Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/In__4i5PZhjVeDXKYGei3uVcB6k.roa
File: In__4i5PZhjVeDXKYGei3uVcB6k.roa (raw, json)
Hash identifier: DWsOR0CMqo1w/MnfYYHQ/Dq/7GR5qcPjW5Y/Gfe2Sz8=
Subject key identifier: 22:7F:FF:E2:2E:4F:66:18:D5:78:35:CA:60:67:A2:DE:E5:5C:07:A9
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01871170A497DA7AC387997CC5AEACF5B88B
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/In__4i5PZhjVeDXKYGei3uVcB6k.roa
Signing time: Fri 24 Mar 2023 02:26:47 +0000
ROA not before: Fri 24 Mar 2023 02:26:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400542
IP address blocks: 2a0e:97c0:a46::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:11:70:a4:97:da:7a:c3:87:99:7c:c5:ae:ac:f5:b8:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 24 02:26:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=227fffe22e4f6618d57835ca6067a2dee55c07a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:7c:1e:65:50:d5:43:b0:5a:12:e5:80:be:4a:
a8:f6:9f:ae:d2:46:51:39:ff:f6:2f:dc:1c:2f:b1:
c6:18:3b:25:9b:be:d6:e9:c5:ab:3c:0c:67:77:af:
e6:cf:86:e1:7a:79:fb:f7:ef:2c:8b:38:e8:3e:93:
ca:1f:17:c1:e4:ca:04:de:7b:f7:16:6c:65:b9:2b:
0f:05:80:b2:63:73:28:71:48:2b:cd:18:28:19:c7:
0b:20:64:af:1e:49:58:25:cc:39:3a:e2:fc:97:78:
be:9b:c4:88:14:f2:a6:aa:8d:68:c6:90:30:92:f6:
6c:2c:2b:45:d0:99:54:6d:83:c7:62:7e:2c:26:98:
a8:a8:44:4e:c3:83:e9:4e:41:cf:24:79:a2:3a:cb:
ab:98:0d:78:4e:04:30:72:89:5f:8f:68:24:ad:16:
68:45:1c:5f:a9:2c:5f:0c:92:4b:f7:ab:ec:71:28:
0e:29:f3:8e:ef:f4:6f:97:80:a8:f6:26:c5:f4:54:
79:05:a6:93:00:92:5c:1d:f2:fd:a0:3e:ae:62:e9:
14:be:94:05:ca:d8:ca:34:3b:cf:be:c2:6f:bb:2b:
59:2f:59:52:97:83:b4:78:c3:fa:fe:41:0d:75:55:
1a:e7:22:51:f7:3e:a5:50:b6:dc:90:40:54:09:65:
d1:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:7F:FF:E2:2E:4F:66:18:D5:78:35:CA:60:67:A2:DE:E5:5C:07:A9
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/In__4i5PZhjVeDXKYGei3uVcB6k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:a46::/48
Signature Algorithm: sha256WithRSAEncryption
39:fc:88:c6:94:e9:c8:8d:d2:34:bc:94:47:f0:c8:4d:33:17:
3e:cb:a5:2d:d2:69:d1:9d:58:a7:0e:52:6a:a2:ce:29:6a:fd:
f1:21:a0:07:ac:98:3e:f4:db:f8:a5:e9:30:21:7a:57:40:1a:
67:7e:80:1b:6d:ee:f4:43:b9:02:2b:8f:6d:ff:55:fb:5f:0b:
fb:dc:1a:51:04:5b:11:94:52:24:69:48:7c:fa:54:48:65:44:
36:d7:f5:c3:09:a2:e9:33:93:fb:77:bc:25:ea:a9:9e:4d:82:
cc:78:20:3b:c7:26:79:82:c9:8f:e5:8b:73:3b:25:e3:e8:21:
a6:34:85:bb:31:4e:02:d7:89:ad:d4:d5:0c:2b:85:e7:1d:2c:
6b:6c:f5:03:4b:4f:b2:e2:d2:d8:89:3e:e5:02:09:05:73:25:
ee:cd:41:d4:e6:b1:df:76:7c:e1:de:ae:4f:39:52:02:f0:2a:
88:08:23:25:00:d8:77:78:05:8a:fb:db:33:1c:e4:ae:d4:cd:
e9:6d:73:ee:4b:77:04:f4:08:b3:37:4c:52:72:5c:76:e9:9c:
13:1c:f3:00:2a:11:96:23:e6:6f:b5:c0:e1:03:b8:1d:be:ab:
da:89:1b:43:d7:8b:7e:4d:02:51:60:45:85:83:ef:72:e1:8b:
f0:f2:13:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:50 2024 by rpki-client on console-ams.rpki-client.org