Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/PoOUWfoNI0qXlyKuEWMBW3hOYf4.roa
File: PoOUWfoNI0qXlyKuEWMBW3hOYf4.roa (raw, json)
Hash identifier: gz914rFfD3daDnFsFMHs/v/J3Bagh98Ee9oGsxTKwek=
Subject key identifier: 3E:83:94:59:FA:0D:23:4A:97:97:22:AE:11:63:01:5B:78:4E:61:FE
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0188911BB785E01DACC8CD3717A39A4B5E91
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/PoOUWfoNI0qXlyKuEWMBW3hOYf4.roa
Signing time: Tue 06 Jun 2023 14:28:12 +0000
ROA not before: Tue 06 Jun 2023 14:28:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198304
IP address blocks: 2a0e:b107:120::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:91:1b:b7:85:e0:1d:ac:c8:cd:37:17:a3:9a:4b:5e:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 6 14:28:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e839459fa0d234a979722ae1163015b784e61fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fa:1e:c4:88:35:41:72:df:cd:58:14:11:44:
c4:7f:fb:e0:e2:6c:99:53:1a:e9:a1:9c:2e:97:81:
9c:47:60:59:4a:a6:fc:c2:b9:49:2d:cf:93:91:ad:
ec:2d:b5:c0:6b:23:3a:c2:e8:45:c4:98:7a:c9:16:
e5:d7:15:3a:13:7a:41:92:be:fa:7d:fa:0b:94:5a:
bc:05:4d:1c:27:b3:a4:99:83:ac:7f:0d:d9:cd:e7:
70:5b:63:34:9b:1d:47:2c:c6:98:b5:89:dd:a8:84:
8e:e0:b8:50:7d:8c:20:f1:46:16:1c:b9:30:b3:63:
ed:0d:28:f5:60:62:df:ee:82:b3:3f:c1:15:89:5e:
95:30:a9:fa:92:b9:0b:45:ad:13:3d:e4:80:41:01:
19:9b:1f:af:b5:72:68:33:a7:f0:d0:65:d3:b8:33:
40:93:cd:64:24:25:b7:d3:94:2e:4e:c1:26:61:40:
ea:e6:67:34:1d:03:d7:4a:60:7c:66:1c:40:13:6e:
53:c1:f7:35:66:58:f6:1f:b8:82:de:31:41:de:b7:
85:df:9e:9b:c0:a9:54:3f:d1:a9:9f:58:5b:a6:d4:
f1:ea:a8:55:e9:81:a8:20:37:27:90:40:44:69:a5:
f4:0a:d1:ed:ce:1a:7c:05:24:34:e6:4c:0c:a7:71:
b2:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:83:94:59:FA:0D:23:4A:97:97:22:AE:11:63:01:5B:78:4E:61:FE
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/PoOUWfoNI0qXlyKuEWMBW3hOYf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:120::/48
Signature Algorithm: sha256WithRSAEncryption
5c:e4:a3:42:fb:97:19:4a:05:9d:fd:a2:47:7b:dc:7a:17:80:
a2:75:b2:9e:a6:b7:44:cf:84:27:43:42:c5:18:86:55:35:47:
40:21:48:6d:9d:9f:9b:7f:7c:f9:86:f0:4f:11:ea:ab:64:05:
69:00:c8:a7:3b:a6:b6:28:73:9e:f9:d2:86:16:61:46:93:04:
83:97:72:5b:ad:dc:c2:ae:d7:18:fa:de:d9:7c:e2:79:86:ff:
3b:a8:e9:1c:7b:da:88:d7:8a:09:3e:f0:ae:86:e5:1c:7d:cb:
40:6f:45:74:3d:94:d5:25:c5:0a:25:7f:05:84:1b:2b:6b:78:
89:97:c9:1a:76:d9:52:97:4e:ff:c0:7c:60:08:fd:8c:6a:95:
2e:b7:b0:d2:9f:5d:8e:7e:98:0f:07:b1:ac:b6:ef:d2:38:1a:
cc:ae:0a:98:fc:6e:50:15:02:60:71:b9:5b:0a:b6:f1:52:97:
78:47:18:53:6a:b5:72:bc:48:12:13:d5:b5:1e:6b:d5:b2:52:
61:11:2b:7d:82:18:95:da:86:ef:df:4f:ba:f7:47:3c:b2:c9:
76:64:5f:e3:c6:1d:21:59:7d:e9:f9:d0:9e:9d:de:e8:49:6d:
82:f8:19:5c:dc:96:af:64:8c:fc:94:53:39:3a:54:d1:a0:60:
fb:94:78:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:59 2023 by rpki-client on console-ams.rpki-client.org