Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/FFo5nL49CRrKF26bWDEScxTR5bo.roa
File: FFo5nL49CRrKF26bWDEScxTR5bo.roa (raw, json)
Hash identifier: KFvYcQG7kp0gxDFMOH81dSU1x2nfAxMGnX4ayAywTRk=
Subject key identifier: 14:5A:39:9C:BE:3D:09:1A:CA:17:6E:9B:58:31:12:73:14:D1:E5:BA
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7AB30E16F95E3168D5DAF12AAFBD8
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/FFo5nL49CRrKF26bWDEScxTR5bo.roa
Signing time: Mon 02 Jan 2023 05:15:08 +0000
ROA not before: Mon 02 Jan 2023 05:15:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202673
IP address blocks: 2a0e:97c0:c40::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:ab:30:e1:6f:95:e3:16:8d:5d:af:12:aa:fb:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=145a399cbe3d091aca176e9b5831127314d1e5ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e5:c8:f8:83:7d:81:60:75:51:7c:7a:fa:6f:
5f:c0:12:c9:7b:46:ce:40:04:e4:a7:b4:36:f9:41:
98:78:70:29:ef:8a:7b:bc:1f:84:a5:36:b3:b1:0a:
15:0d:77:e4:98:e2:13:89:3e:fc:92:19:86:4a:d1:
27:a3:94:2a:85:23:c9:88:72:d1:55:ba:0d:28:fc:
b6:7c:21:b0:2b:2e:82:1a:d7:a6:92:90:22:e2:8d:
ff:f8:ed:97:62:04:ef:30:f0:2a:93:4a:e3:9e:fe:
10:f4:29:e8:f6:d5:01:c8:31:35:c1:81:e6:94:d9:
34:63:15:3f:67:85:3d:2b:be:b3:e1:c5:98:1b:de:
3f:15:47:bc:5a:ba:63:04:b4:d5:ff:ef:09:5a:64:
fe:22:4c:63:e0:db:dc:44:cc:f6:fb:e2:75:9c:83:
e2:a3:67:b1:0b:9c:5c:d0:8d:75:60:01:33:8d:09:
8b:ea:b1:67:9b:9e:39:4f:a6:63:7e:2e:0d:90:3c:
62:18:34:c4:8f:81:65:f2:64:14:ac:1e:85:22:fa:
d5:46:94:56:0e:c7:36:7f:73:56:7b:41:ef:46:6a:
08:d0:11:3b:22:01:f3:7a:1a:64:a8:d6:cb:95:27:
04:5e:27:be:d8:6c:51:37:d9:a2:15:66:2a:19:ed:
13:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:5A:39:9C:BE:3D:09:1A:CA:17:6E:9B:58:31:12:73:14:D1:E5:BA
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/FFo5nL49CRrKF26bWDEScxTR5bo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:c40::/44
Signature Algorithm: sha256WithRSAEncryption
bb:11:96:1d:85:6d:be:e1:fc:bf:7d:1f:b7:02:7d:b0:04:94:
ad:8f:6d:29:89:9c:5b:d0:0c:91:d7:99:92:6e:9d:e0:ee:a2:
5d:f3:c1:42:6c:c3:87:bc:ed:a6:24:68:a0:a7:24:38:63:61:
ce:15:29:13:6e:b0:88:6d:df:67:c7:14:98:5f:99:d3:34:bd:
b4:fe:3b:73:f2:30:13:27:3f:d9:85:41:73:91:83:9c:0c:74:
99:e5:74:94:fa:b5:19:71:dc:5d:60:a6:37:4e:a5:58:ac:36:
f9:c6:a2:ac:a5:2a:41:1a:76:52:f5:77:3b:10:3d:05:58:21:
71:db:93:e3:a8:c2:5e:3b:94:86:e4:06:f8:ff:c3:c1:a0:de:
b2:25:06:42:7b:11:01:23:a1:e4:50:fb:05:06:ed:92:6e:24:
68:b5:94:77:0c:ae:43:25:d7:8e:06:d2:0c:b3:b1:98:c2:11:
87:fe:23:b4:b8:08:62:92:fc:59:62:db:76:0a:28:f6:61:df:
f4:17:9e:3e:16:4e:e5:51:5d:0f:2a:cb:e8:2b:d2:98:02:7b:
96:6c:64:af:13:64:87:ea:b8:13:d9:0c:de:01:97:d0:de:88:
a2:c9:47:7f:12:5e:73:5a:94:66:94:50:90:1e:07:70:2d:02:
e8:a3:9b:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:30 2024 by rpki-client on console-fra.rpki-client.org