Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OOPFI9dUv_FqjU7GNnkCFdZ8fnE.roa
File: OOPFI9dUv_FqjU7GNnkCFdZ8fnE.roa (raw, json)
Hash identifier: n5I3x0x9R9DRf1mnQMvOV0cIKFnU6azyoxx2EBKK6R8=
Subject key identifier: 38:E3:C5:23:D7:54:BF:F1:6A:8D:4E:C6:36:79:02:15:D6:7C:7E:71
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01874BE8B73B327113FD1FA32843D0023205
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OOPFI9dUv_FqjU7GNnkCFdZ8fnE.roa
Signing time: Tue 04 Apr 2023 10:55:54 +0000
ROA not before: Tue 04 Apr 2023 10:55:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210461
IP address blocks: 2a0e:b107:118f::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4b:e8:b7:3b:32:71:13:fd:1f:a3:28:43:d0:02:32:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 4 10:55:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=38e3c523d754bff16a8d4ec636790215d67c7e71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:35:37:86:6f:08:03:61:4d:10:a2:fd:78:51:
21:96:28:1a:a9:ff:f5:a5:a3:34:39:25:b5:0e:46:
d2:ec:ee:ee:5e:ee:5c:4d:30:47:27:53:69:f7:a9:
4f:81:9c:ad:78:94:19:7e:4a:ce:8b:8c:ec:56:85:
12:91:4e:7f:e3:eb:b4:2b:80:95:bc:06:ff:9b:49:
e6:c5:07:59:ea:52:77:0d:38:91:0c:bf:34:e9:9b:
bc:e8:7a:de:ab:f4:f1:7c:73:4a:69:cc:09:ff:6e:
82:d5:18:dd:09:38:41:5a:32:01:a3:d1:9c:b5:f3:
d3:35:f3:95:52:cf:ff:f4:e6:56:3c:3f:66:fa:72:
e8:e2:41:26:79:1b:e2:ae:64:ce:8e:ff:74:24:54:
97:00:da:04:41:e3:8a:cb:5b:76:ba:d7:68:88:77:
b2:9d:01:4b:6f:58:dc:20:fc:39:8a:88:6d:36:3c:
01:05:6c:4b:a8:f9:49:e0:9e:33:a0:f9:60:0b:f4:
ac:e3:c4:64:5b:7a:54:14:4c:f2:04:6e:28:56:32:
96:45:d9:d1:78:e1:f2:7f:59:3e:f1:6b:4c:28:6e:
18:72:8d:54:60:dc:0c:97:a5:f2:fb:d5:0b:bf:da:
03:bd:72:ba:97:03:2b:4a:49:77:26:94:55:7e:96:
40:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:E3:C5:23:D7:54:BF:F1:6A:8D:4E:C6:36:79:02:15:D6:7C:7E:71
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OOPFI9dUv_FqjU7GNnkCFdZ8fnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:118f::/48
Signature Algorithm: sha256WithRSAEncryption
8e:27:c4:60:75:13:47:92:86:a2:3b:07:52:52:be:00:ef:a5:
a5:15:8a:dc:16:e0:13:8e:2f:4e:84:f4:12:4b:45:c3:2e:eb:
a6:53:70:14:ae:e5:a4:ff:9f:ea:9e:48:9e:12:82:5a:2b:b5:
1b:c6:95:8b:b3:b7:d5:02:6a:d8:af:ce:ab:db:e3:0f:6d:4c:
7e:b4:2a:9b:0b:65:1a:71:c6:ab:34:9e:a5:95:cd:59:72:88:
18:95:ee:4d:bc:83:ac:04:3c:12:9c:06:49:d2:5d:42:eb:25:
af:ef:a7:6a:5b:0b:30:4f:f2:d8:30:28:dc:a1:f4:64:ab:c3:
97:f3:2c:1a:b3:26:f1:86:ea:31:46:4b:ec:81:a4:c9:b5:91:
55:60:f3:a5:81:8f:d4:03:8e:af:00:25:49:8d:01:4a:04:a7:
fd:7e:7b:57:c5:e0:8e:f6:80:16:e1:54:c8:c5:30:d6:e9:a7:
09:d1:36:7f:25:0b:36:45:6e:ea:9b:de:55:17:3b:54:23:80:
8d:11:7f:f3:42:6a:9c:c2:d4:9b:20:5f:32:a5:75:47:14:1f:
07:59:47:bc:56:c3:5b:c3:ca:95:93:83:55:0d:22:fc:6c:e2:
82:49:d2:19:c2:b2:fb:b2:87:01:60:89:73:7a:2b:a2:bc:aa:
bf:a6:6b:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:50 2024 by rpki-client on console-ams.rpki-client.org