Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/d2rRLsPru0umi-ylNJ_pM0PWhmU.roa
File: d2rRLsPru0umi-ylNJ_pM0PWhmU.roa (raw, json)
Hash identifier: 5Oqi0d+2kHZaS2xPNTwqa2GTE7v+qoATEMQdpUy2dM8=
Subject key identifier: 77:6A:D1:2E:C3:EB:BB:4B:A6:8B:EC:A5:34:9F:E9:33:43:D6:86:65
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018B25ACAFC9660ED919D3C957A1893708E4
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/d2rRLsPru0umi-ylNJ_pM0PWhmU.roa
Signing time: Thu 12 Oct 2023 20:55:56 +0000
ROA not before: Thu 12 Oct 2023 20:55:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49195
IP address blocks: 2a0e:b107:1c50::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:25:ac:af:c9:66:0e:d9:19:d3:c9:57:a1:89:37:08:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 12 20:55:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=776ad12ec3ebbb4ba68beca5349fe93343d68665
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:42:a9:c8:ae:ad:32:7d:b9:b9:a8:40:00:62:
20:77:32:98:e3:e2:2f:93:ae:32:d1:0a:20:83:e4:
f0:7a:db:0f:7a:f7:c0:a1:68:34:14:b9:bf:ce:a4:
1e:aa:a8:76:19:9e:cd:a0:6c:d5:58:98:6e:d6:69:
3d:d7:f1:34:d6:cd:d4:49:f3:e7:97:04:1a:ef:4e:
5d:19:aa:3b:fb:23:a4:6c:5d:30:eb:6d:bb:a3:2f:
6b:0f:1c:1b:d9:42:44:9e:47:20:8a:1a:61:dd:ce:
14:dd:6c:41:5f:74:2c:c9:e4:9f:32:5a:5d:29:e3:
81:6b:05:b1:17:48:c7:b0:7c:63:b3:56:53:59:84:
79:71:de:75:b3:5a:6b:36:91:19:59:27:41:3f:2f:
c3:c1:32:28:58:ef:e3:ae:84:d1:58:11:54:a3:2b:
70:18:53:35:f7:b6:12:c3:95:2a:49:30:43:4c:1f:
e2:27:22:9b:5b:b3:3f:8f:35:f6:07:ee:b7:73:95:
8f:3d:05:e7:7b:3e:cc:5b:4d:84:83:dc:32:24:13:
42:40:39:7d:7f:90:be:d6:90:5c:fe:a6:fa:33:7c:
6a:df:21:6f:3a:08:f9:ed:77:2c:2d:0c:50:bd:9f:
ba:ed:be:b7:6f:b7:79:c2:1c:cd:28:e3:e7:75:23:
86:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:6A:D1:2E:C3:EB:BB:4B:A6:8B:EC:A5:34:9F:E9:33:43:D6:86:65
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/d2rRLsPru0umi-ylNJ_pM0PWhmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1c50::/44
Signature Algorithm: sha256WithRSAEncryption
c0:5b:65:6f:4d:8a:f8:26:b3:c9:1d:3c:5e:74:57:0a:6e:54:
21:28:bd:a5:a6:d7:9e:52:6c:c4:8a:8d:77:af:f4:d2:7c:cb:
18:ae:32:c3:13:97:9b:86:6e:58:68:1b:f9:02:09:41:38:99:
75:a5:04:23:a8:c8:b9:a4:64:04:58:23:e7:29:d4:70:4d:64:
71:28:5c:35:b1:18:ef:50:63:52:4d:dc:24:ec:d1:e4:7d:e3:
b7:e2:16:6b:da:61:38:68:ea:97:1a:c9:97:19:41:cd:85:09:
61:1b:64:8e:8d:18:b4:61:f7:97:7b:cd:3b:a9:c5:d3:57:35:
53:26:ba:b9:17:17:eb:43:c0:7d:f1:c5:1e:6c:d5:ad:6a:4c:
6f:20:70:82:8b:47:4f:6a:94:cc:6f:c3:da:5a:33:77:13:b8:
3e:27:fa:fd:fc:cd:00:06:22:35:65:b5:f4:1d:92:7e:a6:fd:
5e:5e:bc:84:50:51:89:83:66:7b:21:f0:3d:e7:ce:80:f4:0d:
54:73:2a:ff:9e:4e:a7:f1:d9:e6:3c:ef:b9:80:f0:2c:cb:b0:
73:c6:e0:65:0a:b0:f3:bf:4e:95:89:95:97:fa:31:21:06:5e:
28:9b:e8:3c:4f:3b:6a:84:05:d9:04:64:e1:36:26:d7:3a:75:
5b:08:40:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:35 2024 by rpki-client on console-fra.rpki-client.org