Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/MlARl8WkeIDDLPOe3S0PmEJy4Dw.roa
File: MlARl8WkeIDDLPOe3S0PmEJy4Dw.roa (raw, json)
Hash identifier: m4dEvFbUnrTlQIZ8pzYnSyEfzLKxMpFKDDFvYtK3SCk=
Subject key identifier: 32:50:11:97:C5:A4:78:80:C3:2C:F3:9E:DD:2D:0F:98:42:72:E0:3C
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01916466C82741790E8EBA48CB2CF5EF3810
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/MlARl8WkeIDDLPOe3S0PmEJy4Dw.roa
Signing time: Sun 18 Aug 2024 07:32:23 +0000
ROA not before: Sun 18 Aug 2024 07:32:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 2a06:de01:d8::/45 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:97c1:8a2f::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a0e:b107:1870::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
2a10:ccc3:ccca::/48 maxlen: 48
2a10:ccc3:cccc::/48 maxlen: 48
2a10:ccc3:ccce::/47 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
Validation: Failed, certificate revoked on Wed 21 Aug 2024 14:43:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:64:66:c8:27:41:79:0e:8e:ba:48:cb:2c:f5:ef:38:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Aug 18 07:32:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=32501197c5a47880c32cf39edd2d0f984272e03c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9d:fc:ba:f3:20:19:cc:d2:d9:39:13:4e:4f:
43:ed:85:d0:df:99:c1:e9:ec:40:5e:94:48:fb:68:
7d:47:b3:75:09:28:a9:9b:c0:cb:4d:af:ac:ae:43:
b7:62:7c:f7:a7:7a:2d:ab:8e:81:f4:4f:11:f5:92:
d0:ea:5c:9d:2f:5f:ab:a2:33:e7:5b:33:ea:b1:4e:
29:93:2e:9f:0b:a2:03:85:c8:61:d2:63:b3:87:f9:
23:d2:81:cd:0c:9f:28:7f:52:a4:96:1e:1c:0d:2f:
6c:39:9b:e6:91:0e:d9:62:3b:bb:03:23:eb:86:8c:
a7:48:6f:92:fc:64:34:16:cd:68:12:e7:25:95:80:
05:ac:9d:7e:49:fd:c4:e8:1c:27:a5:a1:0b:5e:26:
40:03:a7:60:eb:52:dc:66:67:45:fb:ac:62:b2:fb:
0c:d5:3f:dd:14:bd:1b:07:32:92:57:b0:60:84:82:
5b:d2:5a:f4:fd:02:06:ef:6f:71:ab:21:43:bb:1c:
6d:3e:65:20:d1:e0:95:78:3d:2a:bb:3d:56:7b:b1:
20:87:13:b3:e5:c4:cf:0e:c1:f0:64:aa:cc:df:70:
d4:cb:77:a9:b0:89:af:ea:96:6d:58:40:37:38:f5:
d0:0d:36:84:60:65:c8:74:0c:ec:d7:86:9b:30:a2:
dc:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:50:11:97:C5:A4:78:80:C3:2C:F3:9E:DD:2D:0F:98:42:72:E0:3C
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/MlARl8WkeIDDLPOe3S0PmEJy4Dw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:de01:d8::/45
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c1:8a2f::/48
2a0e:97c4:ac00::/38
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc3:ccca::/48
2a10:ccc3:cccc::/48
2a10:ccc3:ccce::/47
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
b9:f7:74:ae:35:2f:1c:55:e8:c6:db:a3:a0:8a:3d:04:91:50:
e7:d0:20:cf:46:e8:af:af:9d:30:43:a3:5c:16:8e:38:35:4d:
36:dd:7a:2e:c4:7f:af:72:1d:44:02:bd:fb:89:c8:3c:cd:55:
8d:01:06:3f:a1:cd:d9:1b:a6:b7:be:a4:1a:69:e4:94:c0:5d:
72:51:8f:87:9f:89:fd:0c:0f:74:79:01:10:55:ca:98:c1:40:
98:43:1f:0c:56:b4:81:cc:13:0b:4a:13:79:df:05:8b:2d:be:
df:0c:a3:64:bf:07:57:00:44:3b:f3:0d:41:7b:bf:52:89:87:
a0:c0:df:2a:07:c8:9f:86:b6:89:1a:46:8a:70:fd:70:bf:53:
40:81:38:71:47:5b:6f:d5:4f:90:7f:61:aa:d4:62:86:61:c4:
52:14:36:52:dd:6d:4b:27:24:a5:f4:88:10:70:bb:1e:82:03:
d5:eb:a2:70:f0:01:d6:c6:f9:73:4f:25:de:4b:43:3d:93:11:
81:da:71:fc:37:46:37:69:c6:8e:33:ff:d2:5f:38:0e:1b:db:
88:7b:59:0c:53:35:5d:22:e8:1c:68:ee:c6:19:00:b2:87:f9:
73:91:fb:df:ec:a4:61:1c:d4:ff:93:b9:20:0c:0f:6d:68:3b:
13:49:5a:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 21 19:41:06 2024 by rpki-client on console-fra.rpki-client.org