Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/NyNcYly1uBbn9N__Qrk5hlFjur0.roa
File: NyNcYly1uBbn9N__Qrk5hlFjur0.roa (raw, json)
Hash identifier: lEmE7tfsWd7AJp7jU/FC84dgqX3+y+ipYMFv+YBnsIs=
Subject key identifier: 37:23:5C:62:5C:B5:B8:16:E7:F4:DF:FF:42:B9:39:86:51:63:BA:BD
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018CBA634B9B3F859C981B692A2AE08A174C
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/NyNcYly1uBbn9N__Qrk5hlFjur0.roa
Signing time: Sat 30 Dec 2023 11:01:58 +0000
ROA not before: Sat 30 Dec 2023 11:01:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213327
IP address blocks: 2a0e:b107:20a0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ba:63:4b:9b:3f:85:9c:98:1b:69:2a:2a:e0:8a:17:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 30 11:01:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37235c625cb5b816e7f4dfff42b939865163babd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ec:90:a8:0c:61:1a:19:91:b8:c7:b1:73:9c:
cc:19:03:70:f1:4a:68:47:03:1c:0a:0d:1b:00:14:
fa:8c:d6:03:8e:ca:dd:3f:62:f2:72:58:df:8c:77:
38:68:27:d8:fc:7a:75:54:f5:d4:7c:57:22:76:50:
69:bf:f8:e7:d6:4a:87:9e:eb:25:cd:9d:bf:f6:06:
7c:5a:b0:8f:3f:75:80:cc:68:2c:a3:00:ec:a1:62:
fc:16:a7:94:de:97:3b:e1:09:28:d4:dd:e8:88:43:
88:74:00:5c:38:70:e5:78:cb:47:85:df:d2:88:d2:
6e:d9:ed:a9:58:ff:ae:47:c2:07:ef:4e:7e:70:d9:
44:fb:f7:c8:86:8e:31:b9:76:d7:c6:7b:05:ac:ba:
b1:69:7d:10:21:e4:b9:1b:68:ed:08:79:44:f9:e9:
98:22:60:3e:32:88:d5:7c:e1:bf:d1:34:24:a8:52:
e2:9f:6c:ea:51:7d:68:ac:6f:d7:53:1e:df:32:f2:
ee:2f:b7:dc:e6:60:b9:3a:a7:0c:b5:e2:c3:83:ea:
13:91:b1:18:d3:e5:d0:ff:86:30:73:0e:71:9f:01:
02:6c:20:d6:f3:6b:45:6c:9e:8b:2a:33:41:15:76:
0c:e9:ac:35:da:5e:81:69:cd:6e:c7:7f:67:4f:fc:
17:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:23:5C:62:5C:B5:B8:16:E7:F4:DF:FF:42:B9:39:86:51:63:BA:BD
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/NyNcYly1uBbn9N__Qrk5hlFjur0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:20a0::/44
Signature Algorithm: sha256WithRSAEncryption
93:1b:31:fe:61:cc:7a:ba:95:f2:3f:14:11:09:8a:a6:42:1f:
f2:98:a1:3c:aa:d8:71:22:7d:25:77:e4:80:99:5f:75:54:88:
25:84:ad:8f:2a:38:0d:cd:42:ca:94:68:8e:30:82:76:3b:99:
e9:7e:87:29:a0:07:e1:3f:73:ae:f6:40:2e:a4:f0:eb:a4:b4:
3c:bc:41:3a:eb:44:93:8f:dc:b2:56:ae:af:c9:a0:e4:27:b1:
c5:6c:fb:90:fa:e8:0a:bf:1d:07:da:e0:a5:9e:80:c2:63:64:
92:1c:5c:5b:10:cf:90:80:0f:56:fb:73:79:28:79:3b:d0:ff:
52:80:88:c6:3b:ca:19:71:4a:12:5c:80:db:34:ce:2e:31:a8:
24:5c:99:56:0e:2e:56:be:05:65:8a:0e:5a:62:bc:7a:e5:d9:
a7:31:7c:bd:3e:91:8d:f8:f5:a7:2f:9f:c6:01:f5:50:51:0c:
50:d7:3e:1c:ac:6d:ed:c7:02:df:08:45:46:5f:e0:e2:fa:de:
ba:13:b4:98:e2:48:8b:2b:6c:ec:d5:e8:70:08:6e:11:44:74:
34:8e:f0:80:cd:3a:9d:ff:f6:c4:18:12:a3:64:43:bf:05:30:
8d:d6:45:48:42:a7:3c:05:da:79:4b:e8:e1:c1:c6:0a:9a:58:
46:d5:4f:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:30 2024 by rpki-client on console-fra.rpki-client.org