59:33:49:38:64:76:05:ae:9d:f6:47:c9:fc:dc:ab:
81:63:c4:75:9c:e5:0f:1b:58:54:77:18:a8:60:1c:59:25:03:
c3:5b:d3:f1:4c:f8:68:2e:1e:1e:74:ce:b0:7a:32:81:1f:8c:
4b:41:1b:4f:04:8d:a1:2e:f6:26:c7:55:23:50:3a:18:fb:e9:
d7:98:9a:f1:60:f3:e7:f4:f9:ee:5a:64:64:aa:ca:ca:d5:30:
7a:05:13:cf:72:71:28:b1:9e:2c:44:46:be:09:87:7b:0e:96:
8b:d8:19:c0:89:7e:cd:f2:83:84:3b:4c:ba:65:73:33:07:bc:
81:f3:34:e8:f9:11:ad:31:a0:5d:59:20:ed:e3:d4:a5:53:fa:
2a:41:23:b7:96:fd:f3:40:36:7a:36:ff:3e:fb:8c:2d:e8:18:
08:a8:c0:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:28 2024 by rpki-client on console-fra.rpki-client.org