Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/MA2RQTjFJwGdZuQGaOcC3jVTWu8.roa
File: MA2RQTjFJwGdZuQGaOcC3jVTWu8.roa (raw, json)
Hash identifier: t1QMF62Pk7EsTTxB5KcIqeFlhyvDH7I4UcK2oTg/SZo=
Subject key identifier: 30:0D:91:41:38:C5:27:01:9D:66:E4:06:68:E7:02:DE:35:53:5A:EF
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 019165EBE120074CDC555561A254C1E654EB
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/MA2RQTjFJwGdZuQGaOcC3jVTWu8.roa
Signing time: Sun 18 Aug 2024 14:37:23 +0000
ROA not before: Sun 18 Aug 2024 14:37:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214344
IP address blocks: 2a10:ccc6:6660::/44 maxlen: 48
2a10:ccc6:666f::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 21 Aug 2024 14:42:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:65:eb:e1:20:07:4c:dc:55:55:61:a2:54:c1:e6:54:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Aug 18 14:37:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=300d914138c527019d66e40668e702de35535aef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f7:9f:ac:e6:a7:e7:e6:93:9b:f7:fb:e9:eb:
2c:5a:59:1d:bc:6f:ad:46:ef:75:19:61:51:84:54:
37:54:96:1d:46:00:a6:cd:d6:e4:ca:f8:07:f2:4d:
f4:47:e0:0e:e9:93:2f:35:be:19:4c:b2:16:8f:82:
6d:af:05:80:e7:47:a9:14:9c:14:34:8e:2a:69:d2:
c3:ce:fd:0f:bd:3c:80:64:d9:46:22:df:b7:66:6d:
47:15:0d:46:72:ea:cc:bc:27:8e:c6:43:b2:fe:ed:
00:56:51:9a:69:a0:1e:ce:e7:1f:a7:d3:b1:33:10:
9d:17:06:b6:c4:e9:21:f7:06:f4:03:4e:01:42:fb:
15:ad:38:a2:39:00:8f:80:96:b4:e7:0e:c7:c6:e2:
b9:f6:84:ed:0f:2b:d4:df:81:74:18:e9:9a:d1:4a:
e6:a7:c5:35:98:e0:f2:c7:46:b9:50:1e:11:10:d7:
69:f1:f4:73:7b:ff:91:fc:f0:6e:c5:6c:ab:92:1e:
52:a1:c1:89:a4:f1:87:2a:6a:42:a3:a5:a1:02:97:
58:76:61:32:23:08:73:f0:7d:a1:5f:05:8f:da:fb:
c5:17:52:f8:7c:d3:9d:ac:4f:1a:52:98:c6:5c:95:
31:87:4d:5d:07:d6:4b:ac:8a:12:6a:ac:07:ae:40:
db:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:0D:91:41:38:C5:27:01:9D:66:E4:06:68:E7:02:DE:35:53:5A:EF
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/MA2RQTjFJwGdZuQGaOcC3jVTWu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:ccc6:6660::/44
Signature Algorithm: sha256WithRSAEncryption
31:0b:cb:18:c2:19:d4:f8:4a:e6:e1:4e:b8:f1:6d:76:61:f2:
32:40:e7:15:cd:cf:0e:e6:b7:c8:f4:2e:39:82:cc:22:f9:bf:
99:12:25:8b:09:c8:30:df:4e:f0:84:af:06:d5:ec:8c:46:0c:
9c:96:cd:1a:80:2b:c9:65:35:53:65:6e:7e:a6:6c:92:3f:91:
a6:8c:9f:6c:33:43:54:06:fc:50:0e:98:48:c3:d9:73:54:3c:
ad:74:cc:c4:ae:70:d2:4d:da:2b:8d:52:32:db:32:57:61:99:
39:6d:c9:af:75:56:bb:aa:65:13:6a:47:e2:8f:2e:00:a9:e1:
58:5d:ad:0e:08:5c:40:b5:62:ec:c0:8c:c5:f3:6f:b5:e2:3d:
d7:01:e4:3c:bf:21:1c:4a:b4:8a:b8:d2:97:d8:27:e5:23:02:
d5:ae:db:2a:32:bb:69:8f:29:34:4d:14:c0:9f:6c:b8:26:c4:
bf:72:1b:6a:58:de:c2:81:dd:61:38:3c:5d:39:90:ab:e0:b3:
a2:58:80:64:b4:0e:0f:26:76:4c:dc:cb:9f:54:e9:fa:17:06:
5f:94:12:bc:e6:5b:d8:dc:88:60:47:bc:4e:1f:2e:a5:34:4b:
1f:a0:6b:c2:51:63:12:66:6c:b4:f0:50:c7:ae:1b:72:2f:60:
69:6d:7e:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 21 19:41:06 2024 by rpki-client on console-fra.rpki-client.org