Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TVBZbyQVc0RWHUSIbJKJ-qzWg90.roa
File: TVBZbyQVc0RWHUSIbJKJ-qzWg90.roa (raw, json)
Hash identifier: FLzM+AQPLCGptzAbtjiho9jCJDKW+TGmq+MhqjdSxEw=
Subject key identifier: 4D:50:59:6F:24:15:73:44:56:1D:44:88:6C:92:89:FA:AC:D6:83:DD
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185E48AD4D936D20E6389F8F4B46067E1D5
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TVBZbyQVc0RWHUSIbJKJ-qzWg90.roa
Signing time: Tue 24 Jan 2023 16:09:41 +0000
ROA not before: Tue 24 Jan 2023 16:09:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204374
IP address blocks: 2a0e:b107:ba0::/48 maxlen: 48
2a0e:b107:ba5::/48 maxlen: 48
2a0e:b107:baa::/48 maxlen: 48
2a0e:b107:baf::/48 maxlen: 48
2a0e:b107:ba4::/48 maxlen: 48
2a0e:b107:ba9::/48 maxlen: 48
2a0e:b107:bae::/48 maxlen: 48
2a0e:b107:ba3::/48 maxlen: 48
2a0e:b107:ba8::/48 maxlen: 48
2a0e:b107:bad::/48 maxlen: 48
2a0e:b107:ba0::/44 maxlen: 48
2a0e:b107:ba2::/48 maxlen: 48
2a0e:b107:ba7::/48 maxlen: 48
2a0e:b107:bac::/48 maxlen: 48
2a0e:b107:ba1::/48 maxlen: 48
2a0e:b107:ba6::/48 maxlen: 48
2a0e:b107:bab::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e4:8a:d4:d9:36:d2:0e:63:89:f8:f4:b4:60:67:e1:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 24 16:09:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d50596f24157344561d44886c9289faacd683dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d5:5a:e3:de:15:a2:8a:46:5c:ee:df:a5:8b:
02:88:f2:84:e5:72:e9:1e:f6:6c:35:63:70:c2:9c:
0a:3a:30:35:42:ca:59:af:a9:5b:08:2a:d9:5a:ed:
e4:40:dd:a4:1d:38:f5:08:2f:d7:82:5f:76:71:6a:
18:b6:23:f6:4c:f8:b1:8f:e5:67:25:d6:7b:60:f1:
b5:be:e2:fd:11:f2:e9:2a:b5:ce:cd:64:fa:8b:2c:
c9:12:3e:f6:52:81:2b:c9:dc:bc:29:d9:66:7a:fd:
73:00:de:94:55:f2:27:09:93:e7:fc:6f:ce:35:af:
0f:11:ed:ee:54:a3:0e:4e:1e:13:f3:89:ac:6a:51:
66:25:8d:06:41:56:49:ea:9c:a5:b7:d7:a8:7f:b1:
6f:f2:5d:44:3f:ed:b0:48:92:26:cf:03:61:e3:e8:
3a:66:8e:a2:4e:9e:09:3c:a6:74:82:02:5d:43:1a:
f0:19:24:a1:ac:76:f9:20:16:f7:b5:6c:95:aa:5c:
12:31:3f:3f:a3:69:cd:da:dd:41:af:ac:d9:59:4f:
69:ed:5c:04:a1:fa:ed:ef:c6:3b:a8:3f:6d:0b:b2:
04:f8:82:49:a8:15:4d:68:66:02:fe:19:e5:1e:23:
e2:b2:40:e7:0e:3b:ad:7c:7e:16:47:e5:25:23:1e:
1e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:50:59:6F:24:15:73:44:56:1D:44:88:6C:92:89:FA:AC:D6:83:DD
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TVBZbyQVc0RWHUSIbJKJ-qzWg90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:ba0::/44
Signature Algorithm: sha256WithRSAEncryption
be:f1:c9:1c:b4:89:f1:1c:57:04:f5:eb:cf:d9:f2:71:63:b1:
38:d6:d2:8d:d4:8d:64:b6:ff:ac:e0:db:6f:84:a3:e0:2f:f2:
15:53:e0:60:e8:03:09:88:a6:92:af:1a:a3:d4:e5:f8:ce:05:
81:7b:10:f8:71:df:a7:87:f7:19:29:6b:9b:65:9d:6d:47:50:
a8:a7:5d:71:15:a7:3e:a6:e3:90:35:10:be:8b:53:44:18:85:
f9:2c:b9:06:da:a0:7d:57:66:5b:9d:92:b2:b4:2a:e3:ed:db:
6a:67:a9:2d:9d:de:41:1c:c1:c6:75:b9:85:71:66:50:21:e6:
94:52:1f:c3:44:1e:3c:04:b9:d2:36:58:3a:4d:ba:b0:5e:37:
78:1e:a4:98:ba:cd:bf:60:33:86:0b:b9:1a:f4:01:d4:a1:e5:
e2:a4:0d:06:5b:7b:e7:59:68:ed:9f:a5:14:24:e5:e8:d1:c4:
01:df:c4:38:75:cb:50:ac:1d:55:69:f0:ec:f6:8c:3a:48:ab:
04:3a:50:2c:db:93:75:2d:f5:cc:b7:d2:12:e2:b0:f3:e5:4a:
fa:89:7f:d9:c4:16:4c:5a:49:3f:6d:d2:5d:fe:1c:8a:c4:da:
90:1f:a2:1a:e4:37:58:d7:6e:2f:55:10:fb:59:4e:61:de:68:
6b:7b:fd:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:31 2024 by rpki-client on console-fra.rpki-client.org