Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dpzl5NNukdkefR9x2VIMW29WvBU.roa
File: dpzl5NNukdkefR9x2VIMW29WvBU.roa (raw, json)
Hash identifier: 15nlkQGKKrSSBC7lwrw7PSTIGjyUCNXXIuh5qw3d8lA=
Subject key identifier: 76:9C:E5:E4:D3:6E:91:D9:1E:7D:1F:71:D9:52:0C:5B:6F:56:BC:15
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018E04DD31BC1E0EE32A2E3EDA0AB6682F06
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dpzl5NNukdkefR9x2VIMW29WvBU.roa
Signing time: Sun 03 Mar 2024 15:09:48 +0000
ROA not before: Sun 03 Mar 2024 15:09:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58087
IP address blocks: 2a0e:97c0:710::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 04 Mar 2024 13:52:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:04:dd:31:bc:1e:0e:e3:2a:2e:3e:da:0a:b6:68:2f:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 3 15:09:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=769ce5e4d36e91d91e7d1f71d9520c5b6f56bc15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:83:e9:67:8d:26:6b:df:aa:38:24:5f:c4:40:
9c:83:73:63:92:ea:90:aa:95:d3:03:62:8a:b5:39:
54:ff:ff:e5:c2:f7:1d:d4:ee:ff:95:a8:db:ae:a5:
b5:b0:6b:f2:e6:43:ae:da:c4:90:ed:2e:36:8d:dc:
01:a1:ee:d9:ac:5b:6e:2c:aa:14:41:03:c8:78:2e:
28:71:ab:72:cb:d3:a3:04:69:da:c3:35:73:85:78:
df:58:48:e2:c6:2e:ba:21:29:93:35:9b:2a:f7:a8:
af:e8:49:ba:d9:6f:16:93:e6:9b:e3:d9:db:06:fc:
46:51:51:96:00:fd:40:71:df:7f:ba:6a:48:47:cb:
d3:96:89:a5:4d:bd:15:2d:4f:85:67:62:d1:2b:ea:
cd:0f:3b:26:fe:bb:04:fb:7c:16:c2:b4:04:a4:9a:
3e:fe:c1:0f:65:25:06:13:d1:1c:87:27:67:33:4c:
18:af:de:cc:25:0d:7a:1b:4e:36:3c:4b:29:95:c6:
e7:0a:56:20:33:72:cf:4b:ad:d6:d2:9e:4c:ca:cf:
e8:0d:11:f8:c8:ef:01:44:c0:3d:46:f6:3b:0c:91:
e9:9e:2a:e4:70:70:c9:ad:2d:2d:76:64:42:6e:9a:
d1:3a:ff:bc:14:82:d3:ad:d8:d8:a9:77:36:cb:04:
60:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:9C:E5:E4:D3:6E:91:D9:1E:7D:1F:71:D9:52:0C:5B:6F:56:BC:15
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dpzl5NNukdkefR9x2VIMW29WvBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:710::/48
Signature Algorithm: sha256WithRSAEncryption
12:00:e7:7b:23:29:63:40:71:a3:37:41:58:4f:37:dd:b1:f3:
f2:ab:aa:9f:1a:1e:53:c0:ee:82:37:80:66:7e:58:99:54:30:
73:56:60:19:6f:09:a2:9c:8f:2c:de:f0:57:31:63:57:4d:e8:
fb:db:1e:f2:ba:b7:c3:18:3d:74:b3:e6:48:5b:fd:ec:ad:04:
c7:60:e8:e5:2c:9b:96:2e:39:09:20:f0:5b:2b:b2:98:ee:f6:
8b:82:db:cb:1e:3c:da:1d:f1:8d:f9:f8:6f:9d:03:97:33:12:
8e:92:8e:78:96:a5:a0:07:47:8c:f7:30:5d:41:e9:9f:43:e5:
3a:3b:a3:9a:9e:d9:7c:19:64:3f:41:6f:fb:81:b9:15:a8:93:
27:3c:fa:d1:dc:ec:d3:33:b1:5e:e1:e5:0c:11:38:f6:1a:60:
c5:17:b9:13:38:37:0e:33:db:a3:d7:10:f1:a5:e5:96:f0:47:
1e:ae:6c:37:29:4e:66:49:d2:71:f1:c4:f0:da:c4:78:0b:ed:
f9:2d:37:27:50:b7:3b:9d:14:8c:f9:60:67:7d:d4:b9:65:d8:
07:a9:78:8f:c9:21:09:7a:81:0d:2b:d1:63:10:b9:5f:78:2c:
6b:6f:f1:ff:92:ad:eb:d9:83:09:43:d4:f3:24:a4:a9:cc:fa:
0b:2b:ab:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 4 17:22:41 2024 by rpki-client on console-ams.rpki-client.org