Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/HBNlLTlMWJZP9D2HB2gzhJMoF2A.roa
File: HBNlLTlMWJZP9D2HB2gzhJMoF2A.roa (raw, json)
Hash identifier: /hqQDBHGOmJ13/54qzPdsYv+doTfGSQowVXmkfedQHQ=
Subject key identifier: 1C:13:65:2D:39:4C:58:96:4F:F4:3D:87:07:68:33:84:93:28:17:60
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E780CF41BB0F71A5FEAF5261BDC1E4
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/HBNlLTlMWJZP9D2HB2gzhJMoF2A.roa
Signing time: Mon 02 Jan 2023 05:14:58 +0000
ROA not before: Mon 02 Jan 2023 05:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47687
IP address blocks: 2a10:2f01:330::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:80:cf:41:bb:0f:71:a5:fe:af:52:61:bd:c1:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c13652d394c58964ff43d870768338493281760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:1b:c2:9b:b8:a2:a1:f4:e7:d8:06:83:84:f5:
0a:9d:dc:d6:75:4c:95:ef:0c:be:04:3a:36:7c:88:
02:f3:87:fd:00:65:de:b1:a7:d3:c2:26:b2:de:7d:
77:94:5f:93:82:27:cf:19:69:2d:25:e4:a3:ba:39:
96:59:a2:91:e9:3a:b4:f4:f5:b6:f7:ef:7b:31:04:
1a:4c:d8:01:25:e3:81:bb:81:20:4f:4a:78:ed:b8:
63:db:9b:80:6e:db:b8:15:4d:3f:e5:27:9d:d2:16:
90:44:2b:68:1b:2b:77:dd:bd:3a:63:d3:dc:3c:b1:
bf:e7:6b:b0:cb:4d:70:71:c7:20:3f:ee:23:e0:9d:
78:a5:f7:d8:26:c3:94:22:22:33:6a:d7:ff:1e:ff:
58:3c:9f:67:63:7f:03:e2:95:58:e2:dd:fe:ae:75:
c2:be:b2:7b:9b:3d:ba:49:49:49:96:7f:a5:c2:27:
fd:e6:7e:16:bb:9a:26:53:88:07:e8:1e:a4:dd:e5:
29:5c:99:41:46:01:d7:6c:a2:52:ed:1e:e5:b2:bf:
e8:c4:d3:97:ec:30:ea:e7:c5:f8:4e:5a:f1:22:a2:
ee:f3:ab:7b:da:fb:13:c5:65:32:e2:6f:a8:0e:86:
5f:4f:9e:af:e3:8c:11:0c:bf:c5:e3:22:ee:be:b3:
e8:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:13:65:2D:39:4C:58:96:4F:F4:3D:87:07:68:33:84:93:28:17:60
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/HBNlLTlMWJZP9D2HB2gzhJMoF2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f01:330::/44
Signature Algorithm: sha256WithRSAEncryption
3e:9f:57:97:bc:41:58:a4:74:66:a1:68:87:ec:2a:89:0b:00:
eb:b3:23:02:3d:37:75:0f:5a:ec:6b:09:4d:41:1c:2a:7a:99:
8f:ca:a4:dc:a0:e1:c3:f0:0c:24:d1:a5:b2:e8:05:74:f0:22:
06:a5:d6:ca:95:1a:08:59:55:6a:6b:f4:57:99:a4:3b:cd:fa:
56:f5:6b:9e:5a:ff:94:a8:8a:7e:84:4a:8a:01:21:ca:c6:11:
60:05:c5:fa:d0:82:1c:db:d1:ec:65:60:15:97:f6:ee:94:51:
28:30:85:8e:ee:06:15:31:b1:fd:54:cf:4b:fb:60:b6:a1:ba:
02:82:3d:e7:c6:ad:1f:5a:48:81:ce:6d:f0:a1:1b:1f:d9:2c:
d8:f7:21:3a:12:19:01:91:4c:ac:ea:c9:5f:19:c5:35:0d:89:
0a:69:09:48:f7:50:ee:bc:76:f4:60:00:77:7b:71:8a:f6:90:
2d:b9:07:b6:33:42:14:c8:96:0f:20:b9:0a:15:68:28:86:e7:
86:02:ec:7b:2e:66:35:c3:59:d3:41:a5:86:1e:c0:74:c7:f3:
1f:14:bd:55:b3:89:53:ee:0a:3e:6a:d4:53:95:ac:46:64:5a:
09:8f:9e:91:f6:bc:eb:9a:2d:72:c6:74:19:38:c6:ba:51:2c:
ee:b1:66:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:50 2024 by rpki-client on console-ams.rpki-client.org