Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/PSSpQkucCeCUG0xpZJZ58-Layl8.roa
File: PSSpQkucCeCUG0xpZJZ58-Layl8.roa (raw, json)
Hash identifier: 2QHmtIg1eOHnPASnVST0IyB1hry+T0IgywSQnrjGMQA=
Subject key identifier: 3D:24:A9:42:4B:9C:09:E0:94:1B:4C:69:64:96:79:F3:E2:DA:CA:5F
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E8015D0B3E614CF8E3B3E8A41DBD78
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/PSSpQkucCeCUG0xpZJZ58-Layl8.roa
Signing time: Mon 02 Jan 2023 05:15:30 +0000
ROA not before: Mon 02 Jan 2023 05:15:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211337
IP address blocks: 2a0e:97c0:1d0::/48 maxlen: 48
2a0e:97c0:1d1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e8:01:5d:0b:3e:61:4c:f8:e3:b3:e8:a4:1d:bd:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d24a9424b9c09e0941b4c69649679f3e2daca5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:5f:1f:b2:68:15:25:b2:16:b4:e8:1c:db:f1:
ad:90:a6:4b:43:b5:33:90:46:41:bd:b5:74:12:ed:
54:11:3e:31:e0:d3:cc:01:9a:b1:cf:b8:71:46:ea:
42:3a:1f:aa:48:e4:5b:ed:f9:40:4b:38:99:90:d9:
2f:93:d2:e2:ea:cc:ab:4e:b4:a4:c5:52:59:f8:2e:
78:85:41:f8:c9:bb:c3:72:15:8c:3c:cf:e7:07:b0:
ed:42:c7:8c:5f:80:14:97:a0:ce:21:43:d9:69:a0:
4e:26:95:30:74:ca:b0:17:c0:9e:0a:14:2c:ba:64:
ba:37:e3:59:c7:79:b5:cc:84:8f:82:da:56:16:b8:
fe:df:93:8d:c9:34:a5:2c:b8:ed:64:60:ee:82:f9:
1e:7d:e2:22:27:70:b6:46:22:24:5d:92:d6:87:ea:
30:76:23:50:a9:43:44:be:5b:9e:6e:4d:73:21:34:
c8:57:d3:e6:e1:78:aa:53:a9:06:64:f0:c9:e8:f7:
c2:57:86:62:e4:18:88:cb:4e:18:74:01:85:3e:67:
29:ee:61:8b:d1:3f:08:8d:37:b2:6d:01:4d:ee:b2:
a4:db:e8:e8:19:b7:d1:3a:d7:e6:d1:a3:5b:02:57:
f5:9c:91:1f:cf:25:01:94:f1:c8:cf:db:bf:a7:37:
ff:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:24:A9:42:4B:9C:09:E0:94:1B:4C:69:64:96:79:F3:E2:DA:CA:5F
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/PSSpQkucCeCUG0xpZJZ58-Layl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:1d0::/47
Signature Algorithm: sha256WithRSAEncryption
a4:a2:49:ec:7e:3a:24:e0:9c:86:f8:61:c1:44:ed:6a:3e:64:
58:72:ef:c5:56:d0:52:d8:bf:43:aa:89:36:cb:dc:3d:94:7b:
27:63:e5:f9:e0:6d:f6:5e:76:77:75:d0:d6:75:1a:6c:a8:e2:
6a:61:5e:3c:13:9e:67:e9:dd:ba:87:3b:fc:b3:32:ae:df:f3:
78:01:b4:88:1f:21:ec:a6:85:7f:4a:45:21:23:c1:10:1a:04:
41:71:24:01:f9:4e:17:91:f6:dc:72:57:24:88:aa:53:0a:5e:
b1:44:24:b1:a5:b7:f8:79:5c:86:d4:cf:a3:8c:86:a1:8c:1e:
9b:8d:d2:f9:d7:08:40:ae:02:72:b0:75:bd:66:94:11:05:8e:
0b:b4:32:f5:92:fc:bc:67:0f:00:4b:67:9b:c3:a2:54:1f:53:
9b:87:62:46:51:94:37:25:e5:3f:21:e4:b3:d4:e1:31:ca:ab:
dd:f8:f9:76:20:ab:e1:6c:db:60:f0:08:84:77:df:64:9a:c8:
50:e2:63:70:fa:ec:83:b2:9f:c0:00:14:f3:69:97:86:33:dd:
c0:92:97:8b:4d:19:b2:a4:66:2a:15:74:c3:33:07:b7:18:0d:
d7:08:42:3d:33:d6:58:e0:e0:60:d5:6e:c2:3e:1c:2e:f1:68:
a8:14:eb:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:59 2023 by rpki-client on console-ams.rpki-client.org