Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/R8yz9VgNMtFcBzR3Jgvt0qt8ezo.roa
File: R8yz9VgNMtFcBzR3Jgvt0qt8ezo.roa (raw, json)
Hash identifier: Lx7Gt2AwLjQQAwu3EE8othhlPQiG3QpYI2zypxUL3Wo=
Subject key identifier: 47:CC:B3:F5:58:0D:32:D1:5C:07:34:77:26:0B:ED:D2:AB:7C:7B:3A
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E81C0958DA9957E83456D1BE5F1B0A
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/R8yz9VgNMtFcBzR3Jgvt0qt8ezo.roa
Signing time: Mon 02 Jan 2023 05:15:37 +0000
ROA not before: Mon 02 Jan 2023 05:15:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212580
IP address blocks: 2a0e:b107:e00::/44 maxlen: 48
2a0e:b107:de0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e8:1c:09:58:da:99:57:e8:34:56:d1:be:5f:1b:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=47ccb3f5580d32d15c073477260bedd2ab7c7b3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b9:1e:ac:b6:08:7e:e2:6e:91:28:99:d4:9d:
fb:cd:c5:a7:9b:74:31:52:34:9b:7f:68:f9:a8:49:
50:c5:50:2b:81:58:ec:cb:2b:0b:b6:b6:b2:11:90:
2b:06:08:a8:f3:c4:b7:78:b8:ad:59:bc:e9:f9:9c:
13:de:65:b1:37:28:e4:62:7a:db:7f:6c:78:33:34:
2a:e7:ec:62:0a:5b:d1:36:41:ee:4f:5f:ec:eb:39:
d1:d5:28:85:63:fc:68:0e:47:d4:6b:74:0f:4b:1c:
01:a4:27:c2:05:21:ec:08:6b:0d:d8:96:4b:e9:d3:
f1:92:53:62:df:03:ae:be:1c:63:54:b4:f6:ea:b4:
58:39:be:a5:65:77:0a:aa:69:44:ed:cb:d0:90:30:
03:1d:15:2e:29:e4:5a:ab:c3:4f:46:c2:cf:b4:f2:
2b:96:f6:45:ab:de:69:c9:3c:72:f4:63:6b:5a:56:
2d:a9:44:9c:b9:17:3d:81:37:25:0e:30:8d:c8:40:
5d:ee:84:c2:8b:3f:1b:78:fb:26:f2:ef:c5:7d:89:
90:77:7c:9e:6f:06:d8:56:e4:54:16:79:22:17:09:
48:b3:15:a3:85:1c:ac:ef:43:f6:dc:50:63:6f:06:
d7:38:6e:98:40:a6:5c:75:cf:a7:56:39:80:3a:92:
21:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:CC:B3:F5:58:0D:32:D1:5C:07:34:77:26:0B:ED:D2:AB:7C:7B:3A
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/R8yz9VgNMtFcBzR3Jgvt0qt8ezo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:de0::/44
2a0e:b107:e00::/44
Signature Algorithm: sha256WithRSAEncryption
5a:59:cf:1f:de:f2:60:e1:f6:92:20:1d:23:6d:82:e6:c9:fa:
bc:8e:8a:a0:87:76:d2:40:d8:8c:26:c7:07:9f:3e:ed:02:26:
dd:40:07:f7:7c:d5:46:2b:76:4d:90:90:f2:d8:27:2f:16:ba:
64:dc:5f:71:9c:bd:c7:64:2e:a4:18:0d:71:cc:a5:43:d0:f3:
1d:ff:46:6f:b8:a9:3e:41:08:49:ae:29:96:b9:ad:83:a9:5e:
a7:f2:f7:ae:78:b5:4b:5d:02:34:7b:66:bc:5c:8d:42:68:d9:
f5:6c:3b:ff:65:cf:86:55:a9:15:48:6d:3d:0f:46:da:03:d2:
ab:26:e2:fe:7a:6d:c1:07:a5:e3:d1:67:2b:f1:c4:24:05:52:
10:c9:67:f8:fe:df:8b:1b:99:7f:c1:f1:cf:e8:28:b2:df:84:
5b:22:b7:0f:c1:9f:94:6f:6f:20:a7:45:fe:ec:7d:5b:38:e8:
10:93:92:b7:2a:1d:80:b9:3c:00:bf:47:87:0c:3b:0c:26:9c:
c3:0c:6b:16:f0:4b:04:bd:98:6e:db:8c:62:46:ff:f4:fb:df:
6b:d6:62:23:94:da:e6:82:43:ae:af:7a:e0:7b:98:89:31:ed:
ab:fc:87:d9:86:e1:a2:66:0f:05:2a:ab:07:96:ed:bf:b7:98:
a2:18:f1:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:16 2023 by rpki-client on console-fra.rpki-client.org