Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/J2lNLgFXDh3nRsRrdtbk1CBdCeY.roa
File: J2lNLgFXDh3nRsRrdtbk1CBdCeY.roa (raw, json)
Hash identifier: 3AQR7b4DzwMIhJsj9xlS9NG6WW+BOwGExX8L8Ld9TkA=
Subject key identifier: 27:69:4D:2E:01:57:0E:1D:E7:46:C4:6B:76:D6:E4:D4:20:5D:09:E6
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018A47A70F2E6FCABA641F1384EBA14C49CF
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/J2lNLgFXDh3nRsRrdtbk1CBdCeY.roa
Signing time: Wed 30 Aug 2023 18:14:05 +0000
ROA not before: Wed 30 Aug 2023 18:14:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216375
IP address blocks: 2a0e:b107:27e8::/45 maxlen: 48
Validation: Failed, certificate revoked on Fri 01 Sep 2023 11:45:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:47:a7:0f:2e:6f:ca:ba:64:1f:13:84:eb:a1:4c:49:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Aug 30 18:14:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=27694d2e01570e1de746c46b76d6e4d4205d09e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:04:9f:3d:33:2d:fe:3d:dc:79:fc:af:9d:0f:
7e:da:4f:f1:f2:3a:f6:9b:f7:ee:db:35:c4:59:6d:
29:41:9d:fb:3d:8c:54:d0:0c:4c:b8:94:9a:b5:6b:
86:17:23:86:6f:16:ba:48:97:fd:79:97:09:53:ba:
d5:9c:b5:cd:03:e3:bc:80:62:18:6e:60:01:29:c5:
9f:78:a8:3b:6b:9f:38:f0:aa:4f:79:44:1f:df:2e:
ef:ed:4c:47:59:c3:bc:c9:dd:2c:76:1c:c0:d5:4b:
d3:3c:43:ab:81:8c:0f:ee:cd:8c:c9:9a:77:cb:7a:
ff:dd:43:88:79:68:34:27:c8:71:d6:cf:79:41:41:
1e:55:1e:dc:fe:9c:d6:88:41:46:45:a0:5f:12:83:
f2:39:68:ce:3a:4e:3c:67:31:81:1a:e3:60:ad:74:
a0:44:d3:da:8f:1f:4a:bb:f9:a5:3d:b3:6d:f2:33:
cf:1a:04:4d:ea:03:e9:63:fa:f9:ba:f3:34:f7:54:
5f:04:97:ad:a7:dc:50:7e:bd:08:26:c6:e3:cc:33:
56:69:4e:ed:1d:5d:b4:88:06:e2:13:ec:c0:2b:94:
6a:2f:e6:16:3e:2f:f8:9f:72:b3:75:2c:ca:03:2c:
ab:de:a2:95:5f:70:9f:ec:5d:1f:a0:64:d5:04:da:
e7:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:69:4D:2E:01:57:0E:1D:E7:46:C4:6B:76:D6:E4:D4:20:5D:09:E6
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/J2lNLgFXDh3nRsRrdtbk1CBdCeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:27e8::/45
Signature Algorithm: sha256WithRSAEncryption
c2:93:ea:b1:8e:7a:e0:2a:d2:3d:e9:de:1b:59:52:09:fa:96:
1f:86:1f:40:dc:61:50:6c:de:42:6d:c7:1c:9b:a5:b0:e1:18:
ec:61:b5:81:45:82:be:22:58:9b:18:c2:cc:17:ce:37:8e:68:
ef:e8:c5:60:a7:e7:73:a0:e6:dd:96:a4:77:9b:95:b1:e8:aa:
95:ad:cb:08:f7:89:62:25:64:45:2a:c4:db:4d:2d:72:b9:84:
37:c6:64:c2:04:34:27:fb:bc:40:25:52:c2:8c:3c:92:89:f7:
78:68:f1:98:4d:4d:47:c6:a4:d3:db:58:bf:6b:7a:bc:6e:8a:
fa:af:a6:b2:fb:f8:e3:4c:82:36:ed:2f:81:12:9d:ac:6c:1b:
9c:70:f9:b4:ca:88:e5:03:33:d1:f4:3a:1f:0b:60:2e:7a:d9:
34:1e:94:de:15:f1:bd:47:cd:6a:94:5a:77:95:65:a6:03:a9:
6a:6f:47:0b:46:6b:2a:3b:e6:db:67:2d:87:fd:28:81:2f:b9:
c7:21:bd:82:44:42:11:d3:dc:64:75:c6:dd:6a:0f:59:6b:a9:
2d:5d:73:d7:aa:91:d4:7a:22:79:ae:6d:ed:3b:cc:1c:15:2a:
8d:45:d7:1b:43:80:00:f3:a5:8f:04:42:fb:0b:c2:6a:1b:55:
8e:13:7d:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:29 2024 by rpki-client on console-fra.rpki-client.org