Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Ith6X77uR6uqnFBaCrzCnlcRyMM.roa
File: Ith6X77uR6uqnFBaCrzCnlcRyMM.roa (raw, json)
Hash identifier: s+1/hUvAt/zX5/K6gb7MeLlcRCm46U5VCVqSSeVTMME=
Subject key identifier: 22:D8:7A:5F:BE:EE:47:AB:AA:9C:50:5A:0A:BC:C2:9E:57:11:C8:C3
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185A9094BE79C761DD415EA96D2A8A118DC
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Ith6X77uR6uqnFBaCrzCnlcRyMM.roa
Signing time: Fri 13 Jan 2023 02:50:36 +0000
ROA not before: Fri 13 Jan 2023 02:50:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a0e:b107:19a0::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Jan 2023 17:07:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a9:09:4b:e7:9c:76:1d:d4:15:ea:96:d2:a8:a1:18:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 13 02:50:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22d87a5fbeee47abaa9c505a0abcc29e5711c8c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:8e:9b:54:3d:68:f7:72:56:5b:2a:c4:ad:49:
8f:f3:01:a5:9c:af:a3:ce:fb:1c:56:46:85:12:cf:
48:c4:6c:5a:9e:70:31:49:f5:df:af:10:e6:21:59:
ad:3b:37:7f:7d:94:53:5c:d0:d4:d7:0b:51:d4:62:
3f:ca:39:06:98:5b:f4:cc:b6:ba:50:ff:7b:d5:49:
98:66:18:c0:f5:28:4a:da:68:1d:30:14:28:a6:b6:
f2:8a:00:3d:04:4e:25:61:ed:c4:7e:12:46:d3:6d:
61:5c:f5:14:6c:73:b4:8f:00:c2:05:fb:5c:42:53:
1d:08:e4:ed:ab:73:49:b1:aa:bb:06:31:95:06:4b:
81:33:09:bb:bf:1c:10:65:ae:1f:03:12:55:8f:4e:
e6:f5:bd:39:03:da:05:1c:f4:87:95:e8:1f:bc:d7:
56:8c:9e:53:95:2e:c4:16:20:bc:7e:ca:97:f1:95:
9b:9c:43:1a:41:01:01:e4:87:07:32:86:df:ca:f5:
05:7c:1f:e3:e6:1d:51:fc:38:b1:84:74:04:c8:7b:
a8:1f:12:ea:50:92:e2:2a:4a:44:fe:65:36:b8:70:
3b:cf:f8:20:06:78:89:52:9f:d8:e2:8a:1c:f0:cc:
c7:ff:d0:6d:58:a0:e7:c4:66:b9:b7:80:9b:99:c7:
1a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:D8:7A:5F:BE:EE:47:AB:AA:9C:50:5A:0A:BC:C2:9E:57:11:C8:C3
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Ith6X77uR6uqnFBaCrzCnlcRyMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:19a0::/48
Signature Algorithm: sha256WithRSAEncryption
32:40:86:b7:b9:4d:1d:34:bb:dd:f1:f7:6f:5c:e7:a7:4f:4f:
31:04:b5:ba:d7:c8:7f:c4:f6:f7:db:41:f9:8f:58:50:8e:a7:
49:b0:5d:d2:9e:8f:5c:78:c3:ba:79:13:46:69:e7:05:78:ba:
02:9e:51:ca:e9:4a:b3:d3:f8:59:4e:f0:0c:d8:69:f9:66:21:
58:76:6d:44:1c:c1:b9:f8:49:f8:53:eb:81:1a:98:90:65:8c:
0c:1a:35:9e:d3:d9:db:f7:e1:4f:d4:0c:8e:2a:62:30:9d:4e:
b8:dc:ef:e3:05:5d:c7:fd:14:02:e0:a3:42:a9:dc:06:74:06:
3b:ea:9c:a8:23:4e:b2:bd:6a:34:84:7e:72:09:f3:f2:9a:5f:
a9:86:5b:9a:e1:82:21:97:b8:96:f5:ab:4e:5e:5f:68:6a:60:
aa:38:84:23:85:e3:4a:34:6a:1e:48:5c:7f:ac:ac:1e:ab:9a:
c3:4c:23:c3:0e:82:64:04:f9:29:34:cf:39:0e:ea:32:85:4d:
1e:51:ff:96:60:7b:dd:5a:79:87:aa:8d:9d:bd:90:76:bf:cf:
4a:fa:64:9c:99:29:03:f0:ba:8e:d8:00:0d:92:ac:63:cc:f5:
b2:04:bd:3f:b3:09:ba:ca:83:78:ed:9e:09:88:1e:d1:23:70:
21:6d:03:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:29 2024 by rpki-client on console-fra.rpki-client.org