Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dy_kzEKqMHrk5jGli76t1CwjYhQ.roa
File: dy_kzEKqMHrk5jGli76t1CwjYhQ.roa (raw, json)
Hash identifier: 8V8iuI242G6OTiiVDLgVMp54nwM2Ga0TAwDPAOogxqU=
Subject key identifier: 77:2F:E4:CC:42:AA:30:7A:E4:E6:31:A5:8B:BE:AD:D4:2C:23:62:14
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185E48AB85A4842B0FFF9D8684D9E194498
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dy_kzEKqMHrk5jGli76t1CwjYhQ.roa
Signing time: Tue 24 Jan 2023 16:09:34 +0000
ROA not before: Tue 24 Jan 2023 16:09:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a0e:b107:19a0::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e4:8a:b8:5a:48:42:b0:ff:f9:d8:68:4d:9e:19:44:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 24 16:09:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=772fe4cc42aa307ae4e631a58bbeadd42c236214
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c7:af:9a:a6:8e:42:5e:b6:a4:0b:c4:1c:a7:
06:29:33:35:39:58:c6:63:f2:f5:4d:4a:a3:dd:bb:
02:bd:e0:0e:35:b9:2b:06:b2:10:d4:49:84:a1:ae:
7a:66:eb:de:aa:29:35:76:ff:e6:c1:63:3e:23:cc:
2a:d9:c1:ac:44:8e:dc:f0:4e:26:be:5f:16:41:46:
81:67:55:90:b4:3a:dc:eb:3b:f3:a0:2f:05:f4:62:
9d:51:9a:c0:ff:ef:fe:e6:b7:d9:42:9e:c0:48:cc:
85:b9:29:11:75:c3:ce:68:df:21:c2:02:f4:bf:5f:
a7:f5:5b:62:03:b9:fc:4d:74:3d:2b:bd:4a:07:12:
5a:b0:21:d1:84:43:13:50:20:43:41:e0:f4:5e:68:
aa:79:03:f7:7c:38:59:0b:c4:71:4c:ed:78:07:8d:
8a:c7:4d:0b:63:08:8a:33:8e:e6:72:c7:e6:8c:a8:
2e:15:9a:13:81:aa:41:98:39:c4:3e:d4:8a:27:e2:
14:fb:50:fa:62:ed:0f:97:5e:0a:81:02:ba:d5:a7:
3c:08:6b:f9:f6:e4:48:54:7a:3c:3a:07:2c:00:e4:
00:e2:4f:7b:6a:bd:97:c0:d9:fc:ab:57:8c:a0:e9:
16:20:7c:87:01:83:0d:ad:9d:63:f1:a5:28:57:00:
ba:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:2F:E4:CC:42:AA:30:7A:E4:E6:31:A5:8B:BE:AD:D4:2C:23:62:14
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/dy_kzEKqMHrk5jGli76t1CwjYhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:19a0::/48
Signature Algorithm: sha256WithRSAEncryption
c8:19:a7:b7:d6:17:16:3a:09:ad:27:07:b6:e1:1c:61:42:c5:
e5:b0:25:d5:5b:d1:ab:79:e0:19:b8:69:e5:29:d0:25:7f:44:
28:d7:63:66:68:f1:b0:20:5d:08:b3:78:33:70:2c:c2:c4:2d:
c0:b2:de:97:3b:e3:b7:ee:25:de:9f:d7:20:d7:8b:b7:ce:34:
6f:4d:ce:da:15:21:3b:4e:ee:7f:47:4f:1b:59:11:b1:91:d6:
be:ae:ce:58:a4:5f:e6:b4:d6:07:b8:99:04:46:ff:f0:df:86:
03:eb:ce:2e:23:6d:b6:e0:9a:6f:79:40:95:b6:5f:1e:0d:b6:
c6:6a:e3:b7:ed:f8:e7:51:88:7c:bb:10:e3:ed:e7:02:92:37:
3d:c3:e6:82:fa:dc:8b:f8:bf:7d:2a:81:5c:84:d2:89:51:7a:
85:e1:a6:0d:a1:e6:e6:69:44:13:54:59:37:22:03:3d:ca:2c:
3d:41:58:c6:71:cf:87:d2:8d:34:85:95:77:1d:bf:9b:73:6b:
2f:79:77:96:e3:ee:ad:5d:e3:87:7c:87:73:6f:9d:78:70:c5:
84:51:32:ad:68:58:f1:63:e1:8d:ec:57:2d:85:62:5b:7f:81:
1a:ee:71:e2:cc:51:3b:dc:bd:23:96:15:b9:6b:33:91:12:a4:
be:71:b1:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:18 2023 by rpki-client on console-fra.rpki-client.org