Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dkL8W_2DoIlVESrjVLnS7SOMH2g.roa
File: dkL8W_2DoIlVESrjVLnS7SOMH2g.roa (raw, json)
Hash identifier: utXrlbzeFiJOLxTM9oKjuPIYiD7P/fFW9yMynmGMHvQ=
Subject key identifier: 76:42:FC:5B:FD:83:A0:89:55:11:2A:E3:54:B9:D2:ED:23:8C:1F:68
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018C991B66022E364ADB8194623397204AA6
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dkL8W_2DoIlVESrjVLnS7SOMH2g.roa
Signing time: Sat 23 Dec 2023 23:55:58 +0000
ROA not before: Sat 23 Dec 2023 23:55:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49716
IP address blocks: 2a0e:97c0:670::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:99:1b:66:02:2e:36:4a:db:81:94:62:33:97:20:4a:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 23 23:55:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7642fc5bfd83a08955112ae354b9d2ed238c1f68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:36:d4:2b:04:16:b5:b1:e4:d1:0b:a1:31:bd:
86:ed:23:c1:34:bc:ce:c5:58:11:d5:6a:12:76:70:
6d:f4:10:05:14:da:4c:dc:fd:e2:ea:89:c8:df:09:
ae:5e:b4:44:97:d6:a2:f5:f4:d5:e0:7f:e5:82:72:
9a:40:03:f8:1c:0f:bf:69:32:ee:a6:d8:af:9a:3e:
3b:b2:dd:66:a1:c0:ff:35:35:e4:bb:fc:76:a2:4b:
dd:c7:0a:dd:55:08:e1:7f:c3:a9:5a:c0:4b:c8:06:
37:b3:dc:42:a5:9f:c7:41:9f:ef:71:65:64:1c:b9:
1f:39:57:eb:b9:38:0c:b2:78:43:2b:12:71:60:de:
ca:58:a6:10:64:82:d2:63:a0:5a:ab:fe:80:df:b5:
8f:ec:c9:2d:7e:75:7a:ab:7f:15:69:f6:be:00:3c:
4a:19:c7:14:51:a3:46:3c:97:5c:81:33:bb:97:cd:
e6:7f:89:0c:1c:fe:5d:b4:51:14:b6:ce:36:49:f5:
79:64:3e:72:b0:04:ba:56:fd:31:3f:67:e7:70:1e:
07:8c:b8:f9:8f:e9:d3:2e:50:33:2b:81:3b:84:ed:
f6:99:6a:85:81:a4:a1:85:22:b9:35:f3:71:72:39:
a8:e6:ae:7e:e3:65:12:c7:80:9c:9c:32:3a:82:bf:
4c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:42:FC:5B:FD:83:A0:89:55:11:2A:E3:54:B9:D2:ED:23:8C:1F:68
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dkL8W_2DoIlVESrjVLnS7SOMH2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:670::/44
Signature Algorithm: sha256WithRSAEncryption
8b:b3:4a:f6:e7:a5:a9:d9:97:09:50:d0:1a:ec:3a:9c:57:97:
fb:6f:4b:a7:a9:0e:95:81:d6:04:16:24:74:49:e8:b5:2b:ba:
04:16:b3:47:d1:b7:95:07:37:d8:6b:8d:93:16:59:97:5e:72:
ac:2d:36:ad:d1:b7:cc:b1:04:3d:48:84:b7:59:ea:ea:01:93:
a8:2c:d0:f2:0f:c1:e7:5b:81:ac:5f:5e:d0:ba:0b:f8:b0:c6:
94:49:9e:61:c0:4e:8f:78:4d:77:0a:4d:8e:47:30:74:f2:e1:
e4:09:34:ac:e4:43:ac:19:14:4c:31:a2:7c:3d:37:5a:2d:55:
78:df:83:27:68:0c:f0:35:7f:8d:7e:70:70:7e:a6:1f:07:75:
5a:ba:b9:23:12:e3:fc:86:b3:41:3d:59:3e:c4:6e:76:9c:86:
dc:3e:5f:06:f9:37:41:4a:b3:57:3c:fa:8c:37:73:88:2b:c6:
73:93:44:84:04:29:0d:01:8a:65:bd:94:46:c1:97:a2:2b:5c:
bd:96:b1:27:04:50:78:52:49:fe:87:e0:24:a0:84:68:3c:9c:
81:9d:94:b3:2c:02:d6:d4:89:b1:2b:21:1b:84:6b:ae:1e:9f:
a3:1c:86:16:41:55:12:cf:02:90:7c:a9:04:3c:79:1a:70:3c:
73:59:64:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:51 2024 by rpki-client on console-ams.rpki-client.org