Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/IN1Qs2-SdK4NM6QGPbXyzEbhitM.roa
File: IN1Qs2-SdK4NM6QGPbXyzEbhitM.roa (raw, json)
Hash identifier: FyNUgLi4BkgZ7edfKBefJTxv0VH/Ky53mX4+68Qqbuo=
Subject key identifier: 20:DD:50:B3:6F:92:74:AE:0D:33:A4:06:3D:B5:F2:CC:46:E1:8A:D3
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7E2C091FBD3A36545853BF1D808CD
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/IN1Qs2-SdK4NM6QGPbXyzEbhitM.roa
Signing time: Mon 02 Jan 2023 05:15:23 +0000
ROA not before: Mon 02 Jan 2023 05:15:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210041
IP address blocks: 2a0e:b107:272::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:e2:c0:91:fb:d3:a3:65:45:85:3b:f1:d8:08:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20dd50b36f9274ae0d33a4063db5f2cc46e18ad3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b6:1b:96:d3:a6:e2:52:86:dc:7a:98:d9:1c:
87:2a:a0:94:13:3a:0d:89:b9:aa:00:af:46:d5:c9:
2c:26:ab:f8:da:dd:a5:c8:6b:96:1a:aa:d3:d8:06:
62:98:a2:5e:6b:54:a9:3d:cc:0e:88:cd:8a:b9:60:
e5:10:9e:84:29:91:4e:be:fc:ed:3b:fd:ad:86:56:
ef:f4:46:0c:88:c6:e7:a2:c8:00:a9:66:d0:8f:70:
70:4e:8a:9c:62:ab:81:53:f3:e6:29:bd:8f:63:dd:
9c:4b:0c:2d:b8:cf:0f:f9:16:38:c1:e2:7f:fc:0c:
2e:95:97:7d:b3:a8:0d:42:73:f5:7c:83:54:f7:d5:
e6:f6:c1:86:28:e0:7d:cf:0a:83:73:2a:15:5a:55:
0b:38:b6:bd:af:f6:3a:36:f6:a8:f1:42:d8:a0:ba:
a5:04:3f:52:55:44:3c:03:b2:27:b1:92:51:4b:7a:
93:06:cf:eb:ac:2d:3b:93:f6:26:5e:f9:30:d1:37:
9e:5e:b7:60:99:1c:5b:b5:59:c3:03:6f:fe:85:f5:
21:6d:bc:98:79:02:c8:53:08:f8:bd:7e:66:f2:25:
f3:50:38:31:a0:37:33:da:dd:ed:4c:20:52:c4:c5:
77:32:1b:6b:08:93:18:0e:51:f7:97:32:a9:00:ee:
56:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:DD:50:B3:6F:92:74:AE:0D:33:A4:06:3D:B5:F2:CC:46:E1:8A:D3
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/IN1Qs2-SdK4NM6QGPbXyzEbhitM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:272::/48
Signature Algorithm: sha256WithRSAEncryption
b2:0e:d5:eb:a5:1b:20:0f:bd:87:63:5f:43:e2:00:b8:68:25:
9c:66:40:fa:9f:9e:1d:fb:cf:b0:f3:46:28:d9:79:f4:85:16:
98:3d:8f:b8:dd:d8:1c:74:1f:f1:83:b7:a9:9c:c4:f6:2e:fa:
e4:48:b3:19:bb:4a:d2:b1:30:20:ba:51:b6:85:d1:ae:66:7e:
99:99:a1:0d:f4:16:ab:7f:f4:0e:3f:69:91:94:97:5f:0f:99:
6d:2f:0e:5d:9b:41:2c:aa:d3:5d:5a:66:6d:1f:64:84:36:40:
e3:b5:51:92:ee:84:d4:c3:a0:d4:c7:79:1d:0b:aa:f1:65:3d:
9d:70:f7:4f:2c:2c:af:cd:e2:e2:5d:a5:31:fa:53:b4:1c:e2:
5a:49:6d:6b:9b:09:c6:b6:40:f7:78:d4:ce:bd:52:82:e7:e6:
c4:11:79:a0:f4:e8:c3:86:07:12:62:df:c6:2e:aa:8a:47:b3:
40:a8:32:80:e0:99:ff:90:fc:80:03:98:7e:90:b8:cd:5f:8e:
d4:25:43:68:ac:9e:94:0e:98:17:26:07:ff:64:42:40:f5:76:
5d:89:84:ad:a0:d2:c3:4c:f7:fb:a4:7a:e7:bb:1b:1a:ca:c7:
c4:1c:82:46:c8:88:e2:03:52:ff:d6:91:bf:d9:d7:aa:aa:ac:
7b:db:37:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:57 2023 by rpki-client on console-ams.rpki-client.org