Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/SdYpqo8wrRwxULQLtt4NNTcDCAQ.roa
File: SdYpqo8wrRwxULQLtt4NNTcDCAQ.roa (raw, json)
Hash identifier: hV6gk9toq+/7wtPUPmfCEIKOmpjeyR6B/kR+ECQ4fG4=
Subject key identifier: 49:D6:29:AA:8F:30:AD:1C:31:50:B4:0B:B6:DE:0D:35:37:03:08:04
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 019122C3D73F5C45C48A5EABC9A81E7663D4
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/SdYpqo8wrRwxULQLtt4NNTcDCAQ.roa
Signing time: Mon 05 Aug 2024 13:39:05 +0000
ROA not before: Mon 05 Aug 2024 13:39:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47152
IP address blocks: 2a0e:b107:1a8f::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 06 Aug 2024 08:46:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:22:c3:d7:3f:5c:45:c4:8a:5e:ab:c9:a8:1e:76:63:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Aug 5 13:39:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=49d629aa8f30ad1c3150b40bb6de0d3537030804
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:0c:6a:4d:cc:c3:e3:86:93:c3:16:77:93:06:
e1:86:c8:c6:eb:80:54:b3:e3:fd:16:91:72:c9:74:
6c:99:5c:32:2a:b1:a2:8e:a8:fc:c8:d8:93:a3:0c:
c4:6c:63:0e:4e:f7:bc:b2:d9:39:e7:96:0a:ed:e7:
c4:c9:74:4e:5b:11:82:d4:f4:31:1c:75:82:aa:18:
c7:14:de:f5:88:f9:59:ac:56:d3:34:ac:47:b1:90:
25:de:6c:b0:37:58:c7:9f:73:5a:5d:93:b2:78:bc:
57:6d:67:18:29:41:4f:12:32:88:58:c4:94:49:28:
52:3e:1f:0a:df:e0:4b:48:ed:81:03:e8:1e:28:d2:
18:0f:c1:c8:27:a4:c4:2b:aa:d8:c9:e3:78:f3:83:
e3:c9:b0:c6:95:ad:2e:9e:86:ef:72:79:13:41:e7:
70:4c:01:8f:aa:ab:91:f2:6a:70:ef:84:e6:51:ce:
59:af:42:f4:54:c0:c9:43:26:60:10:a9:39:d8:07:
99:4d:7e:b1:aa:74:77:33:27:86:2a:f6:d8:2b:d7:
fe:a8:2b:08:e5:08:bb:e4:11:ba:e4:3e:e1:0b:d8:
2f:62:43:40:0c:0b:b9:7b:e0:66:64:bd:81:65:a4:
6c:a3:7c:d2:e6:56:b6:dd:53:ad:df:fc:c6:46:ab:
85:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:D6:29:AA:8F:30:AD:1C:31:50:B4:0B:B6:DE:0D:35:37:03:08:04
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/SdYpqo8wrRwxULQLtt4NNTcDCAQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1a8f::/48
Signature Algorithm: sha256WithRSAEncryption
3d:6f:b1:85:ff:5a:f5:3b:b1:3a:c0:1c:86:98:7e:bc:2e:a9:
d3:67:1d:ac:c6:8a:a8:ca:e8:b4:1b:a4:e8:69:8a:63:53:d6:
59:98:58:e8:c2:55:05:19:ea:57:42:68:0a:45:fc:aa:f8:cd:
68:c4:72:db:fc:e2:bb:b4:c0:f7:9d:d1:40:eb:eb:79:f7:d6:
94:40:ad:d5:0a:29:f0:05:40:67:89:3f:a6:89:70:3b:39:60:
ce:7d:1d:8b:51:38:56:d3:f8:6d:ec:28:99:a6:91:3e:78:a5:
55:17:df:49:30:c2:ae:07:e3:f0:7c:29:c7:39:fb:64:d0:4a:
52:97:a1:7e:df:cb:a4:a0:fe:63:d4:17:07:71:f8:35:42:8d:
54:1a:b7:94:b0:4a:53:64:3f:80:67:08:c7:88:8f:25:5c:03:
fb:0f:15:2c:a2:4b:4e:1c:75:e3:0f:ef:5e:63:2b:1f:6c:65:
d8:5e:15:1d:e2:6b:90:0e:f7:43:46:80:f6:0f:c1:ea:25:76:
e9:02:bb:20:b6:11:19:64:53:ca:24:92:ed:5e:62:13:2a:ef:
20:c6:90:d1:63:27:0d:d2:51:a0:83:f9:18:96:1c:6b:03:b0:
13:6d:7a:6c:7b:3e:7a:57:80:c4:8c:72:e2:5d:c7:ec:2f:ba:
c5:b5:b7:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 6 12:12:40 2024 by rpki-client on console-ams.rpki-client.org