Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/PIJKSAWMvt5tK0SSjlzhWWlnUic.roa
File: PIJKSAWMvt5tK0SSjlzhWWlnUic.roa (raw, json)
Hash identifier: LPlhCGdk/7fAGqkk5e67t2bk2MMhFrUbzD3In65mnJE=
Subject key identifier: 3C:82:4A:48:05:8C:BE:DE:6D:2B:44:92:8E:5C:E1:59:69:67:52:27
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0187DF3D37A86061D85D717422848AB723B2
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/PIJKSAWMvt5tK0SSjlzhWWlnUic.roa
Signing time: Wed 03 May 2023 01:32:23 +0000
ROA not before: Wed 03 May 2023 01:32:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213316
IP address blocks: 2a10:2f01:240::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:df:3d:37:a8:60:61:d8:5d:71:74:22:84:8a:b7:23:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 3 01:32:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c824a48058cbede6d2b44928e5ce15969675227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e8:6d:dc:4b:28:2e:3d:5f:28:92:86:23:71:
e3:67:23:9a:9c:1e:50:7e:0a:52:6d:db:6b:d0:c3:
bc:32:0a:32:99:a3:e7:6c:7a:1b:07:e4:41:7e:3c:
b5:57:cf:0d:b3:fa:85:72:a8:0b:ee:02:2b:7a:7d:
66:68:27:bc:f1:36:61:51:c6:55:f6:54:26:e9:c3:
ef:c9:b1:ef:cc:42:63:fd:d8:43:29:fb:ef:ad:d0:
a4:71:e5:1d:69:b0:ea:e2:40:9f:60:65:7e:3d:c7:
64:6e:e6:b1:ca:96:59:39:62:02:03:bc:b6:f1:3e:
3c:55:d1:b6:b8:69:cf:d5:dc:fe:7f:11:e3:83:d4:
f1:3b:7b:8f:08:07:79:5d:8f:3b:54:99:8e:bb:e2:
5d:ec:eb:b9:c8:0e:e7:b0:f6:c5:fe:43:de:de:ee:
1f:a7:a8:a8:5e:32:e0:f9:7c:04:c6:4f:11:d3:81:
b7:f6:fc:a7:de:53:ef:9c:0e:6d:11:e6:35:b7:57:
9f:e6:a7:b9:24:7c:aa:a6:00:7a:8d:62:28:a0:66:
4c:34:67:25:0f:db:e5:64:ac:14:55:88:1b:7d:89:
82:45:9c:9b:7c:df:e7:50:07:b4:5e:59:ed:07:d3:
2c:32:9f:83:f5:10:63:36:14:2d:67:f1:66:87:00:
81:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:82:4A:48:05:8C:BE:DE:6D:2B:44:92:8E:5C:E1:59:69:67:52:27
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/PIJKSAWMvt5tK0SSjlzhWWlnUic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f01:240::/44
Signature Algorithm: sha256WithRSAEncryption
09:2d:21:d7:17:24:c7:a6:e4:3e:14:d7:5c:19:cc:fd:22:01:
44:cf:25:30:1e:8b:14:e9:62:55:27:ba:f1:96:01:d8:68:57:
04:cb:ce:0d:27:90:82:dd:a9:ed:18:68:e6:7f:d1:ea:8a:fa:
02:61:24:10:bf:b7:11:5e:d0:49:88:34:68:82:ef:6d:dc:e4:
72:bc:38:d2:22:eb:0f:41:6b:21:3c:16:6c:4f:a9:74:5e:40:
88:95:f2:25:22:57:af:a6:f8:0e:49:b6:a1:24:a0:bd:df:7a:
6d:92:5b:3d:04:34:86:d0:03:6e:2b:f5:05:af:6b:69:24:cb:
49:12:38:93:58:e5:16:7a:e8:d5:1d:ae:07:b1:c5:7c:c2:d4:
4c:2b:ec:a6:3f:b6:30:04:25:33:dc:91:a1:bb:43:12:2b:09:
6e:97:ff:75:e1:a5:7b:b3:4b:aa:aa:33:4a:01:00:e7:e5:81:
a6:fb:50:c0:80:94:de:92:de:10:25:dd:37:37:11:dd:95:fc:
d7:1f:5e:97:0e:2b:06:26:f4:ab:99:fb:72:5b:84:30:0a:4a:
6a:39:5d:c4:f6:28:34:6b:97:f3:e5:57:d1:70:32:d3:9d:ad:
6b:66:03:22:75:a6:93:59:39:43:82:39:59:71:3b:b4:68:98:
fc:97:b2:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:30 2024 by rpki-client on console-fra.rpki-client.org