Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/M95lwt3rfKeyyPTqU0qu3TmsWmk.roa
File: M95lwt3rfKeyyPTqU0qu3TmsWmk.roa (raw, json)
Hash identifier: Lo8HyAYt0dhPByQpv0JNkzm/TugO8AmLxT1H6AVzpaU=
Subject key identifier: 33:DE:65:C2:DD:EB:7C:A7:B2:C8:F4:EA:53:4A:AE:DD:39:AC:5A:69
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E810CD708972EE39A970781776F52E
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/M95lwt3rfKeyyPTqU0qu3TmsWmk.roa
Signing time: Mon 02 Jan 2023 05:15:34 +0000
ROA not before: Mon 02 Jan 2023 05:15:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212034
IP address blocks: 2a0e:b107:3e0::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e8:10:cd:70:89:72:ee:39:a9:70:78:17:76:f5:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=33de65c2ddeb7ca7b2c8f4ea534aaedd39ac5a69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:28:b0:e1:c5:7d:3b:46:08:a9:65:71:9f:03:
73:cc:bf:0b:be:5c:c1:20:69:0f:42:0d:95:f5:d5:
e5:72:de:18:dc:72:83:6b:41:de:7b:8e:37:8f:33:
7a:6b:22:3f:dc:47:2e:8c:19:e5:ac:de:3d:c9:8b:
97:93:b7:98:c0:5a:02:1a:4d:bf:ac:94:00:fe:21:
77:2a:f1:22:b7:0e:2f:fd:10:52:17:8e:20:df:00:
51:5f:c1:7c:a0:88:98:50:4b:d8:26:5b:38:28:fe:
21:df:b9:14:46:c1:72:8c:a1:62:63:45:74:23:3a:
1e:80:81:10:9b:c8:15:ec:95:5a:68:8b:69:57:eb:
02:20:b2:97:97:3e:71:df:04:49:68:17:47:cf:05:
fd:ec:e3:09:6e:78:8b:1f:84:48:df:55:54:cc:5d:
c9:58:17:24:76:f5:56:fa:a9:d9:d8:9f:4f:c7:d6:
f2:04:75:24:35:45:18:66:f3:59:b5:24:15:63:a5:
27:96:01:9b:a9:56:ce:53:41:fc:eb:18:98:8e:4c:
8f:a9:f1:34:4b:34:3e:7d:17:8d:dd:6f:25:06:e5:
5c:8f:c9:41:68:6d:42:24:c4:7a:3d:8e:2e:67:01:
ec:3c:08:24:ea:74:84:b2:33:0a:3f:34:e3:a9:2d:
51:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:DE:65:C2:DD:EB:7C:A7:B2:C8:F4:EA:53:4A:AE:DD:39:AC:5A:69
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/M95lwt3rfKeyyPTqU0qu3TmsWmk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:3e0::/48
Signature Algorithm: sha256WithRSAEncryption
13:92:fe:83:83:5f:9e:ef:12:6c:33:28:a5:fb:19:7a:dd:aa:
e6:29:4a:e1:88:c5:d6:7f:51:e8:58:8e:32:8a:6e:49:8b:e9:
a0:79:15:bc:27:08:64:3c:31:a0:8b:9b:c8:5e:09:ba:a4:06:
c6:c1:5b:8b:b4:66:ca:b0:67:0e:e6:1a:6d:46:a9:07:63:a0:
20:aa:de:5b:7a:08:4a:ed:cb:b8:c9:a6:fc:0f:a8:c1:8c:da:
12:42:af:96:1e:d4:f4:eb:70:91:a8:68:c4:9a:71:d0:4f:df:
04:a8:98:e5:16:12:cc:8d:e7:fc:90:0f:36:72:d2:b6:bf:91:
3f:73:88:d8:fc:5c:f9:84:86:a7:14:74:84:ed:94:27:f0:7d:
50:f5:ff:29:c9:99:9f:eb:d9:f2:b8:57:92:62:d5:a4:cc:6d:
11:18:3f:03:5f:20:73:1c:68:0a:f2:cb:58:e2:aa:85:15:3b:
54:be:38:58:e5:af:6c:1b:48:29:51:9a:ee:2b:a1:91:24:ad:
35:b1:f7:dd:04:98:d1:2f:fd:d7:b3:fb:e7:1f:3c:65:35:85:
5a:69:32:8d:3a:6c:c4:d2:e4:8d:5b:f3:4d:01:d2:3f:21:46:
7b:47:d1:c9:38:ef:d0:35:46:80:f8:39:5f:dd:ee:21:8c:dd:
9e:e4:9d:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:15 2023 by rpki-client on console-fra.rpki-client.org