Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/IZHMdDmb7KgTG26g-rgUkAQ5FOY.roa
File: IZHMdDmb7KgTG26g-rgUkAQ5FOY.roa (raw, json)
Hash identifier: uHzRy4nHuSe8QDlFqqx5evZrASj86ujLgYIuilpbs3Y=
Subject key identifier: 21:91:CC:74:39:9B:EC:A8:13:1B:6E:A0:FA:B8:14:90:04:39:14:E6
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018680B9633F66EE1136F71D166B835CD229
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/IZHMdDmb7KgTG26g-rgUkAQ5FOY.roa
Signing time: Fri 24 Feb 2023 00:01:18 +0000
ROA not before: Fri 24 Feb 2023 00:01:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199763
IP address blocks: 2a10:cc44:1c0::/44 maxlen: 48
Validation: Failed, certificate revoked on Sat 25 Feb 2023 18:09:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:80:b9:63:3f:66:ee:11:36:f7:1d:16:6b:83:5c:d2:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 24 00:01:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2191cc74399beca8131b6ea0fab81490043914e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:69:db:b7:90:a9:f6:29:52:92:e8:bb:c8:84:
7f:19:a5:3d:1b:07:53:06:8e:ee:c6:b5:2f:92:db:
b7:4d:d0:f8:30:07:67:f0:35:25:e2:6c:ad:c1:2a:
f6:65:ae:2f:e3:03:94:6b:c5:9e:eb:13:e6:d3:29:
b5:d4:d4:d9:6c:25:07:66:95:6b:0a:c5:78:a1:10:
a1:58:03:ae:d1:38:bf:a7:91:b1:ba:95:e0:03:e4:
77:64:3c:cb:d2:bd:03:19:95:4b:4e:fa:86:0e:f5:
06:c5:42:95:c5:06:30:5c:7f:e2:94:9d:ff:a5:08:
ed:92:2e:ce:0b:1c:5d:25:a8:18:a1:0d:68:36:bc:
4e:be:45:dc:d5:23:4f:f6:8e:cd:e7:80:f8:28:06:
fd:0a:88:69:e0:51:24:23:24:9e:99:0f:48:28:82:
b1:b2:43:6c:af:a0:f2:d9:8e:44:59:15:c0:99:7e:
af:32:61:0a:32:32:b3:30:6b:94:ec:89:73:01:83:
58:db:6c:e6:35:60:93:e8:3a:3e:7d:4c:a8:17:9b:
78:e5:85:bf:68:a5:e4:61:84:f5:53:c4:53:f1:07:
bf:6b:d9:6b:db:63:69:2b:33:0a:e5:8f:51:4c:bb:
03:96:9f:d2:06:ee:5d:ca:5d:c5:09:51:33:72:e3:
96:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:91:CC:74:39:9B:EC:A8:13:1B:6E:A0:FA:B8:14:90:04:39:14:E6
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/IZHMdDmb7KgTG26g-rgUkAQ5FOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cc44:1c0::/44
Signature Algorithm: sha256WithRSAEncryption
91:8a:4c:bc:5e:94:55:b9:19:27:45:f8:f7:d0:98:e9:2a:c2:
95:f9:5c:2e:27:41:e5:56:73:3a:9a:9f:03:d2:e4:b1:7f:f2:
3d:f1:0e:37:13:0e:8f:c4:59:c4:77:23:fc:d9:a6:90:1a:ba:
d6:13:8a:72:1d:44:3b:cc:41:86:e3:04:d2:83:8b:25:ef:e8:
72:11:33:df:bc:60:c9:51:37:4b:3c:1a:5a:dc:06:73:64:5b:
2e:e2:b8:5b:40:7a:cd:58:da:ce:f9:17:a7:f5:54:f2:62:37:
6e:de:86:f1:e3:fc:8c:cd:35:2c:ab:47:ae:06:3b:23:0a:50:
dd:03:8c:ac:4f:49:d3:cd:5e:2d:76:a1:15:e6:e8:09:e8:78:
58:a7:e3:65:1b:0d:a5:2f:94:78:0a:ec:7c:8a:e1:ab:a6:0c:
f7:5c:a3:b4:1f:c9:24:d8:7f:e3:d6:06:94:0a:c3:65:6a:0b:
81:9f:07:b4:89:3d:a3:64:72:66:4a:72:b9:dd:3b:b8:e2:5d:
82:9c:ba:90:62:96:82:04:23:cd:82:18:91:37:d2:cd:2a:69:
41:d4:09:54:53:7f:e0:70:ad:81:ad:fd:d5:a5:64:57:92:60:
fa:93:fb:b8:89:d9:85:73:44:e8:35:d8:d2:e9:50:d9:7d:84:
0d:63:64:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:29 2024 by rpki-client on console-fra.rpki-client.org