Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/R5bvCKq_nwq8yQs6eK_SUHWJwOo.roa
File: R5bvCKq_nwq8yQs6eK_SUHWJwOo.roa (raw, json)
Hash identifier: UcBE2PE2Z+pO7CYtBw324dZ2ghBS++rdZgW9Wtj4XJU=
Subject key identifier: 47:96:EF:08:AA:BF:9F:0A:BC:C9:0B:3A:78:AF:D2:50:75:89:C0:EA
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018E775AD63191BCB120CB7CE1C133DB7DB4
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/R5bvCKq_nwq8yQs6eK_SUHWJwOo.roa
Signing time: Mon 25 Mar 2024 20:43:45 +0000
ROA not before: Mon 25 Mar 2024 20:43:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215296
IP address blocks: 2a10:ccc0:140::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 26 Mar 2024 06:14:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:77:5a:d6:31:91:bc:b1:20:cb:7c:e1:c1:33:db:7d:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 25 20:43:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4796ef08aabf9f0abcc90b3a78afd2507589c0ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:99:b6:6c:3f:fb:cd:d2:40:5d:f4:6e:3c:9f:
d5:31:99:53:49:f5:70:4a:61:c2:46:3a:3a:00:be:
dd:45:ff:c7:a7:21:4b:34:ba:2b:45:5b:0e:50:57:
b1:a3:57:9e:78:cc:1e:c7:62:eb:ae:08:e4:a9:d9:
4b:cc:b9:09:19:44:f2:5e:15:0f:10:a9:cf:02:cb:
78:63:03:2d:ca:dd:e2:3f:e8:0b:11:3d:46:89:07:
22:08:33:2c:99:68:59:bd:fc:bf:27:ab:6a:f7:71:
8c:17:af:c7:d8:27:4c:ed:6b:52:6b:a9:4a:d3:2c:
b1:b0:9c:f3:67:fa:37:50:01:44:b5:b4:2c:75:fe:
c2:5b:89:fc:95:83:c4:aa:43:e2:d4:6b:08:69:ca:
04:2d:db:98:6e:ba:15:64:70:5c:dc:c2:46:21:29:
ae:3f:9e:c7:8b:7e:96:4e:58:76:92:9d:c3:06:8c:
c5:12:0f:55:b2:a5:80:1e:bf:66:c8:cb:1d:38:8f:
b5:a0:60:71:4d:c5:5a:91:70:39:8c:06:78:ff:ed:
d1:54:45:d6:be:84:13:c2:cf:35:72:3a:ce:b1:eb:
ff:04:a5:55:4f:27:58:3b:e8:7e:5f:ac:54:bc:ce:
b7:ee:bb:29:8c:02:fb:39:6c:b1:d9:0c:aa:5e:95:
a6:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:96:EF:08:AA:BF:9F:0A:BC:C9:0B:3A:78:AF:D2:50:75:89:C0:EA
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/R5bvCKq_nwq8yQs6eK_SUHWJwOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:ccc0:140::/44
Signature Algorithm: sha256WithRSAEncryption
ad:3f:23:74:0e:8e:26:8e:48:05:56:74:b9:7f:9e:ab:c4:95:
20:98:2c:8b:ba:5e:da:4f:e5:c3:a1:61:53:61:b2:ae:97:b6:
db:16:22:35:cd:a7:20:ef:a9:9a:42:5f:cf:c3:1d:49:de:45:
8c:fa:d6:4e:ee:20:68:76:ba:b3:10:03:10:4c:11:64:59:4b:
e2:e6:b3:1b:6d:78:cf:e0:1f:14:49:8a:96:6b:ea:9d:ad:5b:
a1:05:62:ac:ad:1a:22:ca:0b:a6:0c:b1:8d:f3:9c:fb:12:7b:
76:b1:05:56:19:e6:8b:c9:ce:b2:21:ed:ee:1b:7b:db:ce:94:
0c:9d:80:f7:e6:7b:56:15:00:1f:75:39:36:ee:7f:42:02:3c:
11:a5:39:e8:2d:c0:1e:a3:3f:e2:ac:50:25:3d:fd:43:f6:35:
2b:a5:ac:47:23:80:6e:c1:86:ee:80:88:bd:b1:a2:47:9b:35:
95:bf:dd:cd:53:d1:89:56:78:68:65:c7:26:a3:ea:94:ef:fd:
84:cc:4a:a7:5f:6a:48:45:1c:dc:ca:69:84:76:19:fe:f2:67:
ae:76:ea:bb:3f:ef:81:9e:96:d9:1c:54:35:96:39:55:e4:a1:
67:53:27:5c:34:e2:34:d6:b4:27:40:43:80:f5:ed:44:ea:64:
6a:5d:b9:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 26 06:58:37 2024 by rpki-client on console-ams.rpki-client.org