Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Uj2cz2f8PrU1i4TTS6Z30MyZv04.roa
File: Uj2cz2f8PrU1i4TTS6Z30MyZv04.roa (raw, json)
Hash identifier: O1J09YK0GHIJ7vv9jMjJXqoEjz/0npBAQwa6XsHvkzE=
Subject key identifier: 52:3D:9C:CF:67:FC:3E:B5:35:8B:84:D3:4B:A6:77:D0:CC:99:BF:4E
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018A122712500B81E5D2A2201E47263424F9
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Uj2cz2f8PrU1i4TTS6Z30MyZv04.roa
Signing time: Sun 20 Aug 2023 08:54:25 +0000
ROA not before: Sun 20 Aug 2023 08:54:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 148971
IP address blocks: 2a0e:b107:1860::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:12:27:12:50:0b:81:e5:d2:a2:20:1e:47:26:34:24:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Aug 20 08:54:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=523d9ccf67fc3eb5358b84d34ba677d0cc99bf4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:18:2d:16:ea:cc:f5:75:af:1d:b6:e4:7f:d3:
3a:cb:0d:8c:ab:d2:fb:d3:a8:54:3b:eb:21:ee:c2:
77:38:de:44:29:de:de:5a:f4:d2:92:54:77:3f:25:
de:a1:a5:5b:07:d8:55:12:8d:e4:15:4d:0f:bb:bf:
46:a1:6c:cd:94:81:8a:e0:ea:a6:6b:e7:d6:03:87:
23:05:96:28:eb:ba:cb:14:cd:64:0b:22:ae:97:52:
8e:d8:86:d0:64:41:51:ca:a8:5e:44:b9:ee:b4:d7:
8a:d3:04:f0:44:78:05:6d:c6:d8:84:65:a7:e5:01:
f0:13:0c:24:b9:5b:69:6d:70:4f:d9:1f:ca:f9:d9:
06:16:c0:e3:99:a6:05:dc:f5:0c:cf:29:2d:84:44:
3a:3f:0c:cd:31:c7:50:bf:57:ba:7c:0b:45:11:5b:
a4:72:19:44:48:b7:36:0d:95:4a:70:a8:17:87:76:
8a:dd:74:2d:1e:f1:3c:e6:3a:0f:6e:18:be:94:7b:
e1:52:cd:60:08:e3:af:9c:97:c7:91:f3:ff:13:47:
55:38:f2:ea:f4:7d:73:7f:f8:28:e3:86:d8:b5:d6:
df:13:c9:dd:78:82:56:a6:99:ac:9a:de:33:0d:70:
4f:f2:98:62:9c:b9:ea:b8:a5:e1:b2:ae:64:7c:d5:
32:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:3D:9C:CF:67:FC:3E:B5:35:8B:84:D3:4B:A6:77:D0:CC:99:BF:4E
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Uj2cz2f8PrU1i4TTS6Z30MyZv04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1860::/44
Signature Algorithm: sha256WithRSAEncryption
54:90:11:ae:a6:a8:12:30:88:45:70:fd:a7:ae:3e:b8:c5:58:
19:4a:cb:7a:db:58:39:dc:d8:ce:7e:54:c2:86:36:2b:31:b9:
9e:cb:af:d1:16:9e:28:34:9f:a2:34:57:c5:ef:59:82:d0:4b:
b0:c8:c2:19:f2:75:a6:d6:af:40:05:2d:28:f9:ab:0a:82:0b:
5d:2b:80:d3:d3:7d:7e:17:cb:31:2f:c0:81:6c:b9:84:57:57:
8a:de:97:69:53:bc:e7:74:54:45:95:8f:77:f9:3d:38:1d:4d:
26:f0:6d:92:c1:7b:26:6c:86:98:b4:bb:69:18:ce:31:f6:e6:
26:ff:b7:d2:d0:69:aa:b3:d3:0a:8f:4e:07:ea:05:06:82:7f:
d4:88:6b:07:d5:49:c7:67:f8:d3:4b:d0:24:39:d9:da:88:42:
fe:27:f5:ff:41:ea:c3:79:f6:93:11:8f:e1:a6:f7:df:dd:2b:
09:f2:ab:d7:47:4b:ef:f5:e7:6a:0a:c2:89:40:a0:47:68:4c:
a0:71:3f:46:a7:5f:96:8c:8a:6f:5f:dc:70:e4:40:4b:2e:1b:
1d:09:94:51:d8:95:77:83:6d:ee:29:7f:81:73:a5:68:20:29:
b7:ec:96:f4:55:38:ee:2c:16:2b:6c:47:b2:bd:79:d0:8e:5c:
c8:a3:dd:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:31 2024 by rpki-client on console-fra.rpki-client.org