Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/YJqE5uNonmDxlg5D2lZx6o2VU6g.roa
File: YJqE5uNonmDxlg5D2lZx6o2VU6g.roa (raw, json)
Hash identifier: eaSyEAKRXBlq+OUGtF4BjdJ1qu0rqNH2JiytVSkU0DQ=
Subject key identifier: 60:9A:84:E6:E3:68:9E:60:F1:96:0E:43:DA:56:71:EA:8D:95:53:A8
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7D35769A41107C3DA03A885C644E7
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/YJqE5uNonmDxlg5D2lZx6o2VU6g.roa
Signing time: Mon 02 Jan 2023 05:15:19 +0000
ROA not before: Mon 02 Jan 2023 05:15:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208193
IP address blocks: 2a10:2f01:248::/45 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:d3:57:69:a4:11:07:c3:da:03:a8:85:c6:44:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=609a84e6e3689e60f1960e43da5671ea8d9553a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:0e:e9:09:e4:bf:c9:2e:57:9f:1b:2d:35:fc:
22:4c:f6:80:c5:44:7f:f7:6b:59:f0:60:9e:2f:97:
63:3d:e6:19:46:1e:48:34:f3:20:b7:04:44:c1:31:
0c:c9:e2:f6:e8:53:19:7e:90:ea:bf:fc:25:f3:7d:
a3:bf:5c:7b:2f:ab:d8:25:ba:14:3e:f4:a3:4d:59:
5a:fc:ac:67:d4:ac:29:f5:8d:cb:f6:c3:27:04:27:
04:b9:e8:60:77:cb:c0:2f:ea:84:f9:59:5d:7c:ea:
59:de:89:76:ee:0b:84:64:75:ed:54:d9:83:69:a4:
82:91:5d:59:d4:11:72:f7:70:2f:74:1c:a5:56:a3:
a9:6d:0b:fe:b1:0a:ca:4c:43:be:a4:14:b2:84:24:
08:00:33:d6:3e:a8:1f:a1:cc:b3:d1:47:01:61:ce:
8c:ae:de:bf:97:3f:f6:1a:53:37:8c:e6:47:b2:e4:
25:af:da:94:1e:c3:6a:74:84:c0:48:ef:ab:3a:8a:
30:e5:73:17:25:0f:bc:4f:28:32:aa:31:5a:95:57:
1d:8e:07:b9:13:53:1a:2b:f7:14:75:da:46:59:97:
51:ac:28:07:8b:d1:a3:e7:b4:b4:ac:09:df:9a:9c:
6e:38:ff:cc:64:f9:8a:9c:0c:61:7d:5b:8d:b5:d7:
4e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:9A:84:E6:E3:68:9E:60:F1:96:0E:43:DA:56:71:EA:8D:95:53:A8
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/YJqE5uNonmDxlg5D2lZx6o2VU6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f01:248::/45
Signature Algorithm: sha256WithRSAEncryption
10:89:60:db:74:8d:d2:12:f7:6b:52:a9:42:3a:05:d9:a5:57:
3f:49:8c:ee:c5:b5:f2:b2:2b:5d:89:28:f5:63:08:ba:0f:70:
58:6e:f1:3a:5b:f4:f4:61:17:f1:d3:f3:64:2e:09:f8:94:4a:
6f:6d:b5:ca:79:74:23:b7:2b:d0:cc:c9:47:44:47:b6:21:02:
41:c9:90:0c:f0:16:62:52:f7:46:51:5b:83:7f:56:ca:aa:65:
1a:85:16:8f:c2:66:e6:f0:bb:aa:d3:40:7d:aa:d0:f7:52:b0:
5a:de:f1:81:e7:8c:e1:f4:2b:bf:4e:42:c2:79:bb:5f:49:82:
f6:09:4f:42:9c:cf:95:90:84:29:64:8e:ef:d9:6f:4e:a7:0f:
9f:d4:63:24:c8:fa:29:16:aa:45:e4:45:ca:e0:d2:82:09:07:
c2:b3:1d:45:d0:00:32:ac:c0:84:e6:40:7b:ae:58:6e:e6:ec:
4c:b0:22:cc:4e:d4:95:e5:17:e4:ba:9d:57:4e:a6:1e:51:d1:
43:a8:40:21:bf:e8:14:36:4a:4c:47:44:8d:b2:13:e9:1f:6a:
19:35:87:54:43:c4:22:ae:3b:16:d0:17:4b:82:4b:04:5c:91:
69:c4:8f:8b:18:9e:ed:0b:79:39:c7:d5:eb:7e:b5:b5:3a:48:
58:57:8b:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-fra.rpki-client.org