Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/X8I1BoP8AG4oAjJQhU09WGbjY1U.roa
File: X8I1BoP8AG4oAjJQhU09WGbjY1U.roa (raw, json)
Hash identifier: Hw09XecvZXXkQsL8oIy3MioVifBNDoK3O6MLEnH65iA=
Subject key identifier: 5F:C2:35:06:83:FC:00:6E:28:02:32:50:85:4D:3D:58:66:E3:63:55
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E772D8BD635378D4963896D2372293
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/X8I1BoP8AG4oAjJQhU09WGbjY1U.roa
Signing time: Mon 02 Jan 2023 05:14:54 +0000
ROA not before: Mon 02 Jan 2023 05:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6556
IP address blocks: 2a0e:b107:180::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 23 Jan 2023 10:50:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:72:d8:bd:63:53:78:d4:96:38:96:d2:37:22:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5fc2350683fc006e28023250854d3d5866e36355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:fe:13:df:24:9f:01:0a:09:60:08:f6:4c:e0:
85:6c:05:da:a4:2f:c9:76:35:0e:06:35:20:1d:9f:
5e:35:bc:db:a3:3a:ac:03:4a:26:2b:ed:c5:59:af:
a4:0f:9a:42:8e:e1:e4:63:8b:19:27:d2:10:3e:dd:
42:5b:c7:78:67:5c:47:65:29:9c:0b:40:79:ba:09:
50:32:2f:20:51:4c:73:75:08:75:c3:4c:d4:5c:9a:
bc:c8:d5:7f:ef:b8:67:94:cb:78:a0:d7:7e:d2:9c:
74:f8:4c:81:d9:e7:36:72:53:a7:af:31:2f:61:17:
70:e4:4f:e3:15:92:cd:34:a9:65:25:e5:36:8a:3a:
12:47:6d:e7:ec:90:b4:80:ad:3a:11:c4:a0:26:6b:
55:8d:71:ce:47:e2:ef:bb:b4:17:56:e5:26:a1:63:
78:6e:65:ff:c8:b2:54:17:98:99:fe:34:7b:de:26:
43:48:c1:ea:fe:6c:41:a7:ae:39:07:5a:f5:23:44:
e4:ee:f7:9c:33:2e:eb:0e:e1:cb:c8:4e:5f:f6:68:
dd:cb:62:ca:6c:b2:6a:e4:ec:26:ca:b0:3b:5f:b8:
db:09:4d:59:a8:fd:14:6c:22:88:aa:b8:76:51:cc:
6a:b9:46:80:4b:7d:d0:9b:44:cb:74:d4:37:af:95:
3e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:C2:35:06:83:FC:00:6E:28:02:32:50:85:4D:3D:58:66:E3:63:55
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/X8I1BoP8AG4oAjJQhU09WGbjY1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:180::/44
Signature Algorithm: sha256WithRSAEncryption
80:13:ac:2c:ca:c1:41:4a:3f:3d:57:b8:68:12:aa:d2:a7:cf:
21:be:16:33:a7:a9:fa:0d:5b:8e:2a:04:c2:a8:b1:e9:94:4c:
7a:30:35:53:1c:dc:fc:15:14:e3:d7:04:e9:b9:f6:c8:a8:3e:
d6:4b:02:f6:69:5e:b1:09:7a:2b:1c:b1:9b:c4:39:77:d5:59:
77:f9:c5:08:05:94:3e:c4:ea:87:0d:73:9e:96:73:82:ed:56:
68:5e:9b:ca:97:11:f3:87:8d:14:21:50:a7:f4:fa:d4:57:53:
eb:b0:fb:92:7d:b1:e8:71:f5:ab:4d:d5:e3:95:55:27:36:ed:
d8:22:b1:f0:ca:c5:06:56:8b:e0:ee:54:11:9f:c9:57:9c:a6:
ec:e0:2b:18:04:18:38:59:8e:46:37:30:ee:6d:d8:b3:c7:93:
78:98:89:26:1f:77:2e:3f:c0:b8:da:bd:37:e8:60:b8:76:e9:
ab:50:ee:8e:6b:9c:74:ec:9a:a7:f5:e4:60:c2:ed:cc:7d:8d:
e8:40:c6:d7:a0:13:ad:74:76:e6:35:a5:12:a3:f9:31:0e:76:
15:e7:a1:7e:9a:9e:3b:27:2f:12:fb:28:a1:cb:64:c6:c7:ac:
07:30:2a:fe:51:04:fb:b2:12:4a:5a:0b:b3:21:3e:cc:4a:c4:
7d:f3:46:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:33 2024 by rpki-client on console-fra.rpki-client.org