Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OwP05brtRRnGp01N69TOaKmJbsc.roa
File: OwP05brtRRnGp01N69TOaKmJbsc.roa (raw, json)
Hash identifier: boMojimfZx9yGDGn895QMs/VXQlRrtBD84STg7QrV9k=
Subject key identifier: 3B:03:F4:E5:BA:ED:45:19:C6:A7:4D:4D:EB:D4:CE:68:A9:89:6E:C7
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E79D51CD53436302B1D0CDF7A0BC6A
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OwP05brtRRnGp01N69TOaKmJbsc.roa
Signing time: Mon 02 Jan 2023 05:15:05 +0000
ROA not before: Mon 02 Jan 2023 05:15:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 149938
IP address blocks: 2a0e:97c0:376::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:9d:51:cd:53:43:63:02:b1:d0:cd:f7:a0:bc:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b03f4e5baed4519c6a74d4debd4ce68a9896ec7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f2:bd:3b:f7:c1:25:9a:22:1d:b6:18:66:78:
b3:0c:b8:b6:5c:9b:21:c7:b7:8e:14:1f:75:80:5c:
d6:64:76:b4:24:9b:7d:78:04:0c:72:db:5d:a2:d5:
48:b7:a5:84:0b:47:18:de:c4:7c:45:59:99:ab:e0:
44:f3:4d:84:d3:bc:30:5c:d3:b6:ed:8a:3f:87:ab:
65:4c:1f:15:10:d8:ae:b5:21:23:08:cd:6d:59:a7:
e5:a2:23:94:72:a8:5b:55:1a:61:8a:7e:43:e9:71:
6e:30:12:a7:32:2e:f5:24:92:4e:fd:4d:20:1b:7e:
81:ab:27:e9:81:00:a1:3a:b2:84:45:f3:e1:85:41:
33:e0:19:d1:e2:1f:47:de:80:06:3e:5b:a8:53:17:
87:95:06:e8:03:9d:8c:b9:31:2e:e2:04:df:04:c2:
c5:60:9b:e5:2a:e6:3e:46:0f:f8:53:6c:e8:12:91:
6b:ce:ab:d2:af:4c:ee:db:12:ef:12:ba:cd:b6:7c:
48:d2:c5:a7:74:7e:9c:1b:20:3e:26:29:8a:cc:5a:
a7:9f:b3:3a:6d:6c:74:72:22:8b:79:2e:66:f3:65:
7e:20:c8:bf:42:9e:be:d7:ea:6d:6b:67:7b:59:db:
83:b5:c9:16:fb:29:40:78:82:24:06:42:ee:bb:11:
b6:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:03:F4:E5:BA:ED:45:19:C6:A7:4D:4D:EB:D4:CE:68:A9:89:6E:C7
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OwP05brtRRnGp01N69TOaKmJbsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:376::/48
Signature Algorithm: sha256WithRSAEncryption
02:96:b7:6c:6c:12:42:11:96:bc:ce:d4:96:34:f8:27:ac:f8:
e4:30:4a:43:eb:e8:5d:69:f4:ec:62:e4:5a:f2:65:b8:29:4d:
fb:9e:0c:2c:a6:8b:5e:03:61:ea:99:15:fd:75:3c:79:3b:1b:
78:09:24:fc:c3:fe:0c:63:25:cb:ae:a3:ab:1e:21:b4:62:1e:
bb:b9:13:06:69:50:2a:9e:e3:a8:c2:b3:2e:02:e2:b0:4f:dd:
ed:2e:5c:f4:fd:02:6f:4e:aa:b3:1e:0f:5c:84:ec:cc:91:46:
1f:41:6c:f3:68:5f:30:d3:58:8e:8e:18:90:62:15:a2:0b:75:
78:06:03:cd:c0:ed:34:87:be:b0:5d:cf:52:ac:a3:07:3a:d4:
ca:c6:fa:4e:e8:47:fe:12:ef:49:ab:e7:80:8a:3a:fd:12:84:
5d:98:fa:7c:4f:92:5e:40:e0:d2:3f:33:24:63:df:85:af:2c:
21:91:4f:c6:e1:25:a8:a8:5d:3a:65:17:60:ea:74:d8:ef:03:
af:96:3e:36:2a:96:96:6e:c4:3b:0f:1a:8f:a7:27:df:d7:6d:
0b:81:b1:9d:5e:73:73:46:c6:01:ae:c7:57:e8:59:06:4c:60:
b8:01:13:f6:48:d5:f7:c6:5e:49:ee:d6:75:15:af:f6:47:1d:
05:fa:63:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:15 2023 by rpki-client on console-fra.rpki-client.org