Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TSIriTMJku5hUU1-7Zrim6KsyIM.roa
File: TSIriTMJku5hUU1-7Zrim6KsyIM.roa (raw, json)
Hash identifier: 5JJkWmY0h4hVZSOOXTyniQdfxkmH90R0Wy3iSpqpFbk=
Subject key identifier: 4D:22:2B:89:33:09:92:EE:61:51:4D:7E:ED:9A:E2:9B:A2:AC:C8:83
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018A5091782672A787D7657CCA8894CB6D07
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TSIriTMJku5hUU1-7Zrim6KsyIM.roa
Signing time: Fri 01 Sep 2023 11:47:05 +0000
ROA not before: Fri 01 Sep 2023 11:47:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216375
IP address blocks: 2a0e:b107:27e8::/45 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:50:91:78:26:72:a7:87:d7:65:7c:ca:88:94:cb:6d:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Sep 1 11:47:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d222b89330992ee61514d7eed9ae29ba2acc883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7a:37:74:e8:f7:e9:7f:97:5d:ac:a9:26:9e:
e7:1a:1d:c6:93:15:58:d3:83:9b:e2:7d:86:80:03:
62:8a:60:79:ff:9e:8c:e6:65:43:72:d3:5e:df:2b:
1b:ac:f7:83:64:fb:c7:e8:ee:ca:1e:e3:6d:1d:55:
36:5a:b9:61:96:77:9b:75:28:de:69:9d:eb:4d:25:
6e:de:13:f8:5d:b6:7d:a1:f3:85:ff:8b:21:8e:cc:
f4:06:30:77:d8:77:c5:b0:20:b3:20:02:a7:65:39:
d3:da:c3:cd:f0:d9:f7:ce:71:c0:d7:9f:4f:38:01:
77:98:54:4b:f3:bd:c5:ef:4e:c4:29:00:19:a9:69:
ae:14:c2:f9:66:93:31:76:7e:22:43:70:f1:7f:57:
79:ca:3e:8a:63:6c:fa:b6:81:dd:34:d7:f2:e7:ae:
f1:fc:6e:f1:ef:34:aa:37:21:f1:4f:9c:d0:9a:bf:
fe:d2:ce:b5:c3:4c:4c:c2:26:8e:c1:51:21:94:11:
c5:18:7c:74:2c:f1:43:28:b9:3f:fa:a0:85:21:92:
04:2f:7e:59:84:fc:af:d2:c3:b0:fe:ba:09:60:66:
42:0f:e0:1c:2d:e1:a2:3c:cb:1f:22:cf:35:3e:d4:
33:50:74:b7:58:84:aa:fc:67:86:be:ee:30:66:95:
49:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:22:2B:89:33:09:92:EE:61:51:4D:7E:ED:9A:E2:9B:A2:AC:C8:83
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TSIriTMJku5hUU1-7Zrim6KsyIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:27e8::/45
Signature Algorithm: sha256WithRSAEncryption
94:e8:25:f0:f0:e8:32:a3:52:71:83:f0:ba:d0:40:67:7e:55:
9c:e7:ad:9e:13:e4:c0:2e:5e:96:ad:a4:05:08:5b:ff:14:e2:
e8:4f:1e:c3:ea:e7:4a:e7:e9:21:63:cf:6d:a5:f7:7c:6a:50:
06:62:a8:cc:a5:85:48:5d:a4:00:31:7b:39:8d:80:e7:28:8e:
1a:3c:ad:02:1a:65:10:9d:47:03:02:86:34:3e:26:48:59:a2:
d2:d0:0f:0d:1b:46:20:f6:68:10:7d:ca:8a:22:77:18:f6:78:
66:58:20:08:9c:e9:85:78:8f:95:fb:13:8c:3b:6d:f5:9c:8e:
31:1c:68:ea:eb:88:57:4e:83:4d:9d:d8:56:ec:5e:de:02:a4:
d8:2c:5c:d8:73:9d:88:81:d2:f8:77:2f:a5:d0:48:c6:f9:ce:
d9:f4:81:8d:36:40:a9:01:f5:3b:21:18:d9:58:38:4c:eb:cd:
ad:45:92:91:e6:db:e0:74:e9:41:6d:6e:42:d4:06:7f:38:aa:
7a:5c:5f:2e:31:ef:be:40:bb:ad:d4:68:f6:60:8f:fc:1f:d0:
fa:28:14:ff:ab:a8:16:53:0e:cc:82:aa:a9:bd:23:22:91:c5:
69:a0:ae:11:43:d5:16:b6:a7:30:6d:f9:1d:9d:a6:47:d5:e6:
31:95:e9:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:31 2024 by rpki-client on console-fra.rpki-client.org