Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/cY1lcAnwXCjLk_qxOBGgOu4EUkQ.roa
File: cY1lcAnwXCjLk_qxOBGgOu4EUkQ.roa (raw, json)
Hash identifier: VuY7Kz/RyxHv7aEnFYJOc5dpgaTVyKvmYWYwX15ngYc=
Subject key identifier: 71:8D:65:70:09:F0:5C:28:CB:93:FA:B1:38:11:A0:3A:EE:04:52:44
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E807E741FF94C237E3BCCC37B2FA8B
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/cY1lcAnwXCjLk_qxOBGgOu4EUkQ.roa
Signing time: Mon 02 Jan 2023 05:15:32 +0000
ROA not before: Mon 02 Jan 2023 05:15:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211548
IP address blocks: 2a0e:97c0:2c0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e8:07:e7:41:ff:94:c2:37:e3:bc:cc:37:b2:fa:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=718d657009f05c28cb93fab13811a03aee045244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a8:95:94:85:a4:e1:70:d0:87:b5:d5:46:95:
be:e3:c3:07:e1:8a:88:a0:0a:96:72:fa:c4:bb:b6:
a7:2c:d7:be:50:08:76:e0:de:a8:68:a6:6c:21:c9:
03:69:8d:02:e9:66:2c:b8:22:02:86:d5:23:f3:5b:
16:62:7a:f6:85:a3:ea:fd:dd:fb:66:d2:fe:5b:55:
68:18:d0:d3:55:aa:0a:6e:7e:bc:0d:69:58:6c:b8:
75:6f:f3:b3:95:91:63:90:eb:80:c6:f9:22:2c:f3:
73:b3:aa:82:56:9c:cc:ca:e9:64:a6:38:fb:f9:c7:
4e:67:4b:18:5c:f4:8e:c1:84:be:ae:15:0b:19:7c:
6b:03:0c:c2:59:60:af:e3:63:50:25:19:1d:0d:54:
80:d6:38:17:cf:45:3a:80:31:f7:ca:c2:3f:19:d5:
f9:59:69:04:63:2f:7f:26:cf:b7:bf:6c:fe:d5:c5:
57:40:2e:fd:8c:be:c1:25:7e:f4:6c:c4:d8:b8:fe:
ad:b2:e7:a3:11:a6:e9:f7:23:70:61:9f:61:7c:ce:
a6:4e:20:43:a7:84:ee:08:b2:92:09:3b:28:3b:01:
40:c4:7d:27:f9:4c:b9:1d:0d:49:ac:e9:55:cd:ce:
ed:49:39:7f:56:9c:f1:92:a5:e2:94:b4:c5:33:8a:
b0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:8D:65:70:09:F0:5C:28:CB:93:FA:B1:38:11:A0:3A:EE:04:52:44
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/cY1lcAnwXCjLk_qxOBGgOu4EUkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:2c0::/44
Signature Algorithm: sha256WithRSAEncryption
64:5a:87:4b:93:05:c3:0e:97:b7:83:fc:17:1a:3c:6b:28:64:
b9:5c:3f:14:4f:ad:17:b0:8b:76:cd:b6:02:c7:20:59:14:71:
62:a4:b2:b9:fa:cd:51:62:e9:a1:f4:5f:af:bc:c3:69:bf:b1:
8d:a3:b0:40:42:13:33:c5:24:a4:0c:dd:af:89:7e:96:8c:4b:
17:af:05:f8:15:d4:b8:d0:2b:33:5d:46:6d:40:59:bc:35:11:
95:77:31:af:84:4e:8f:37:a7:62:02:cc:2d:01:5c:63:e5:78:
63:bb:bc:93:27:50:1e:01:4b:6c:8e:da:22:92:1e:42:a8:71:
cc:a4:2c:25:91:3e:95:39:16:a7:b2:d5:08:26:cf:9d:46:32:
a9:bc:96:2d:49:6b:6b:2b:98:9b:e7:1a:5b:5b:e4:96:19:3d:
0c:40:a9:d9:d9:bc:a3:81:19:42:26:1f:6a:87:5e:87:60:be:
a3:8c:13:e2:de:66:63:9a:16:3a:a9:5e:e9:76:0b:89:e5:de:
92:da:8e:44:a0:09:36:83:f6:10:b1:c9:05:1a:ea:59:07:22:
b9:6d:87:12:c8:a6:21:6f:59:0c:c4:ac:ec:30:02:a0:65:27:
f7:2e:62:92:93:08:9e:41:81:59:75:1b:39:e6:ed:07:37:b2:
e0:c2:2f:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:32 2024 by rpki-client on console-fra.rpki-client.org