Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TxqjT4_d_jceECgMkQcKYy9qrBo.roa
File: TxqjT4_d_jceECgMkQcKYy9qrBo.roa (raw, json)
Hash identifier: acw914kqP355S1yDMJx8Cst+oCxGk+In0W7iiqYHKqQ=
Subject key identifier: 4F:1A:A3:4F:8F:DD:FE:37:1E:10:28:0C:91:07:0A:63:2F:6A:AC:1A
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018C6D4F0D701B95B7C1795C5F8EE9318103
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TxqjT4_d_jceECgMkQcKYy9qrBo.roa
Signing time: Fri 15 Dec 2023 11:49:06 +0000
ROA not before: Fri 15 Dec 2023 11:49:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8772
IP address blocks: 2a0e:b107:27de::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:6d:4f:0d:70:1b:95:b7:c1:79:5c:5f:8e:e9:31:81:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 15 11:49:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f1aa34f8fddfe371e10280c91070a632f6aac1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:fd:d2:f7:f8:fd:90:36:e6:2d:de:55:ce:74:
2b:e9:a9:35:db:6a:0d:32:ef:86:15:bd:ee:bc:19:
19:be:5a:ab:fa:d1:95:ab:fc:0a:c1:76:23:60:4d:
04:c4:dc:bd:50:4d:88:49:ce:77:36:b7:d8:0c:d3:
84:9c:10:fb:9e:39:c4:4c:c8:a6:5f:99:e1:4a:19:
b6:48:87:05:7a:3f:5e:34:66:64:2e:3a:ca:a3:a6:
32:bd:bd:5f:0d:53:5f:d0:30:2e:7b:12:2a:64:c6:
da:13:a9:2e:6e:dc:f4:af:26:bd:26:8a:a0:01:d5:
74:c4:d8:8e:68:6e:f5:41:b1:53:46:1b:62:8c:18:
af:7e:be:64:cb:34:d2:62:e3:59:b2:76:23:6b:13:
b0:f7:e9:9a:6e:08:1c:64:c6:a6:1c:f1:7b:f3:63:
9a:d9:0a:c8:3b:2b:58:27:e2:e7:6e:87:df:81:8c:
43:1a:be:06:37:18:74:f5:c4:fe:4c:87:4e:81:ab:
43:d4:48:19:f2:87:f5:83:0c:62:7f:80:b4:a6:21:
b8:35:0b:11:a5:3e:9e:ed:c6:9b:71:b4:c6:15:be:
61:d8:67:6d:ad:c5:68:bf:7f:ba:2b:a5:c1:e3:b8:
0f:97:71:bd:82:6f:07:67:5f:05:76:df:76:f1:e6:
00:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:1A:A3:4F:8F:DD:FE:37:1E:10:28:0C:91:07:0A:63:2F:6A:AC:1A
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TxqjT4_d_jceECgMkQcKYy9qrBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:27de::/48
Signature Algorithm: sha256WithRSAEncryption
85:ef:a0:f1:ee:9e:74:8d:d1:02:b5:85:ab:5b:73:ec:50:c0:
54:40:5a:23:bf:1f:9c:d4:c3:cc:dd:70:21:94:68:f3:14:00:
c8:cf:07:06:e1:c6:c0:3a:d4:af:ba:67:86:28:a5:be:51:6f:
5f:94:01:81:c2:88:33:a3:7c:b9:33:ed:eb:67:a6:97:06:e4:
3f:62:71:1f:05:45:01:42:c0:15:ac:2d:04:e2:48:d6:3d:24:
b6:0c:98:55:80:b6:58:07:5e:9f:fd:0e:ef:cc:b0:c6:3f:83:
87:e4:37:f1:c6:78:8a:05:f0:8a:ed:0a:d3:ee:f2:aa:15:c2:
99:83:9c:04:b4:ff:e2:6b:4c:a9:f3:42:e8:2d:21:cd:84:02:
e5:22:25:e0:87:51:82:0f:11:1e:f6:5f:8a:b5:44:55:f9:6e:
9f:b8:ab:c0:b4:7c:e7:58:d9:1d:2e:63:65:2e:2c:0d:e4:c5:
33:63:a7:e0:49:93:ef:3d:eb:0d:94:65:aa:8a:02:19:ef:b8:
9d:3d:4e:d5:f4:00:f4:9c:b6:25:6d:19:f4:d0:79:c2:fc:a3:
a7:e2:03:15:1f:fc:c1:b6:24:cb:73:b2:3e:f9:b8:57:6f:b1:
cd:44:3b:7d:00:bb:a5:77:a3:52:e3:db:90:34:80:bb:8a:4f:
13:b7:8e:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:50 2024 by rpki-client on console-ams.rpki-client.org