Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Mc3_ZivwaDdDHHqh8gvorr1YaKE.roa
File: Mc3_ZivwaDdDHHqh8gvorr1YaKE.roa (raw, json)
Hash identifier: 8re7MPyf0mReTEaR7xQlFNNKUJ0ZBD7QO1da6iZWbk8=
Subject key identifier: 31:CD:FF:66:2B:F0:68:37:43:1C:7A:A1:F2:0B:E8:AE:BD:58:68:A1
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01930BC72A1453F03EC831C0F240DA182750
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Mc3_ZivwaDdDHHqh8gvorr1YaKE.roa
Signing time: Fri 08 Nov 2024 12:37:02 +0000
ROA not before: Fri 08 Nov 2024 12:37:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213901
IP address blocks: 2a0e:97c0:430::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 08 Nov 2024 14:57:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:0b:c7:2a:14:53:f0:3e:c8:31:c0:f2:40:da:18:27:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 8 12:37:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=31cdff662bf06837431c7aa1f20be8aebd5868a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:66:fb:c9:e9:73:44:b6:6a:87:7c:ac:27:a1:
41:b5:70:71:7f:d5:ae:ff:00:92:63:79:f0:ab:d5:
56:26:f9:33:cd:ae:47:52:4e:48:0d:58:07:49:30:
b0:70:e1:67:43:06:3c:e6:29:06:c2:40:68:19:f8:
6e:90:27:2a:3c:2c:72:4f:21:7f:1f:bd:b6:f3:52:
ce:ff:4e:3a:4c:ff:93:a1:8e:f1:38:ad:8a:0c:74:
8d:75:72:61:36:cc:df:12:cc:c4:09:d5:35:e4:10:
fa:5c:f5:cf:aa:b8:80:f2:3f:77:63:eb:9a:83:82:
f2:8e:49:81:6b:9d:77:52:bb:df:94:d0:b3:46:ff:
34:4a:9c:d6:54:9c:3c:31:fd:05:8c:64:b4:f4:3a:
23:b5:5f:af:15:05:bb:0f:df:c8:59:9e:fe:22:7c:
ed:83:0f:53:90:c6:d9:2d:cb:e1:4c:06:58:63:89:
d3:19:15:ef:31:92:fe:da:36:dd:30:06:77:f1:1b:
cb:8a:d5:c4:80:bc:3f:60:3e:10:ba:a9:bd:50:ec:
c2:f9:4c:d9:d1:14:f7:ef:0f:e9:7b:bd:61:a0:92:
a8:e7:c1:c7:73:f1:41:ed:cd:62:9a:49:69:5d:8e:
fa:f2:d0:4e:db:94:38:a0:bf:87:db:c0:56:eb:bc:
ea:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:CD:FF:66:2B:F0:68:37:43:1C:7A:A1:F2:0B:E8:AE:BD:58:68:A1
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Mc3_ZivwaDdDHHqh8gvorr1YaKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:430::/48
Signature Algorithm: sha256WithRSAEncryption
2c:0e:ab:08:fa:f3:49:bf:84:68:fc:64:6b:4d:0f:7c:c7:79:
08:b8:19:13:ff:2c:00:83:fe:30:81:c2:ce:d9:4b:d9:82:9e:
65:55:43:c6:46:c2:ef:82:47:82:69:50:f7:69:7e:bf:c8:b8:
36:22:61:5b:37:6b:2e:c0:74:83:ce:40:86:92:ea:fc:e4:10:
ba:08:2b:db:65:2b:1c:74:a1:6b:4d:17:5c:06:61:56:aa:3f:
29:78:d2:28:35:36:36:1b:69:52:59:44:43:3b:19:6a:5d:1f:
89:17:f3:34:83:8b:20:5b:71:44:ce:fb:9e:29:ef:a7:7e:5d:
57:46:0d:81:98:56:15:2e:a3:2f:cc:39:88:f6:5d:2e:ac:38:
89:a5:4f:c9:4c:ed:e9:50:18:eb:88:98:18:50:cb:a5:c7:f2:
68:b8:6e:df:ca:00:80:0d:68:50:be:21:47:36:0b:72:77:dd:
08:3c:f8:8f:b3:cd:01:b9:e9:21:db:10:b5:37:0d:28:38:4a:
c1:da:07:91:1b:4f:a8:18:73:f8:bb:08:f2:88:47:d0:89:3c:
d1:3e:4e:12:17:c7:9d:a0:81:a2:f4:39:3c:06:9d:53:b4:76:
32:2e:e8:2e:0e:a6:58:49:55:7c:3d:a4:78:fd:b9:a1:4d:ed:
c9:60:f9:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 8 18:02:44 2024 by rpki-client on console-fra.rpki-client.org