Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/a2cROt1u9SeCtZ4ht6QWoYlx-8k.roa
File: a2cROt1u9SeCtZ4ht6QWoYlx-8k.roa (raw, json)
Hash identifier: KwSWkexp+fZZZXmwC3+PaCKoOh0nUeOxQv7VcROo598=
Subject key identifier: 6B:67:11:3A:DD:6E:F5:27:82:B5:9E:21:B7:A4:16:A1:89:71:FB:C9
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7BD78DFD16A63CA45706A101FA9F7
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/a2cROt1u9SeCtZ4ht6QWoYlx-8k.roa
Signing time: Mon 02 Jan 2023 05:15:13 +0000
ROA not before: Mon 02 Jan 2023 05:15:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204693
IP address blocks: 2a0e:b107:1ad0::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 23 Jan 2023 10:50:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:bd:78:df:d1:6a:63:ca:45:70:6a:10:1f:a9:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b67113add6ef52782b59e21b7a416a18971fbc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e3:c7:e9:5c:2d:fc:3e:16:71:d3:88:10:d9:
4e:d5:4b:03:87:1e:9f:c0:76:74:63:72:6e:2d:c2:
47:3a:ef:65:44:18:88:6f:f1:a4:c7:89:9c:98:41:
e2:ac:28:9d:0a:39:a3:c7:c5:7b:45:a0:ce:e4:4d:
4d:19:df:03:93:50:26:6f:1a:00:52:ca:4d:82:57:
93:cd:ed:20:7d:79:99:6e:fc:08:36:22:c0:0e:7c:
3e:e2:0d:0e:6b:e0:36:85:96:87:33:7b:d6:4a:1e:
6a:8a:72:b4:aa:1d:ec:7e:0c:47:27:ec:18:cc:b6:
39:74:d1:83:ab:ab:67:9e:da:73:43:e8:45:1e:a6:
8a:fa:aa:41:00:25:57:7f:59:66:9c:9f:74:95:59:
fc:10:0d:83:bb:8a:a4:7b:31:a6:79:e9:ec:9a:44:
72:ba:da:eb:13:cc:c8:e3:bf:b6:6c:61:48:57:7c:
75:57:1f:1d:59:a5:73:a9:c1:b0:af:13:ab:e3:b8:
ba:28:d0:0c:3f:a9:91:49:a0:93:82:2e:a7:5d:aa:
40:41:ca:08:23:9f:cb:ef:69:eb:df:da:2e:e9:ad:
9f:2f:58:39:b9:4c:8f:3a:ba:9a:9c:2d:bf:65:0b:
37:fc:90:26:b8:2f:a0:86:ee:be:32:4c:31:08:8e:
61:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:67:11:3A:DD:6E:F5:27:82:B5:9E:21:B7:A4:16:A1:89:71:FB:C9
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/a2cROt1u9SeCtZ4ht6QWoYlx-8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1ad0::/44
Signature Algorithm: sha256WithRSAEncryption
86:71:a4:a3:89:07:82:2e:d7:95:bd:4c:4a:75:34:79:9f:32:
be:ef:81:bb:88:c7:a0:ea:c8:ac:35:1b:a2:a0:f0:52:41:7e:
47:6a:9b:da:df:e3:40:bd:28:95:2a:4b:99:46:6a:ca:09:f0:
10:f8:1f:3c:bc:dc:67:2f:38:c2:b5:fd:d4:2d:49:19:b2:f9:
c2:5d:d3:7e:7b:04:15:ab:f4:2c:48:4d:82:fd:3d:cb:05:a3:
82:80:bf:85:3c:d7:a7:8a:44:0a:65:af:49:5a:1f:0f:3e:36:
bd:e7:49:31:73:26:74:6e:17:2a:86:65:e8:fd:b3:4c:c4:ac:
7d:95:52:bd:c9:dd:cc:d2:32:04:0f:fb:8a:85:1f:42:86:4c:
45:7a:87:ed:15:78:29:23:1c:30:1e:6c:93:0a:f4:87:ac:20:
2e:34:c8:23:65:3a:72:5d:11:38:b0:24:a6:c4:a1:61:5b:69:
49:94:ba:4f:ec:af:06:5f:d7:bb:a8:11:ee:f1:99:03:b8:c1:
6a:63:4c:00:1c:94:1a:84:ab:f7:4c:20:a3:aa:93:c2:6f:a0:
1d:a0:e7:7e:51:30:84:1b:86:64:ec:7d:21:47:c8:4d:de:4c:
ba:77:d2:68:a3:6a:1f:56:83:e3:bb:18:c2:f3:0f:b2:aa:05:
f4:e9:24:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:07 2024 by rpki-client on console-ams.rpki-client.org