Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Sv1SlxFByRYJ99z6xtJXWNcCqgE.roa
File: Sv1SlxFByRYJ99z6xtJXWNcCqgE.roa (raw, json)
Hash identifier: /3XuYSqIo77151w8lB8JR+eWwY4k/cIUujwJSRcW4Ts=
Subject key identifier: 4A:FD:52:97:11:41:C9:16:09:F7:DC:FA:C6:D2:57:58:D7:02:AA:01
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01868D71DFB5C865AA5AA41FC75C5C82C2AA
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Sv1SlxFByRYJ99z6xtJXWNcCqgE.roa
Signing time: Sun 26 Feb 2023 11:18:15 +0000
ROA not before: Sun 26 Feb 2023 11:18:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a0e:b107:1870::/48 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a0e:b107:5d0::/44 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:b107:900::/44 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a0e:97c0:736::/48 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:b102:12f::/48 maxlen: 48
2a0e:97c0:76f::/48 maxlen: 48
2a0e:97c0:73f::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:8d:71:df:b5:c8:65:aa:5a:a4:1f:c7:5c:5c:82:c2:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 26 11:18:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4afd52971141c91609f7dcfac6d25758d702aa01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e9:29:44:cc:9b:86:18:cc:87:dd:72:a2:09:
42:6f:b5:94:e6:bc:f2:2a:7d:33:c1:8c:1f:db:cc:
f9:da:d4:3e:5d:6f:7c:c5:36:3c:a4:30:6d:0a:97:
ea:3f:30:ea:2b:c2:63:89:34:0e:92:22:67:ca:74:
3d:a9:69:c8:0e:9b:a3:be:e4:38:e4:de:62:8b:a5:
1e:c0:9b:e1:78:71:36:27:5b:34:89:2d:7c:55:8d:
45:5b:a8:a8:81:e4:69:38:be:84:f7:5b:24:c8:07:
49:85:fa:de:77:86:52:9c:3b:a7:17:e7:f9:23:19:
4e:26:0d:aa:09:1c:bf:b4:62:78:b8:07:3a:cc:96:
7b:24:32:58:17:28:1b:b4:6b:00:2b:87:b9:86:12:
7c:d7:0e:95:74:c3:1e:95:bc:99:fe:fb:d2:1d:94:
b9:b5:cf:ce:14:8b:e9:09:04:30:e6:71:f4:25:10:
f2:05:b5:8e:19:51:a3:b0:7f:d7:fc:9a:7b:2d:75:
d5:7c:25:74:ce:b4:ce:1f:50:ff:31:4b:48:67:0d:
59:af:fc:66:b9:cd:b1:c7:18:bc:11:5a:17:ee:f1:
3a:66:09:f1:08:80:e3:6a:00:1b:a8:b9:a3:7d:ee:
33:ec:0a:3d:67:f7:9a:61:ab:17:ae:9b:09:bf:49:
a8:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:FD:52:97:11:41:C9:16:09:F7:DC:FA:C6:D2:57:58:D7:02:AA:01
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Sv1SlxFByRYJ99z6xtJXWNcCqgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:3b87:ff00::/40
2a0e:97c0:736::/48
2a0e:97c0:73f::/48
2a0e:97c0:750::/48
2a0e:97c0:76f::/48
2a0e:b102:12f::/48
2a0e:b107:5d0::/44
2a0e:b107:900::/44
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
Signature Algorithm: sha256WithRSAEncryption
8a:f1:c5:4f:9d:4f:68:2f:44:85:3c:d8:5c:63:93:fd:c8:5c:
9e:ca:bf:19:b7:5d:34:8c:ba:0b:b7:dd:5e:f1:29:5d:7a:11:
eb:55:07:af:72:ef:6e:12:f2:d2:62:35:89:6c:97:73:11:5e:
7a:3b:da:44:1d:30:6a:c3:96:07:9e:74:50:1a:e5:1a:3b:e7:
0c:9c:b7:54:8c:71:8f:ea:b0:7e:f1:fa:4c:01:68:3e:53:76:
1a:6e:97:46:4a:ca:91:2d:8d:23:b0:73:f0:76:01:7f:cb:20:
aa:4f:f6:af:ef:42:ca:2d:2c:0d:89:ca:b2:ec:9f:09:e0:cf:
00:7f:eb:63:07:2f:72:37:76:91:35:4c:0e:7b:64:bc:d6:98:
d2:df:32:1a:44:0b:eb:71:4b:75:b0:fe:a6:f7:7b:9e:3c:2f:
80:c9:63:51:67:4a:69:34:17:53:3b:89:8f:42:26:cb:25:27:
d6:66:62:08:97:13:a6:3c:93:00:40:b6:a2:4b:ce:a5:73:23:
d4:e4:a2:a3:87:55:7a:62:f8:4a:b2:73:10:74:d0:a7:26:f3:
99:c1:93:a2:fb:4f:f4:e3:4e:62:ec:96:95:1a:7c:99:67:58:
91:ae:64:df:75:bf:24:59:5e:55:e9:33:7a:50:54:4d:88:35:
3d:01:df:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:59 2023 by rpki-client on console-ams.rpki-client.org