Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Ifb3HDPP-0ntzziciMN3Jc5gcB8.roa
File: Ifb3HDPP-0ntzziciMN3Jc5gcB8.roa (raw, json)
Hash identifier: kgYun8A2K26WAgqckgl23U76uAxgTWaRSfOFzcSwGhM=
Subject key identifier: 21:F6:F7:1C:33:CF:FB:49:ED:CF:38:9C:88:C3:77:25:CE:60:70:1F
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0191AD2F98A55C1B8A7F8D23F037BE20BACA
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Ifb3HDPP-0ntzziciMN3Jc5gcB8.roa
Signing time: Sun 01 Sep 2024 10:44:23 +0000
ROA not before: Sun 01 Sep 2024 10:44:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 2a06:de01:d8::/45 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a0e:b107:1870::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
2a10:ccc3:ccca::/48 maxlen: 48
2a10:ccc3:cccc::/48 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
Validation: Failed, certificate revoked on Wed 25 Sep 2024 16:20:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ad:2f:98:a5:5c:1b:8a:7f:8d:23:f0:37:be:20:ba:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Sep 1 10:44:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=21f6f71c33cffb49edcf389c88c37725ce60701f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a4:99:4c:50:08:b7:70:50:cb:f8:59:e3:8b:
bf:48:82:93:07:6d:7b:e7:34:1e:e1:37:59:37:fd:
72:24:86:9d:30:90:bd:85:2d:99:4d:a1:09:8c:91:
e0:c1:98:68:e5:14:96:a5:ea:74:03:3b:cb:b7:3f:
4c:2d:a0:7d:6f:1a:48:3e:d3:93:e0:bf:e9:70:bc:
96:ed:85:cb:e2:0d:01:a0:29:ed:7c:a0:90:e9:af:
61:16:d7:98:00:fd:07:13:41:42:8d:c7:26:0b:69:
b0:89:72:e3:0b:50:74:fc:4d:4f:82:70:92:aa:a0:
9b:24:5f:57:43:45:df:7e:34:cb:a1:70:80:01:b8:
dd:0b:41:b6:0e:dd:57:78:3f:36:82:ac:ce:09:93:
58:08:c0:b1:d8:a9:c7:b7:08:46:78:a2:dc:9b:66:
27:73:bf:da:d8:48:74:51:80:fb:79:80:3b:fd:d6:
8a:31:57:55:74:b8:60:47:9c:e5:37:ba:be:e6:6c:
cd:2c:ad:2c:1a:41:9f:b3:66:bd:ff:57:a9:59:5c:
48:46:21:96:7a:88:a4:d7:1c:03:41:f4:2e:f3:ce:
a2:c8:f0:ae:f0:88:ce:4c:64:29:b6:8d:94:ae:86:
c9:91:54:44:34:99:47:0d:22:d1:5d:a0:ac:f6:10:
16:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:F6:F7:1C:33:CF:FB:49:ED:CF:38:9C:88:C3:77:25:CE:60:70:1F
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Ifb3HDPP-0ntzziciMN3Jc5gcB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:de01:d8::/45
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c4:ac00::/38
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc3:ccca::/48
2a10:ccc3:cccc::/48
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
04:7f:5d:d7:0c:4d:c1:c5:d3:4e:18:40:c7:3d:6d:ec:46:dc:
e7:1a:c2:d3:0f:a5:10:21:18:c2:eb:70:5c:93:6a:b6:e0:58:
9e:38:71:85:d1:ed:74:bd:60:31:44:78:dd:63:87:47:8b:f4:
ef:79:32:41:db:8b:2a:a8:4b:e9:22:af:e9:9d:b6:57:23:cd:
2a:fe:90:7f:83:43:26:37:6d:df:47:2c:1f:e7:89:c6:02:f0:
a1:4d:0f:00:2a:39:7c:fc:cb:f3:97:03:bd:37:62:22:7e:b9:
12:f8:b4:ac:77:24:5e:48:86:df:0f:44:5d:86:b8:56:ec:ab:
cd:1c:b2:5f:c0:9e:7a:78:a7:0a:33:bf:c5:c1:4a:cc:6e:29:
46:ce:58:4e:a4:c0:b7:74:54:d1:11:d4:62:29:72:ba:e1:99:
18:cd:0f:87:1c:11:b9:c5:ef:df:4b:69:40:8d:71:5f:6f:ab:
be:0c:f2:8d:b5:9a:62:9c:97:50:9c:21:12:50:1e:00:75:81:
19:72:ff:c6:b2:2f:78:23:f2:ca:dd:d5:23:34:30:ed:de:1a:
32:79:9c:39:3d:88:63:fb:3a:3f:fe:8d:44:07:82:da:a7:15:
60:62:a5:e6:d9:51:e2:b7:c8:31:1a:a4:0f:ff:de:b3:bd:fc:
8d:4f:38:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 25 19:06:12 2024 by rpki-client on console-ams.rpki-client.org