Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dGhCDWM5oXkTAPsiU6FqDpcP1Gg.roa
File: dGhCDWM5oXkTAPsiU6FqDpcP1Gg.roa (raw, json)
Hash identifier: v6zdEqFOrxUtC0Q+U2agb00+bA7So32vh9LV5TSWZm0=
Subject key identifier: 74:68:42:0D:63:39:A1:79:13:00:FB:22:53:A1:6A:0E:97:0F:D4:68
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01873781A28EED88862BC55DD283774C00ED
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dGhCDWM5oXkTAPsiU6FqDpcP1Gg.roa
Signing time: Fri 31 Mar 2023 11:50:55 +0000
ROA not before: Fri 31 Mar 2023 11:50:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199079
IP address blocks: 2a0e:b107:1fe0::/44 maxlen: 48
Validation: Failed, certificate revoked on Thu 13 Apr 2023 19:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:37:81:a2:8e:ed:88:86:2b:c5:5d:d2:83:77:4c:00:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 31 11:50:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7468420d6339a1791300fb2253a16a0e970fd468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0d:b1:37:27:89:13:2a:3b:f3:28:5c:59:ad:
cb:7e:b9:1c:07:42:32:8d:84:34:c4:b4:f9:e1:4a:
64:d1:b3:53:6d:7c:4a:99:c8:ed:be:1c:91:b9:b8:
40:2a:c2:f5:a2:2e:7c:2a:5f:07:3b:38:d0:b0:e2:
93:43:cc:61:c5:0c:f7:48:a9:d2:a9:3a:e1:12:f0:
6c:bf:8e:cf:82:da:90:8e:78:55:bd:d2:81:9c:49:
1e:4c:88:b2:21:46:9a:94:ac:10:94:23:79:d8:9b:
63:71:96:30:ef:fc:d8:dc:f7:9d:7c:8b:84:1c:61:
7c:cc:99:6e:5c:ea:80:67:18:a5:a3:31:f8:b6:bd:
85:1e:0d:31:58:58:37:72:0b:c6:1f:7b:0f:35:64:
ec:a9:5f:73:60:26:c9:1d:b1:2f:77:30:6d:24:3b:
13:20:11:b5:e0:45:b3:6f:8f:f8:c6:c1:6d:78:91:
6a:23:3e:a3:01:ba:19:9a:be:ee:26:01:97:05:a0:
66:18:be:80:2c:b3:f9:c5:13:c3:ff:b4:64:1e:67:
1d:9a:88:92:6d:7c:df:78:08:b8:08:a9:2f:b1:d3:
80:77:60:16:5d:6b:ca:6c:69:c7:f4:68:2c:cd:2c:
82:34:66:22:c3:9e:cd:40:8f:2c:b3:04:5c:03:93:
0f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:68:42:0D:63:39:A1:79:13:00:FB:22:53:A1:6A:0E:97:0F:D4:68
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dGhCDWM5oXkTAPsiU6FqDpcP1Gg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1fe0::/44
Signature Algorithm: sha256WithRSAEncryption
45:3f:ae:89:0e:f6:85:94:0c:54:6a:c5:12:de:8e:d7:af:6a:
fa:8f:d7:0d:56:e0:b2:29:8f:4d:84:f7:9e:91:98:d0:be:0c:
30:a7:4b:68:7c:5e:c5:d7:76:bb:c6:85:52:c1:35:20:3a:c1:
b0:67:d9:fa:db:a6:d0:3c:20:6c:c6:42:f8:5c:b8:ea:a5:c9:
10:6b:c9:aa:d1:ff:3b:18:62:ec:0b:bc:6f:c5:d9:56:6d:01:
51:d0:33:de:26:81:27:61:37:f2:28:ad:ce:57:43:00:11:65:
8f:e9:e1:dd:7a:50:fc:64:52:2b:73:ab:44:04:99:2a:0c:ba:
7a:c2:c9:58:19:1c:c9:88:13:53:75:e0:42:f1:f0:bf:cf:3e:
93:28:8b:9d:4d:83:f4:3c:15:05:05:57:10:b3:42:c3:ce:32:
11:1e:4a:24:62:8b:de:b9:9a:21:bf:5a:04:11:85:45:ac:38:
08:68:d8:65:ba:8c:fc:24:14:f4:96:c5:c0:0f:da:0a:5b:67:
fc:94:53:01:cd:ca:19:2a:81:cb:fd:91:10:3e:e3:f3:ff:ed:
f4:6a:4c:07:b6:02:11:d5:27:4c:15:5b:a7:00:0c:06:d6:78:
d5:51:c0:c5:f1:de:1d:be:87:5f:65:3b:0b:1a:af:b1:f8:88:
4a:a2:1a:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:35 2024 by rpki-client on console-fra.rpki-client.org