Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dw45n14ePFz64Quv5fPWBuDQ3-Y.roa
File: dw45n14ePFz64Quv5fPWBuDQ3-Y.roa (raw, json)
Hash identifier: Cwjjjh2TRyhQwX/J7Vwsl/gUq5hDZIYdixm6y7geBZA=
Subject key identifier: 77:0E:39:9F:5E:1E:3C:5C:FA:E1:0B:AF:E5:F3:D6:06:E0:D0:DF:E6
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018CC9BCD01112B64E89B40CEBD15F8902DE
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dw45n14ePFz64Quv5fPWBuDQ3-Y.roa
Signing time: Tue 02 Jan 2024 10:34:03 +0000
ROA not before: Tue 02 Jan 2024 10:34:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49716
IP address blocks: 2a0e:97c0:670::/44 maxlen: 48
Validation: Failed, certificate revoked on Sun 18 Feb 2024 23:51:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:d0:11:12:b6:4e:89:b4:0c:eb:d1:5f:89:02:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 10:34:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=770e399f5e1e3c5cfae10bafe5f3d606e0d0dfe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:6d:fb:39:c8:30:cd:22:e1:67:c6:f6:f0:e6:
1b:42:35:8c:0a:1b:35:d9:7d:48:79:b5:34:93:aa:
b6:7c:9b:6b:e3:3f:67:68:be:87:fe:e7:f3:8e:04:
d8:e4:8f:a9:e6:fd:03:61:86:a7:bd:88:dd:25:44:
93:c0:64:9c:02:57:14:90:6d:8a:8e:9a:f0:1e:fe:
ec:64:9d:2d:5b:a5:bd:ec:05:d6:e4:d6:24:ef:b5:
2e:84:6e:fd:53:88:41:f0:d1:dc:51:25:1e:58:e2:
e8:46:4e:db:dd:09:96:78:eb:37:db:50:4d:78:4c:
23:6a:fc:7b:42:33:08:26:a8:7e:ae:fc:d0:f9:52:
8c:5e:fa:dc:0b:6a:11:78:ba:ff:9d:b2:ac:ee:fd:
bc:4a:54:51:fb:08:2e:d4:28:57:79:4e:4d:f9:58:
64:0f:44:7a:e4:7e:78:d3:ba:86:ae:06:f5:94:55:
77:97:6c:49:3e:42:a1:fe:68:a4:33:04:15:14:72:
84:3c:5a:5a:4c:b5:c2:5e:f7:f3:3a:47:24:11:36:
91:37:82:92:9b:d4:5d:b2:6e:23:8b:a0:2b:f7:d8:
31:63:7a:be:49:f0:28:dc:3c:1d:e6:45:24:ed:3f:
ca:be:5a:81:24:50:87:fa:b5:d9:c6:fd:69:ad:8f:
1e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:0E:39:9F:5E:1E:3C:5C:FA:E1:0B:AF:E5:F3:D6:06:E0:D0:DF:E6
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dw45n14ePFz64Quv5fPWBuDQ3-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:670::/44
Signature Algorithm: sha256WithRSAEncryption
55:8f:5b:eb:e4:ef:02:6a:43:de:da:75:8c:ef:dd:53:7c:4a:
df:94:53:37:64:3e:88:6b:9f:e6:29:c4:e1:19:6f:c5:b1:f2:
9f:c9:85:d8:38:46:9a:82:61:c5:58:46:a2:98:1c:14:a3:22:
6a:4e:d0:8a:ef:31:a4:63:3e:4b:ef:b7:16:26:c7:2d:5a:24:
c8:81:e9:35:bc:80:b5:2d:04:22:18:94:46:ac:4a:fa:15:86:
b2:b1:b0:0a:5a:56:a6:39:00:74:4f:c5:c3:29:c9:7e:f6:6b:
c6:9b:35:3f:f1:c6:f4:2d:b7:e6:39:dd:fa:44:48:24:7b:18:
cb:d9:71:7b:d3:47:a3:da:e3:88:2a:9c:4a:a4:dc:ce:fa:fc:
0f:b1:e0:6c:4f:27:32:d5:e9:41:1d:d8:87:bd:42:14:9d:e0:
de:cc:6a:e5:0a:46:da:8c:44:e5:88:e4:6a:e0:53:96:43:dc:
ae:31:f0:b1:c7:cb:24:e2:c4:35:26:c1:1c:2e:b1:2c:3d:c2:
1a:57:8d:ee:c9:74:6c:e7:df:e5:14:32:69:c2:51:53:b4:68:
4d:17:2e:0a:18:40:4a:61:b0:cc:a7:66:00:0c:c8:ba:7f:5a:
f8:ea:14:e7:72:73:94:56:c0:3a:35:fa:fd:72:57:7f:09:78:
4c:77:d5:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 19 02:18:29 2024 by rpki-client on console-ams.rpki-client.org