Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/KEiSoVkeanRD8Fd9yH4jKMnx6o0.roa
File: KEiSoVkeanRD8Fd9yH4jKMnx6o0.roa (raw, json)
Hash identifier: pZL5NhfUc6eGtSBKf8FpqwqVJpBuVLiPf0YlW9aTzZI=
Subject key identifier: 28:48:92:A1:59:1E:6A:74:43:F0:57:7D:C8:7E:23:28:C9:F1:EA:8D
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7E736FFA75F759BC6B0BE200B7A13
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/KEiSoVkeanRD8Fd9yH4jKMnx6o0.roa
Signing time: Mon 02 Jan 2023 05:15:24 +0000
ROA not before: Mon 02 Jan 2023 05:15:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210426
IP address blocks: 2a0e:97c0:5e0::/44 maxlen: 48
2a0e:97c0:5ee::/48 maxlen: 48
2a0e:b107:17e4::/48 maxlen: 48
2a0e:b107:17e9::/48 maxlen: 48
2a0e:97c0:5ec::/48 maxlen: 48
2a0e:b107:17ee::/48 maxlen: 48
2a0e:97c0:5e7::/48 maxlen: 48
2a0e:97c0:5e2::/48 maxlen: 48
2a0e:b107:17e0::/44 maxlen: 48
2a0e:b107:17e2::/48 maxlen: 48
2a0e:97c0:5eb::/48 maxlen: 48
2a0e:b107:17e7::/48 maxlen: 48
2a0e:97c0:5e6::/48 maxlen: 48
2a0e:b107:17ec::/48 maxlen: 48
2a0e:97c0:5e9::/48 maxlen: 48
2a0e:97c0:5e4::/48 maxlen: 48
2a0e:b107:17e0::/48 maxlen: 48
2a0e:97c0:5ed::/48 maxlen: 48
2a0e:b107:17e5::/48 maxlen: 48
2a0e:97c0:5e8::/48 maxlen: 48
2a0e:b107:17ea::/48 maxlen: 48
2a0e:97c0:5e3::/48 maxlen: 48
2a0e:b107:17ef::/48 maxlen: 48
2a0e:97c0:5e1::/48 maxlen: 48
2a0e:b107:17e3::/48 maxlen: 48
2a0e:b107:17e8::/48 maxlen: 48
2a0e:97c0:5e5::/48 maxlen: 48
2a0e:b107:17ed::/48 maxlen: 48
2a0e:97c0:5e0::/48 maxlen: 48
2a0e:b107:17e1::/48 maxlen: 48
2a0e:b107:17e6::/48 maxlen: 48
2a0e:97c0:5ef::/48 maxlen: 48
2a0e:b107:17eb::/48 maxlen: 48
2a0e:97c0:5ea::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:e7:36:ff:a7:5f:75:9b:c6:b0:be:20:0b:7a:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=284892a1591e6a7443f0577dc87e2328c9f1ea8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:74:42:34:22:eb:ce:ec:49:69:df:6b:27:a8:
02:b5:02:16:28:7a:71:0f:fe:e4:80:b7:55:45:1b:
cd:7b:ed:ee:22:2d:41:b5:38:1c:18:b1:c9:7c:a6:
40:d6:b0:00:40:c5:2c:74:86:13:1b:bb:2b:3d:c5:
80:0f:5c:bd:f7:f5:92:de:42:4b:ad:9e:5e:18:f2:
e0:9d:90:ff:c4:23:b0:12:3e:95:b8:61:97:9e:21:
29:b1:c0:ce:b1:e4:6a:69:5d:e6:a2:9c:fa:30:cf:
f9:a1:2d:1f:8a:a6:6a:cf:51:38:b3:cf:a2:a0:c8:
0b:71:65:1c:23:26:3e:1f:c0:e6:78:6b:ec:98:26:
16:49:59:3f:05:05:af:f5:d6:40:1b:d6:f3:0e:14:
5e:04:e6:2b:d6:8c:80:f9:75:51:0f:cd:35:0d:24:
86:05:42:8d:5d:0f:59:13:06:cc:ee:83:fa:1d:26:
52:25:b4:2a:3d:10:b9:f3:a2:4d:d1:49:14:58:6d:
e4:75:60:0f:1d:a9:b9:41:9c:5d:3d:aa:7f:16:f0:
17:91:94:4b:e2:c0:2e:38:d1:96:b5:e4:bd:a2:08:
33:03:a9:43:cf:64:fc:f9:4d:3c:d8:a1:b7:dc:73:
47:0f:a1:8d:59:2c:42:81:30:80:4a:03:ee:4d:69:
48:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:48:92:A1:59:1E:6A:74:43:F0:57:7D:C8:7E:23:28:C9:F1:EA:8D
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/KEiSoVkeanRD8Fd9yH4jKMnx6o0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:5e0::/44
2a0e:b107:17e0::/44
Signature Algorithm: sha256WithRSAEncryption
96:62:72:f2:41:08:32:98:b4:4d:fa:dd:5e:0e:b8:bb:1d:e5:
84:af:04:2a:94:d4:35:36:6b:8a:f4:c9:04:b5:52:04:df:da:
98:5c:a4:66:7f:20:33:cd:5b:87:ed:22:ce:87:21:db:65:1b:
d5:51:1f:5a:4d:11:b4:da:d4:9e:a4:60:bb:07:70:d1:87:6b:
d9:df:9d:ca:24:1f:7e:ce:7b:e8:ee:ca:43:db:07:c1:d9:74:
3c:d1:59:bc:9b:0d:f1:8a:04:8e:eb:5d:87:5b:2d:c9:8a:69:
6c:62:67:c2:b5:b8:b3:d8:43:d7:13:5d:39:95:ee:a8:90:f5:
4b:d6:d3:ca:68:0a:77:ae:89:e8:7d:33:a7:1a:84:26:4e:7c:
fa:8a:a7:f1:1d:a9:66:e8:3b:32:da:0d:8c:28:f5:82:b2:97:
a4:04:13:71:09:f8:b7:84:d9:c8:52:b8:32:1e:2e:ef:f2:a0:
5c:5b:61:d8:20:50:20:3f:f5:c8:ea:13:6f:fe:fc:32:50:5a:
c1:fa:05:a9:d1:65:40:b5:51:73:9a:ab:63:d4:40:75:96:b0:
9c:e4:c8:b0:81:84:f4:73:66:da:f0:54:07:40:a1:d3:df:32:
ca:16:4d:cf:8d:10:7f:a9:81:78:27:49:23:4c:ef:45:60:00:
4c:03:c8:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:15 2023 by rpki-client on console-fra.rpki-client.org