Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/bCtnMMMAz71C4Uvx4uNiCYbruUQ.roa
File: bCtnMMMAz71C4Uvx4uNiCYbruUQ.roa (raw, json)
Hash identifier: L4O514MDDcZ3Me1ZoObGETHAJjC3nPEZ31xIWsWCCcE=
Subject key identifier: 6C:2B:67:30:C3:00:CF:BD:42:E1:4B:F1:E2:E3:62:09:86:EB:B9:44
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7A18D53E2FFCD03808E7840AAF6D1
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/bCtnMMMAz71C4Uvx4uNiCYbruUQ.roa
Signing time: Mon 02 Jan 2023 05:15:06 +0000
ROA not before: Mon 02 Jan 2023 05:15:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200872
IP address blocks: 2a0e:97c0:5f0::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:a1:8d:53:e2:ff:cd:03:80:8e:78:40:aa:f6:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c2b6730c300cfbd42e14bf1e2e3620986ebb944
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:10:cc:3a:ff:cf:a6:4c:64:f3:ef:3e:4a:a0:
b3:fa:95:84:f0:ba:79:52:a8:bc:1a:86:fa:1d:f0:
b4:dc:47:bf:69:3b:1e:94:0a:cf:bb:43:62:f6:82:
42:3e:55:c3:28:7c:cb:a4:e7:c2:02:36:fd:3b:38:
56:6c:56:22:79:33:53:59:a7:a2:6f:d5:36:5a:61:
6f:5e:32:52:d6:5e:5b:9f:af:ec:b5:32:c8:42:96:
43:f2:95:61:0e:1d:b4:a7:bf:01:1b:68:a7:3f:0c:
31:75:5a:79:7b:3a:42:19:f5:a9:7e:95:ca:c8:17:
d8:5b:a1:0e:3b:96:3d:9f:fc:f4:65:17:09:15:7f:
77:72:bc:f7:b0:07:62:67:b4:d7:31:91:05:d4:21:
9d:3f:fc:7e:f4:97:b0:ac:4c:6d:25:b4:89:3d:98:
1f:01:5e:d4:76:57:84:e8:87:fb:f2:8f:cd:6d:f6:
f8:e8:10:90:2e:0e:86:ea:1c:dc:7a:61:f1:e1:cb:
c9:89:4e:72:a0:01:86:d5:2f:56:98:e6:af:78:e8:
ed:62:b0:a6:4f:45:f9:8a:31:45:be:e7:03:e7:8a:
d5:70:55:08:7b:c3:a3:d3:5d:09:49:43:7e:5f:6d:
12:9b:fc:e9:04:bd:53:c8:a8:b9:7a:97:5e:d8:cf:
2d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:2B:67:30:C3:00:CF:BD:42:E1:4B:F1:E2:E3:62:09:86:EB:B9:44
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/bCtnMMMAz71C4Uvx4uNiCYbruUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:5f0::/48
Signature Algorithm: sha256WithRSAEncryption
0b:9f:5f:36:46:33:b5:e2:63:2a:e3:3a:68:3c:f4:e1:b8:1f:
09:41:4c:e5:3d:b1:88:04:94:47:bf:fc:4d:1e:f2:75:8b:d1:
ff:51:9a:a3:28:9e:33:16:b8:08:e8:f5:3c:c9:77:2a:c9:ee:
90:83:e4:59:c5:c3:c8:8a:9e:5c:f2:d7:93:a6:f0:16:0b:f3:
a5:1d:b4:59:8c:f5:c5:bf:14:31:03:2b:38:a9:8c:3d:88:b0:
98:ac:bf:4e:61:9f:1a:68:2e:bd:ab:96:1d:87:a5:f5:c8:99:
3e:34:66:17:12:61:5d:ad:e6:40:ff:7e:0e:b6:e9:7d:1a:cc:
97:21:71:22:24:c5:ac:85:f1:c7:d3:17:10:cf:67:69:9e:a8:
95:af:8d:07:dc:2b:b7:02:75:2d:0a:08:9e:7d:45:bf:f1:35:
8d:92:30:e1:bf:cd:98:13:94:c5:86:2e:6c:e5:23:53:ca:0e:
53:4b:0b:98:48:ea:74:4a:7d:47:33:3f:9d:72:ef:57:c5:0d:
bd:1d:46:fc:6b:52:50:31:9b:2e:21:cf:83:8c:fe:4e:07:c1:
93:4f:83:aa:39:8e:75:7d:5e:8d:a9:1f:ef:f5:8b:8b:c2:d2:
af:fe:cc:64:06:79:ad:84:62:bb:a3:6f:06:65:f2:1f:c6:28:
46:f1:54:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-fra.rpki-client.org