Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/SxNB9yl-5NOpXRo6lb9Qll-w_L0.roa
File: SxNB9yl-5NOpXRo6lb9Qll-w_L0.roa (raw, json)
Hash identifier: S/1C61141o3NwAoLqTFeCcFK+ABM0QftPmuxzrLwolY=
Subject key identifier: 4B:13:41:F7:29:7E:E4:D3:A9:5D:1A:3A:95:BF:50:96:5F:B0:FC:BD
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01857CBBD656660511F15C165DD231642B6F
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/SxNB9yl-5NOpXRo6lb9Qll-w_L0.roa
Signing time: Wed 04 Jan 2023 12:22:42 +0000
ROA not before: Wed 04 Jan 2023 12:22:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208328
IP address blocks: 2a0e:97c0:640::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:7c:bb:d6:56:66:05:11:f1:5c:16:5d:d2:31:64:2b:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 4 12:22:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b1341f7297ee4d3a95d1a3a95bf50965fb0fcbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5b:3a:15:12:08:d6:03:0a:f7:5e:67:ea:20:
e5:29:02:7a:b4:b0:b0:64:44:64:45:ff:bf:fd:91:
00:5a:29:75:f0:4b:f7:38:33:4d:ad:30:b3:22:bd:
94:3b:b6:ba:a1:9b:f4:4e:37:0d:fb:25:2a:14:ae:
d1:ae:83:09:32:87:28:af:7d:35:02:9c:7c:2f:77:
27:f7:36:93:70:96:24:e0:d9:44:55:82:f7:f3:7e:
27:8c:0a:cc:b5:8a:39:da:95:ac:9f:ca:8d:60:f5:
6e:88:eb:ad:52:b3:fb:f2:8d:7e:6e:d7:70:46:05:
2d:fe:78:a6:81:17:d4:82:a6:0f:0b:9f:b4:5a:98:
c5:d5:d1:d7:c9:21:e7:0b:d2:fa:b6:55:dc:d3:d6:
ee:98:c8:67:80:7f:47:10:a0:da:f4:15:16:41:2a:
f1:16:e6:6a:3c:9d:66:ef:b8:b2:ab:00:b7:5b:f0:
2f:81:b8:e7:b0:f2:7b:49:79:42:e7:3d:31:cc:4a:
63:e7:81:d5:27:71:e3:70:fb:9a:28:76:ea:a5:d5:
ae:83:75:c4:b1:c9:c5:0b:32:4f:05:c0:57:47:1d:
8d:1d:44:4d:33:2b:80:62:48:6c:23:77:1e:85:14:
43:11:93:87:36:25:3e:56:cf:8e:c9:b1:9c:71:60:
05:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:13:41:F7:29:7E:E4:D3:A9:5D:1A:3A:95:BF:50:96:5F:B0:FC:BD
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/SxNB9yl-5NOpXRo6lb9Qll-w_L0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:640::/44
Signature Algorithm: sha256WithRSAEncryption
a2:e4:76:03:c4:97:d6:29:fe:81:bf:40:6b:22:37:e5:5a:97:
74:77:aa:a1:5b:f2:32:67:6f:7b:a0:73:c4:bd:d3:6e:93:9d:
10:ed:75:54:91:aa:4b:9e:03:df:aa:80:1a:8c:87:ae:f8:75:
aa:b5:13:b2:53:61:01:27:cc:eb:67:6f:50:63:6a:a2:92:c3:
77:88:3b:ba:c1:aa:25:56:cf:d5:b3:6b:4b:8d:7e:e4:27:a6:
04:be:04:c2:7c:09:00:19:07:9d:4e:20:4b:9c:d4:4b:c2:7b:
43:af:62:ca:59:70:58:bd:1e:df:bb:59:f5:b5:95:cf:aa:2a:
be:40:da:67:9b:e6:5d:4d:c4:8c:33:37:85:4e:89:1a:f1:04:
3d:bd:29:6a:b9:08:bb:4c:6f:94:f0:8d:b4:18:ee:75:78:a3:
01:8e:dc:9a:54:2a:73:95:34:4c:90:81:4f:84:32:c0:f8:14:
50:98:94:d6:4c:0b:1c:99:ed:e3:0a:ac:dd:69:09:64:c8:0b:
99:df:2b:c8:9d:d8:61:dc:4a:67:15:44:39:58:5b:1b:13:6a:
68:0f:37:80:71:59:62:bf:36:a5:bf:18:92:91:3c:81:9a:33:
f2:f5:ec:a2:8b:93:d3:79:c2:9f:15:2f:a8:c0:95:4f:3e:a8:
fe:6a:09:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:16 2023 by rpki-client on console-fra.rpki-client.org