Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TwozHAAiwTJ2QfAkVYsR0FTX4VY.roa
File: TwozHAAiwTJ2QfAkVYsR0FTX4VY.roa (raw, json)
Hash identifier: I3NPRdoqgoe1pTgac8JaMhnpgJ8IqXsBwTq8XzZ6Aus=
Subject key identifier: 4F:0A:33:1C:00:22:C1:32:76:41:F0:24:55:8B:11:D0:54:D7:E1:56
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185E48AE14667B286EBF90343FED8170473
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TwozHAAiwTJ2QfAkVYsR0FTX4VY.roa
Signing time: Tue 24 Jan 2023 16:09:44 +0000
ROA not before: Tue 24 Jan 2023 16:09:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208717
IP address blocks: 2a0e:b107:220::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e4:8a:e1:46:67:b2:86:eb:f9:03:43:fe:d8:17:04:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 24 16:09:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f0a331c0022c1327641f024558b11d054d7e156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:8b:8f:f0:65:3c:ea:27:19:12:53:0f:3b:16:
94:1d:68:34:28:57:a0:8c:50:a7:39:2c:f8:a0:39:
69:17:dc:18:09:8e:91:f4:16:b7:c1:9a:53:74:23:
b1:45:3d:82:06:ec:83:0f:a6:fd:76:7c:fe:cd:87:
8a:d3:ec:62:a7:f7:4f:46:62:7b:c8:1a:db:2c:ae:
c0:39:90:ce:4b:76:b2:f7:74:bf:81:f0:fc:f3:6f:
73:2b:7f:09:fd:e3:07:ce:ab:d4:ff:68:f2:85:f4:
79:56:54:77:8a:55:af:36:b1:42:2b:47:d9:27:ce:
d2:48:47:63:92:86:70:e2:ea:27:03:3e:ac:04:ea:
28:f8:ed:97:5f:90:f9:83:7a:1d:22:b0:d1:ee:26:
97:81:c3:4f:ff:5a:c6:d7:a8:35:84:42:33:d0:24:
6d:02:3e:e9:c6:57:c5:95:b8:84:c6:ed:ff:92:13:
7f:57:ea:e2:51:fd:ad:08:39:f0:dd:5b:95:6e:56:
33:fb:9a:10:45:f0:20:33:6d:c6:50:1e:77:69:89:
96:18:15:a2:88:9e:c1:64:df:4d:7d:c5:fc:e7:49:
3e:73:14:65:d5:c6:48:dc:b6:9f:af:9e:6f:03:b0:
13:12:a3:20:0d:ef:d7:73:dc:d8:77:a7:40:18:6e:
b0:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:0A:33:1C:00:22:C1:32:76:41:F0:24:55:8B:11:D0:54:D7:E1:56
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TwozHAAiwTJ2QfAkVYsR0FTX4VY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:220::/44
Signature Algorithm: sha256WithRSAEncryption
64:38:82:20:d0:cb:c9:f7:58:7f:a4:40:20:89:dc:b0:84:d4:
e9:53:a1:63:12:23:49:e3:23:ba:0c:6a:4f:c8:74:58:51:a1:
d8:a4:ff:66:dc:cf:19:24:33:ee:32:53:4b:a3:de:ba:d3:e4:
51:68:db:16:7d:28:80:93:a7:6a:8d:26:85:cf:83:0a:23:70:
fa:72:28:93:b2:20:ce:da:8a:7d:da:4d:e6:87:00:fe:b9:13:
ee:23:95:80:da:27:a6:bc:9d:d8:86:bc:80:b0:a0:b6:2e:10:
58:fe:00:0a:3e:0c:29:28:d1:05:99:98:d0:61:d6:76:61:d7:
0d:45:f1:85:83:1a:9d:ef:d0:49:cb:da:0b:7e:87:72:d0:9d:
6e:42:4b:ed:d5:e1:4c:42:ef:25:6a:91:40:e9:99:32:e3:21:
18:0e:a8:e3:b9:37:14:21:5e:5e:a8:66:bc:a3:fd:1b:38:ff:
8e:62:ba:12:90:17:82:09:ae:59:bb:5d:62:8a:3d:4b:95:23:
21:12:6b:a1:55:cc:db:9c:3a:d5:20:31:9b:02:a6:f2:b9:a6:
45:f2:d8:de:f2:e0:8e:9d:f6:30:93:3e:73:ac:c2:60:87:c4:
6f:78:34:05:03:fd:4c:e7:a5:a5:cb:8b:90:ec:95:27:bb:c2:
f9:2e:99:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:50 2024 by rpki-client on console-ams.rpki-client.org