Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/e2GeESF-z7PZ9l-59q4vlzgKCAE.roa
File: e2GeESF-z7PZ9l-59q4vlzgKCAE.roa (raw, json)
Hash identifier: GqjAAR0NlfyN7JW+J9r4krG7UFMTn3dBLFMYN3YFSBo=
Subject key identifier: 7B:61:9E:11:21:7E:CF:B3:D9:F6:5F:B9:F6:AE:2F:97:38:0A:08:01
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0189328D0A857E5B0569946517EE10D23CB9
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/e2GeESF-z7PZ9l-59q4vlzgKCAE.roa
Signing time: Fri 07 Jul 2023 22:50:51 +0000
ROA not before: Fri 07 Jul 2023 22:50:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210537
IP address blocks: 2a10:cc46:105::/48 maxlen: 48
2a0e:97c0:600::/44 maxlen: 48
2a0e:b107:17c0::/44 maxlen: 48
2a10:cc46:100::/48 maxlen: 48
2a10:cc46:102::/48 maxlen: 48
2a10:cc46:101::/48 maxlen: 48
2a10:cc46:104::/48 maxlen: 48
2a10:cc46:103::/48 maxlen: 48
2a10:cc46:106::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:32:8d:0a:85:7e:5b:05:69:94:65:17:ee:10:d2:3c:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jul 7 22:50:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b619e11217ecfb3d9f65fb9f6ae2f97380a0801
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0b:3b:af:6e:e1:9b:6c:d2:d5:f8:2c:cd:1c:
db:e6:69:f7:b5:68:7c:af:03:1d:21:e6:83:7a:8b:
d5:49:13:d8:4d:0d:d9:1b:4d:1f:a5:23:15:a0:12:
0f:fa:d3:bf:28:f9:f3:ad:ca:99:a8:b3:ef:94:93:
7c:4c:af:ac:31:c1:fb:b1:2a:f5:67:0c:57:11:18:
4c:d4:18:dd:26:ea:de:ef:d3:f1:2a:1c:bd:f2:4f:
c9:ab:fe:15:92:20:82:48:50:94:de:18:02:ed:e7:
d7:d6:63:e7:d0:e8:7e:4b:e1:db:4b:51:92:d6:da:
31:e2:4e:3f:e2:0e:7e:21:a5:a1:6d:fc:f9:4f:69:
79:f1:3d:46:d4:09:ec:d4:5b:3a:36:fa:a9:ed:d6:
f4:08:ca:67:a5:57:d0:af:95:9f:25:63:33:c5:17:
e8:e4:7d:0f:f9:70:4f:25:84:ec:dc:44:d3:02:ce:
d0:ee:e5:3f:6a:78:6d:0b:50:a0:79:7c:33:ff:91:
e6:17:74:bd:fa:83:8d:2a:5a:3d:e3:45:92:89:89:
08:ac:12:1e:fd:be:27:99:97:ee:b1:2d:f6:bf:7a:
56:2a:49:06:b0:88:dd:9c:cb:16:3a:84:b3:3d:7b:
93:e7:5b:64:d7:a4:2f:93:c3:91:17:1b:70:2d:b5:
9e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:61:9E:11:21:7E:CF:B3:D9:F6:5F:B9:F6:AE:2F:97:38:0A:08:01
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/e2GeESF-z7PZ9l-59q4vlzgKCAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:600::/44
2a0e:b107:17c0::/44
2a10:cc46:100::-2a10:cc46:106:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
51:c1:9f:89:5a:79:06:98:b9:89:e1:86:9d:ee:04:29:fc:21:
df:91:8c:97:6e:6f:24:24:a1:fe:6a:28:67:a2:91:f5:c1:da:
6e:0e:43:96:c2:85:07:08:ae:8b:37:c8:50:d7:be:12:09:81:
ea:2c:db:94:80:68:bd:08:d8:00:82:bb:17:b9:f4:92:2d:f7:
30:bc:df:7d:8c:fe:a2:90:5c:f8:73:f9:61:e5:d7:4e:b5:9f:
85:d7:f2:b9:8e:af:64:98:89:a0:a0:5b:2c:f6:8b:95:60:53:
d2:59:c8:63:14:d2:be:19:9e:5e:35:30:cb:e8:fd:41:5f:88:
aa:a9:99:e2:92:33:f2:b7:35:58:00:34:bb:82:5d:7e:ff:ab:
be:48:19:72:1d:01:31:e6:c6:ff:64:ce:27:6d:49:59:05:d2:
ab:fe:9e:72:06:ab:4f:a9:37:bd:37:26:15:8b:fc:50:e8:d4:
1f:ca:bf:22:66:cf:1c:49:19:83:b8:1b:71:7a:87:e3:85:70:
fe:13:02:60:80:3d:17:3b:6e:11:a7:92:5d:b5:2f:f5:aa:0c:
05:3a:02:ee:bb:11:90:ee:de:f2:7d:3e:b0:2b:a9:19:d1:5c:
c3:53:45:a9:03:2b:cd:22:2c:e7:fc:ef:e7:09:1b:ac:22:86:
f9:86:e6:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:01 2023 by rpki-client on console-ams.rpki-client.org