Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/JlqNLd5QdRNYKPGzI73KLYv36JE.roa
File: JlqNLd5QdRNYKPGzI73KLYv36JE.roa (raw, json)
Hash identifier: h8ewa061PTTHMfi19OToPOXPmZcOSwyBU0ZoJpPbOXU=
Subject key identifier: 26:5A:8D:2D:DE:50:75:13:58:28:F1:B3:23:BD:CA:2D:8B:F7:E8:91
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018A5367DBBAD6E92290415030BFBC558E34
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/JlqNLd5QdRNYKPGzI73KLYv36JE.roa
Signing time: Sat 02 Sep 2023 01:00:29 +0000
ROA not before: Sat 02 Sep 2023 01:00:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 149296
IP address blocks: 2a0e:b107:1840::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:53:67:db:ba:d6:e9:22:90:41:50:30:bf:bc:55:8e:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Sep 2 01:00:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=265a8d2dde5075135828f1b323bdca2d8bf7e891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:d6:ce:be:98:f5:70:97:02:a8:4e:c2:f3:55:
ff:d6:ef:ae:e7:9e:71:af:68:e5:e3:31:cf:ad:3f:
1d:b5:3b:f1:28:c4:17:c5:20:36:25:2d:bf:71:51:
64:0b:dc:89:6a:9c:46:c7:fb:ce:22:f5:05:90:6a:
b4:10:93:bc:93:d9:18:74:b8:2f:c3:cb:5b:41:d9:
3c:6b:79:4b:6a:bd:13:ea:e7:39:5c:d0:2c:2a:50:
e8:85:d5:6d:60:78:7e:09:52:ca:2a:79:70:f9:6d:
80:8e:12:5f:40:09:cc:09:36:a9:c2:fa:ab:6d:6c:
21:58:54:6c:de:88:96:fa:a5:43:35:ef:1d:de:4c:
22:97:40:36:e7:a3:d5:2a:d7:27:f8:70:52:bb:1d:
59:46:fa:24:96:11:a8:b6:ab:71:ab:1b:eb:c0:40:
a1:06:de:c2:a5:64:6a:8f:86:96:4e:7e:78:24:9f:
c4:97:69:a6:a0:9d:72:19:2f:4c:eb:ee:e6:33:8f:
6a:30:87:d7:02:af:91:03:2b:72:a6:cd:b5:cc:04:
c0:d0:ad:b3:86:3a:52:c8:0d:e8:4a:71:09:03:e4:
b4:d8:2d:ac:67:67:89:36:01:fc:d8:e1:5b:c2:3f:
c5:99:49:df:39:dd:88:66:13:b3:47:c6:b5:ed:07:
d9:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:5A:8D:2D:DE:50:75:13:58:28:F1:B3:23:BD:CA:2D:8B:F7:E8:91
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/JlqNLd5QdRNYKPGzI73KLYv36JE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1840::/44
Signature Algorithm: sha256WithRSAEncryption
a2:47:e6:72:43:93:b6:c0:49:b6:e6:be:2a:69:f2:06:18:f5:
4e:c1:5a:e5:9c:68:e5:48:cb:2e:ea:55:5b:7f:59:0d:da:1c:
2e:b2:f6:4f:f5:67:94:48:6b:1f:ef:5f:2d:68:6d:a8:f6:4b:
f5:02:1d:b4:72:a8:b0:1a:6f:38:96:ac:89:f2:b8:1a:4b:8d:
67:e8:f4:10:47:d1:86:e1:9a:d4:c7:f8:e4:70:b7:10:ed:d6:
98:f2:2b:fa:04:d8:12:bc:ea:1a:3b:ce:ed:ca:8f:14:8a:07:
40:eb:50:50:68:2e:97:30:b3:4e:62:fd:16:39:09:9e:d1:11:
30:20:82:af:11:43:de:b9:35:41:81:97:6f:d0:ca:27:cb:b7:
06:d2:80:58:7b:3c:f4:c8:42:8b:ac:95:29:1d:a6:77:22:21:
ba:f4:c9:e2:f3:cb:9d:8a:36:7a:44:8a:92:8f:6e:6f:c5:62:
32:97:61:b4:b8:d0:b6:da:94:4a:cd:8e:75:5c:41:95:a8:d9:
30:18:1a:57:5b:be:41:d1:fa:a2:8e:93:53:d1:46:ce:35:e7:
26:e7:7a:f1:70:ff:40:34:cf:e1:20:c8:26:f1:46:fe:05:f9:
3b:01:5c:76:a6:9d:de:db:58:e5:2c:25:5d:a9:6e:e7:a7:ee:
15:6c:98:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:30 2024 by rpki-client on console-fra.rpki-client.org