Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/RZLG4n2MshjBk0Rl6kDMKjGLDAM.roa
File: RZLG4n2MshjBk0Rl6kDMKjGLDAM.roa (raw, json)
Hash identifier: ZDEqKVPFhfzfB9MeNZWx7twGhOivECrWlh42R7WBrEo=
Subject key identifier: 45:92:C6:E2:7D:8C:B2:18:C1:93:44:65:EA:40:CC:2A:31:8B:0C:03
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018BD2A1716F88B37BA9317A6CCD8554AAC5
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/RZLG4n2MshjBk0Rl6kDMKjGLDAM.roa
Signing time: Wed 15 Nov 2023 10:57:57 +0000
ROA not before: Wed 15 Nov 2023 10:57:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44691
IP address blocks: 2a10:2f00:19c::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d2:a1:71:6f:88:b3:7b:a9:31:7a:6c:cd:85:54:aa:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 15 10:57:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4592c6e27d8cb218c1934465ea40cc2a318b0c03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b6:27:71:24:0a:7f:09:16:ee:cf:a2:ef:7b:
13:cd:20:33:2e:09:99:48:2f:f1:07:4f:21:53:ad:
6f:58:95:5b:ed:b9:a3:8e:47:8d:91:94:cd:3b:c1:
fc:4b:5c:41:a5:5e:72:c9:36:a6:a3:40:99:e3:e5:
46:92:0d:be:b8:3a:25:2d:d5:81:6a:6b:90:5e:cc:
cc:62:a6:09:54:dc:df:3a:e9:ce:9f:8d:27:72:30:
1b:62:ee:3b:c8:54:e8:44:30:73:75:27:bb:8c:fa:
47:74:96:0f:2b:84:cf:6d:b6:31:85:49:0c:7c:e9:
e8:bb:e9:61:05:f5:24:af:01:db:ee:69:19:94:91:
3f:a5:43:9d:84:1a:00:72:3a:8f:4e:cf:45:66:1d:
0b:97:34:87:6b:ed:75:93:db:06:a5:39:34:6c:5c:
aa:76:ae:68:42:1e:a3:a7:6e:e3:2b:97:49:e8:61:
94:8a:40:2e:31:a4:be:2c:c1:81:5c:f3:c5:bb:2f:
b6:34:f9:11:15:b8:17:8e:90:e3:a4:fa:b6:20:98:
30:09:de:70:34:be:2a:a6:72:ea:57:4f:73:e8:50:
2c:04:6d:12:ec:99:4a:c0:27:e8:a0:58:67:d2:5c:
a5:5a:77:63:ae:e9:60:e0:13:e7:12:a9:8a:df:52:
7c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:92:C6:E2:7D:8C:B2:18:C1:93:44:65:EA:40:CC:2A:31:8B:0C:03
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/RZLG4n2MshjBk0Rl6kDMKjGLDAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f00:19c::/48
Signature Algorithm: sha256WithRSAEncryption
4d:5d:58:9e:e2:35:9b:c6:75:14:f2:2e:a3:b0:d2:7d:5f:f6:
c7:3f:59:8a:b5:93:92:f9:b9:78:e3:5c:f0:46:a9:64:07:f3:
89:9c:7d:4f:09:53:c7:69:34:15:c0:5b:cb:94:31:5c:fb:bf:
05:59:ae:d2:73:3b:f8:ea:dc:84:f1:ca:d9:eb:89:29:55:7c:
aa:93:cb:ff:c1:ed:f5:bc:d8:16:01:28:0b:ce:4b:81:3a:96:
d9:73:d7:a0:86:b7:de:c5:65:ae:b1:3f:44:57:b5:0b:57:7f:
9e:c4:b8:1f:74:2a:df:c3:38:e4:ab:59:e4:9c:25:46:ee:ca:
1a:ec:5b:d0:35:aa:4b:9a:0c:22:a6:9b:dc:50:d8:05:40:cb:
da:8c:5b:6b:93:da:41:aa:60:9c:25:c6:7b:42:a9:a4:3f:23:
8c:2a:5e:68:79:6a:30:a6:d9:bf:40:33:b8:32:94:24:6d:2c:
56:63:52:52:17:6b:8a:0a:46:ba:71:7e:8f:74:15:d0:9c:dc:
5a:5a:e6:e8:d4:83:f7:16:cb:35:d7:87:e7:e3:93:f8:61:d2:
b6:b3:34:76:eb:7d:cb:48:59:cf:d3:e5:ff:df:24:be:8e:60:
70:cf:44:a7:cd:a4:99:f9:bd:9a:26:5c:44:d7:60:da:b7:8a:
a9:71:b7:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:03 2024 by rpki-client on console-ams.rpki-client.org