Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/M_3aqfCjG0wHf3RxlqYq5b7TW9Y.roa
File: M_3aqfCjG0wHf3RxlqYq5b7TW9Y.roa (raw, json)
Hash identifier: eVzut5jLh9MhbAWTZd4RC/MSP68S4lN7ZxmyDzhGJRY=
Subject key identifier: 33:FD:DA:A9:F0:A3:1B:4C:07:7F:74:71:96:A6:2A:E5:BE:D3:5B:D6
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018DD0EED273080394F308F40C8F2FDDB100
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/M_3aqfCjG0wHf3RxlqYq5b7TW9Y.roa
Signing time: Thu 22 Feb 2024 13:08:48 +0000
ROA not before: Thu 22 Feb 2024 13:08:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42641
IP address blocks: 2a0e:b107:17b8::/45 maxlen: 48
Validation: Failed, certificate revoked on Fri 23 Feb 2024 10:45:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d0:ee:d2:73:08:03:94:f3:08:f4:0c:8f:2f:dd:b1:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 22 13:08:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33fddaa9f0a31b4c077f747196a62ae5bed35bd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:31:f1:ee:e1:ae:af:05:a4:2e:63:56:c8:52:
dd:6f:fa:2b:ca:0f:fd:e8:55:5c:f8:bb:12:cb:da:
51:67:37:dc:f1:8b:f2:a1:4b:9e:c3:4a:9d:36:d7:
1e:c2:9c:d1:f4:bc:cf:96:3b:f6:1b:00:84:28:13:
a6:31:aa:5d:40:c9:e6:0c:4a:6b:06:c4:65:7e:45:
a2:ca:53:eb:96:ed:36:fb:d0:aa:fd:0a:18:b5:09:
78:73:77:35:af:10:e3:60:62:e7:6f:f0:08:2a:39:
4e:d9:fe:73:5f:b0:4f:b3:64:96:de:fc:78:91:ea:
6a:ee:f4:a0:33:80:21:2e:a7:5c:09:64:92:a8:51:
93:fb:ae:89:d0:2f:73:e3:55:0e:4a:c1:4a:4a:eb:
2b:dd:42:f7:14:ac:a4:e9:f2:60:3a:02:83:48:f4:
5f:ee:9c:3c:3b:47:a6:3f:62:24:a4:84:22:2e:5e:
7d:8a:3b:66:e1:65:58:0e:72:66:58:1a:ad:98:15:
fd:f1:1a:bc:f9:2f:92:41:57:9d:52:be:c1:51:dc:
59:af:68:41:1b:78:3d:e9:3a:d6:38:31:f9:92:2c:
ad:d1:3f:bb:bb:7a:94:9c:c4:b5:55:bb:ec:d9:10:
82:28:02:d9:1b:42:49:79:17:d6:55:4e:05:6f:b6:
32:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:FD:DA:A9:F0:A3:1B:4C:07:7F:74:71:96:A6:2A:E5:BE:D3:5B:D6
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/M_3aqfCjG0wHf3RxlqYq5b7TW9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:17b8::/45
Signature Algorithm: sha256WithRSAEncryption
00:ca:be:1a:f6:a0:b0:ef:bb:a9:42:e6:49:8a:5a:41:96:4f:
62:14:a7:5e:4f:53:2f:a5:f5:2e:e6:de:cf:17:fe:22:04:cd:
9b:2d:e2:24:d4:1b:8e:c6:22:7b:00:98:45:3e:56:46:6c:8c:
10:65:a0:dd:8d:1a:13:04:27:ca:5e:93:8b:65:1f:d9:c4:b6:
2e:34:4b:fe:53:8c:96:24:ba:98:f7:63:3c:8a:55:46:5c:07:
96:ba:99:da:01:4d:3d:a7:ef:76:9b:2c:42:d8:46:53:d7:80:
53:92:b5:e5:e0:44:e8:85:46:cb:19:41:db:a8:7b:ba:06:9f:
a0:14:c6:aa:e6:59:6f:4b:d2:4d:b3:99:b7:5d:5c:a3:9d:ea:
d7:9a:59:ce:4f:0c:dc:89:5e:81:b1:c4:65:ef:aa:2e:e7:59:
0d:4d:0d:f4:33:49:32:ea:81:56:17:d4:f4:b7:9f:95:be:25:
9f:6b:bb:fa:7d:a3:51:b4:4e:ec:0c:e5:6e:a6:7d:9d:27:2e:
7d:b9:12:f3:02:6b:b9:68:51:d1:27:31:9a:e7:57:87:25:38:
33:76:70:c5:2b:3c:81:12:1e:12:b2:4f:42:33:dd:43:71:ad:
87:4d:f5:07:9d:80:b2:e6:2c:53:a7:e2:ae:24:bb:a9:8d:65:
fb:aa:7a:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 23 13:40:47 2024 by rpki-client on console-fra.rpki-client.org