Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/e9b1IaGN7Yux1xeVUo8cDtwXJPE.roa
File: e9b1IaGN7Yux1xeVUo8cDtwXJPE.roa (raw, json)
Hash identifier: Lz4Iz1fXkn01EuwsYNntxnUIXiHWdMDpjouxNxEsCM4=
Subject key identifier: 7B:D6:F5:21:A1:8D:ED:8B:B1:D7:17:95:52:8F:1C:0E:DC:17:24:F1
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01903BD5F1194D6CEA85EFA69D967798511E
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/e9b1IaGN7Yux1xeVUo8cDtwXJPE.roa
Signing time: Fri 21 Jun 2024 17:26:34 +0000
ROA not before: Fri 21 Jun 2024 17:26:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215131
IP address blocks: 2a10:ccc5:2a10::/44 maxlen: 44
2a10:ccc5:2a10::/48 maxlen: 48
2a10:ccc5:2a1f::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jul 2024 12:08:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:3b:d5:f1:19:4d:6c:ea:85:ef:a6:9d:96:77:98:51:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 21 17:26:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7bd6f521a18ded8bb1d71795528f1c0edc1724f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:53:16:6f:0a:a3:e1:c7:ee:fc:05:93:f2:a7:
13:a5:1a:e9:fe:3c:4a:9c:3e:94:d9:2b:8f:1b:62:
36:0d:96:ec:9e:53:67:f1:c9:7f:73:86:5b:16:e0:
be:23:da:63:a7:84:e4:1b:36:fe:a1:75:73:7d:f2:
cf:d3:17:6d:e6:11:e7:3c:b9:4e:5b:ba:24:eb:9f:
2d:0e:49:3f:fd:ad:e5:93:58:a1:bd:b3:4e:b3:89:
50:b9:1b:1e:c6:1d:98:de:61:eb:18:84:83:61:79:
3b:1f:3a:83:0e:ad:d3:b5:a2:8b:82:45:c0:52:da:
68:59:12:10:92:1f:87:16:78:18:a5:56:b2:1c:f9:
d4:d1:05:a7:53:64:98:b0:d4:d5:5d:76:97:8c:43:
c4:e2:48:c6:4b:27:bf:7b:ee:5a:42:b3:46:24:e4:
4b:10:7b:fb:d1:67:64:fa:32:4e:4e:ba:a5:ff:8a:
12:38:7c:fd:d1:8e:60:78:37:a4:d0:0f:8b:34:64:
15:05:27:00:12:71:13:4b:66:aa:ff:b3:31:59:75:
71:b5:1e:d0:00:12:d8:01:4b:db:c7:0c:bb:00:f7:
d1:d0:1c:7d:ce:43:9d:3f:02:62:bb:08:ef:5c:22:
d9:b7:44:e8:82:33:1a:ca:16:d2:2b:65:34:11:2b:
e8:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:D6:F5:21:A1:8D:ED:8B:B1:D7:17:95:52:8F:1C:0E:DC:17:24:F1
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/e9b1IaGN7Yux1xeVUo8cDtwXJPE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:ccc5:2a10::/44
Signature Algorithm: sha256WithRSAEncryption
3c:79:93:bb:cc:ec:6d:6f:93:42:a8:ab:f8:b7:35:8e:65:70:
b5:c7:10:ab:1d:d8:92:f3:d4:86:a1:63:f6:9f:8a:78:97:37:
3e:f9:a1:5c:49:5a:5b:76:d1:bb:50:1b:25:9c:cc:8b:d0:9c:
a0:f2:0a:c0:0e:fc:59:4f:78:49:61:9f:98:51:86:12:37:19:
01:a8:fa:18:76:5d:e1:3c:c3:d9:42:10:3e:b4:1b:ab:8a:33:
df:1e:62:a5:9c:5b:c5:b4:a2:6d:81:ff:a9:85:fa:d4:72:ac:
02:2a:eb:2a:a9:13:7f:7d:c3:17:bc:eb:80:7f:5a:5c:fe:8b:
55:bf:39:c4:4d:98:9d:a1:53:be:bd:b7:bc:d8:8d:4c:88:99:
53:b4:af:f1:24:65:d4:f2:0f:90:9a:43:bf:fa:de:09:36:c6:
7b:36:c4:2e:1a:ea:6e:ee:7d:7b:cc:3c:48:02:00:5a:fa:9c:
36:5e:d2:93:86:12:36:94:b6:06:c2:98:bf:1d:00:26:7e:56:
09:52:ac:57:3f:bc:5e:2d:c6:b3:1b:de:e0:b9:86:49:22:dc:
e5:f6:be:05:c6:8f:56:2d:0a:69:15:cf:ee:86:e0:65:e8:b0:
68:ac:81:15:69:6b:b6:64:2a:8e:b8:7d:5b:2e:92:11:87:22:
99:70:99:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 2 14:30:22 2024 by rpki-client on console-fra.rpki-client.org