Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Xo-zwGQ7NXK_VnCgBD_Zrj-hdrE.roa
File: Xo-zwGQ7NXK_VnCgBD_Zrj-hdrE.roa (raw, json)
Hash identifier: h7QLLGzLPKmJd8XcDVAVy2TjobijdvBVe+cwqNDbMZE=
Subject key identifier: 5E:8F:B3:C0:64:3B:35:72:BF:56:70:A0:04:3F:D9:AE:3F:A1:76:B1
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7BCD9904B3DE1351C05D613F8B547
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Xo-zwGQ7NXK_VnCgBD_Zrj-hdrE.roa
Signing time: Mon 02 Jan 2023 05:15:13 +0000
ROA not before: Mon 02 Jan 2023 05:15:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204676
IP address blocks: 2a10:cc40:1a0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:bc:d9:90:4b:3d:e1:35:1c:05:d6:13:f8:b5:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e8fb3c0643b3572bf5670a0043fd9ae3fa176b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:bd:dc:87:08:10:2f:9b:51:2f:eb:ff:4f:b5:
35:99:13:28:24:a6:f5:3a:c4:42:f8:d7:78:27:9a:
0a:24:38:e4:ef:32:4d:b4:7e:09:c8:b9:ce:c1:d4:
4b:e0:97:3f:c8:a8:04:04:17:63:1a:3b:10:85:e0:
aa:04:ed:13:19:4a:23:58:8f:20:4d:0d:a1:31:b1:
ac:54:5a:7f:1e:97:96:d2:f2:9b:fc:b8:02:95:b1:
41:10:54:84:54:dd:9c:93:29:a7:ab:92:c5:65:ee:
41:d1:8e:26:0b:bc:ea:25:0b:1b:fc:42:ea:f3:ee:
99:b7:9f:93:d5:cc:22:2d:74:bd:65:af:f8:b4:7e:
b6:be:48:4e:4c:37:b1:04:8e:9c:c0:d1:46:2e:11:
20:1e:c2:15:28:8c:1c:7f:7f:fb:6a:0e:a9:19:94:
89:0b:53:42:3c:a9:30:7b:54:fb:89:8e:aa:bd:00:
0b:af:c3:24:44:bb:d8:36:e6:25:5b:c5:9d:20:4e:
0a:d5:54:00:44:48:03:8f:ea:11:c7:9a:db:77:a2:
56:d9:8c:93:4d:78:9c:08:00:cc:ee:c0:dd:74:cc:
aa:9b:26:86:f6:86:2d:17:6c:38:90:b1:40:4c:25:
d0:4b:dc:ba:09:7e:6d:db:e8:f0:22:48:8e:0c:cf:
4f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:8F:B3:C0:64:3B:35:72:BF:56:70:A0:04:3F:D9:AE:3F:A1:76:B1
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Xo-zwGQ7NXK_VnCgBD_Zrj-hdrE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cc40:1a0::/44
Signature Algorithm: sha256WithRSAEncryption
30:b3:3d:54:78:20:e6:7f:2c:31:eb:73:9f:3c:2e:36:84:f7:
f8:5f:2a:ed:ab:dc:f0:2d:d9:0d:56:93:cc:e1:d9:b8:35:37:
54:cf:9c:3d:25:37:b0:ca:b4:72:ff:85:60:f5:9d:3c:fa:b5:
fe:35:cb:01:09:fd:50:3a:2d:10:7a:a1:13:ff:a1:bd:15:89:
86:4c:35:d6:f5:6c:71:fa:9a:84:3a:54:ac:7d:92:6c:40:6a:
3c:89:9d:27:7b:86:17:dd:b9:e9:20:b2:13:b3:67:94:9a:d6:
ec:73:6b:c3:2d:82:73:98:12:ca:04:b4:b5:57:7e:d9:d5:0f:
d5:e2:ba:a7:5b:19:50:ef:7d:d1:35:eb:35:e4:60:87:89:53:
31:78:e5:5a:8a:95:3d:f4:7d:64:e9:89:61:0f:c0:77:4c:62:
15:52:ae:57:55:94:7a:85:58:b8:aa:0a:b2:11:bb:53:5b:65:
14:2b:ce:bb:a8:61:d5:1c:a2:7d:da:f5:a5:7f:48:ed:f0:86:
e6:bf:13:cb:05:52:da:95:18:af:23:1c:85:a7:87:bd:6c:0b:
9d:b0:11:32:e2:3e:03:6d:56:d7:86:2a:79:10:8a:7a:a0:05:
aa:17:c0:1e:3e:2d:e0:7e:c7:ac:50:20:92:aa:be:6b:72:1a:
b2:ef:d1:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:00 2023 by rpki-client on console-ams.rpki-client.org