Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/L8NYLemeAqvPIEOQqc2qhRKxMuI.roa
File: L8NYLemeAqvPIEOQqc2qhRKxMuI.roa (raw, json)
Hash identifier: vwHhBx/cYTdpLXrlqktKRGuoz/DjKlIQseiM2ogCNk4=
Subject key identifier: 2F:C3:58:2D:E9:9E:02:AB:CF:20:43:90:A9:CD:AA:85:12:B1:32:E2
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018A76117FF85ECF6BDAC6E458ED74102740
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/L8NYLemeAqvPIEOQqc2qhRKxMuI.roa
Signing time: Fri 08 Sep 2023 18:32:52 +0000
ROA not before: Fri 08 Sep 2023 18:32:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216357
IP address blocks: 2a0e:97c0:500::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:76:11:7f:f8:5e:cf:6b:da:c6:e4:58:ed:74:10:27:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Sep 8 18:32:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2fc3582de99e02abcf204390a9cdaa8512b132e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:80:2c:02:8b:cd:35:17:16:93:0e:5e:a0:f4:
49:f6:74:5e:f7:18:5c:f4:36:46:b6:27:0f:4d:6d:
f6:e1:95:86:35:42:04:49:20:77:21:7f:44:29:30:
d8:73:2a:d4:f3:c6:c5:d2:dc:be:5e:8a:fc:1c:59:
a8:a3:2c:4f:0e:2b:92:23:6c:aa:49:76:bf:3c:6c:
f6:fd:d1:59:1a:ad:9d:47:ff:bf:23:31:5e:f1:86:
68:0b:74:77:ef:db:6b:74:04:a0:ed:c9:46:b7:fe:
50:76:d8:9b:70:6b:77:89:8f:39:3a:16:b4:4d:4c:
02:14:4d:7c:91:a9:44:19:4d:a4:cf:2a:9a:b6:49:
90:de:7c:33:3b:a6:f4:d3:f4:56:6a:c4:90:2e:0f:
37:3a:cf:0f:47:66:f2:a6:ae:d0:ce:ac:57:53:95:
f1:9c:d0:44:d7:04:4f:76:3b:3e:de:04:c3:bf:85:
19:5b:66:9d:73:04:16:cd:4c:c9:af:5d:ea:dc:b7:
ac:a3:47:73:a9:9e:e9:6a:3c:58:d1:9c:98:f0:06:
8a:08:8a:93:d9:4b:f6:0b:23:6e:21:2d:dd:4e:b2:
9f:03:0f:c7:28:7a:89:e5:17:97:a1:9a:21:05:57:
15:ac:b6:91:f2:62:4a:c1:f9:e8:0f:ea:86:09:21:
0f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:C3:58:2D:E9:9E:02:AB:CF:20:43:90:A9:CD:AA:85:12:B1:32:E2
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/L8NYLemeAqvPIEOQqc2qhRKxMuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:500::/44
Signature Algorithm: sha256WithRSAEncryption
8c:63:e3:b6:19:fc:97:8f:9d:80:08:74:31:50:a9:58:d3:96:
25:fd:e7:f0:27:58:47:26:a5:93:61:70:e2:86:9c:45:4f:5b:
2b:05:97:27:4a:12:84:cd:52:00:09:82:31:64:1f:62:24:85:
39:5b:20:b8:c2:1f:c8:63:fc:7c:79:b4:06:15:e1:48:d9:07:
be:85:18:c5:16:c9:5c:7b:f2:f2:ca:f1:b6:5e:1b:42:15:3f:
ab:12:d0:5f:f9:ac:f5:ba:6c:81:19:82:eb:aa:87:3e:b9:92:
10:5b:1d:7f:70:c4:50:90:f4:b8:f6:0a:c0:ff:8c:c6:e6:e7:
aa:69:11:d4:26:38:44:1e:32:6d:66:58:65:00:51:41:0b:6b:
6d:ad:25:78:97:80:ba:a8:bc:8d:51:73:ee:12:f6:4c:d5:2f:
77:f2:f3:6d:07:34:b4:39:7f:88:a6:ab:98:d4:89:af:e0:67:
0e:2b:a2:7b:e9:4b:a5:10:93:f4:d0:44:bf:25:66:75:b6:f9:
3f:f7:cc:01:f1:a2:6e:b0:f1:ff:cc:09:b6:63:56:06:b3:e7:
5a:85:1b:87:f5:a3:04:7f:0f:52:62:a3:a4:7e:9e:a9:99:06:
61:dc:7d:e5:ce:6b:1a:b1:75:00:ab:1f:8b:aa:50:90:b4:04:
fd:30:be:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:50 2024 by rpki-client on console-ams.rpki-client.org