Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/cN3wm07Q7UtKD8jlzdVs-JQJZ2A.roa
File: cN3wm07Q7UtKD8jlzdVs-JQJZ2A.roa (raw, json)
Hash identifier: RXeTnSpsrHuZgVCUm6PbbVvVFogGZuM0esgjnTawaEU=
Subject key identifier: 70:DD:F0:9B:4E:D0:ED:4B:4A:0F:C8:E5:CD:D5:6C:F8:94:09:67:60
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185E48ADF651111892CCD8C7BA71CE876ED
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/cN3wm07Q7UtKD8jlzdVs-JQJZ2A.roa
Signing time: Tue 24 Jan 2023 16:09:44 +0000
ROA not before: Tue 24 Jan 2023 16:09:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208191
IP address blocks: 2a0e:b107:16::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e4:8a:df:65:11:11:89:2c:cd:8c:7b:a7:1c:e8:76:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 24 16:09:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=70ddf09b4ed0ed4b4a0fc8e5cdd56cf894096760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:91:68:2d:59:20:94:ce:74:d0:12:d8:28:04:
c9:00:06:29:ac:3f:48:bc:0e:ea:7b:9b:e8:55:b5:
22:17:f2:06:6d:d8:f4:bb:95:cf:df:c3:22:6c:6c:
31:7d:81:da:56:8a:e4:27:2c:16:59:dd:fe:03:9a:
5d:9b:84:ab:31:97:2d:ff:52:7a:f0:67:02:98:f6:
04:5a:fd:71:83:5a:5d:85:17:e4:35:fe:57:49:3a:
f4:b7:a2:38:04:2b:35:f9:c7:04:2e:ea:b7:2a:ca:
f1:c8:23:5a:73:4c:f6:2e:e6:6c:11:ba:83:59:38:
ec:09:e9:fe:f3:b2:8d:e8:02:e4:df:07:00:9e:00:
12:d6:ad:36:64:3d:d6:b4:a7:30:61:72:6f:cb:f9:
1e:c9:5d:88:42:03:63:e8:51:86:af:06:66:2c:9b:
c2:09:4d:d6:da:73:c1:00:28:bc:d6:82:82:14:49:
cf:fd:3c:57:bb:4c:a8:68:1e:b1:63:bd:99:f5:e9:
a4:b7:f1:1c:4f:a3:d5:94:80:45:4d:2b:14:4b:03:
60:c0:d5:bc:58:df:2e:00:0f:5a:2c:11:2b:3b:6b:
33:03:1d:43:cd:fb:ef:5a:1d:91:55:18:05:91:b4:
28:50:60:29:bb:a2:7d:bd:21:99:c5:bc:78:b7:c8:
bc:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:DD:F0:9B:4E:D0:ED:4B:4A:0F:C8:E5:CD:D5:6C:F8:94:09:67:60
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/cN3wm07Q7UtKD8jlzdVs-JQJZ2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:16::/48
Signature Algorithm: sha256WithRSAEncryption
1d:d1:40:75:db:fe:c6:62:73:77:bc:ea:60:6d:4d:09:ca:47:
51:aa:23:a7:d1:83:ed:2a:1a:b9:b2:58:eb:e5:92:5f:97:fa:
6d:d3:76:95:3e:b3:cd:eb:c7:ed:66:c2:ea:28:e0:fe:70:c0:
57:57:ab:51:96:f8:54:50:6e:65:31:81:46:2c:19:97:3b:91:
b1:ac:4e:6a:e8:f5:75:9b:d6:25:b2:38:b7:3a:f1:6f:61:6d:
a8:91:f8:2c:79:65:66:02:30:78:dc:63:25:ae:ec:93:23:40:
b7:5a:85:e7:9f:48:b3:b6:29:f2:41:c8:d7:a5:f0:33:20:09:
a1:15:03:e3:66:e6:80:67:c7:73:2d:59:21:55:2a:58:6e:8d:
4e:5b:8d:1a:74:8e:35:8f:e9:59:45:f5:91:52:69:c4:a1:23:
18:af:4e:e3:f7:44:ff:55:48:c0:bc:a2:16:f6:33:81:11:3f:
e3:dc:30:2a:56:27:59:8e:01:8a:06:09:22:e4:4c:56:02:9b:
5b:b3:9b:40:05:3a:dc:8d:df:e7:83:9a:bd:c7:69:43:8f:9d:
14:4b:9c:22:09:d6:08:38:39:19:59:28:77:d8:24:ee:56:d7:
01:06:56:f9:bd:c9:20:af:57:ca:39:c6:72:d9:8d:d2:2b:5c:
f8:db:10:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:32 2024 by rpki-client on console-fra.rpki-client.org