Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/eBkb6gs5xC7XNKEPeYPwA38Tt0Y.roa
File: eBkb6gs5xC7XNKEPeYPwA38Tt0Y.roa (raw, json)
Hash identifier: mAkbXqDsYh4EQFMZyQDO/6/exWJPd/V9ZEzFdiXp/6Y=
Subject key identifier: 78:19:1B:EA:0B:39:C4:2E:D7:34:A1:0F:79:83:F0:03:7F:13:B7:46
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185DADA9DED6363BC0F19CD560349889480
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/eBkb6gs5xC7XNKEPeYPwA38Tt0Y.roa
Signing time: Sun 22 Jan 2023 19:00:38 +0000
ROA not before: Sun 22 Jan 2023 19:00:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211703
IP address blocks: 2a10:2f00:167::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:da:da:9d:ed:63:63:bc:0f:19:cd:56:03:49:88:94:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 22 19:00:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78191bea0b39c42ed734a10f7983f0037f13b746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c8:b8:38:d5:95:6b:89:60:02:33:09:5c:5b:
34:ab:dc:fe:42:bc:f3:4d:e4:18:55:5b:c4:fb:cf:
94:a0:5d:95:8b:be:93:4a:1a:c6:31:0d:40:fa:dd:
b5:70:77:dd:00:43:17:1f:85:5d:d4:35:c5:88:98:
0b:4e:fc:70:60:7e:21:96:82:5d:8a:bf:70:48:f5:
24:56:e6:d6:92:f8:46:72:ad:35:dc:e2:18:1d:1d:
a3:d6:4f:02:78:76:c8:fe:07:72:c8:97:75:ee:3b:
d8:f9:cb:96:94:33:07:89:71:f9:24:44:4f:9a:f8:
a5:ed:d4:ec:2f:8e:02:6c:c0:e8:78:62:da:c2:a7:
72:ad:99:17:d6:63:45:77:40:c0:6b:04:2f:c2:aa:
d6:c3:78:f4:89:ca:26:ae:f5:4d:e2:ad:c6:28:9b:
ef:dc:e8:54:3a:7d:4a:12:11:4a:a6:bb:4a:4b:b2:
d3:a8:3e:9d:d7:5c:e6:4c:2a:dc:92:c0:e1:a6:a4:
e1:64:68:2a:76:8f:fc:fb:7e:ad:b4:84:7a:10:d7:
74:a0:0d:40:5d:0f:2c:d1:96:35:ef:1d:0d:f4:59:
24:e2:5c:a0:d7:38:04:af:44:ec:d0:ac:40:25:9e:
0a:11:8c:be:07:0b:d8:cb:53:52:e9:ad:25:13:cd:
e0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:19:1B:EA:0B:39:C4:2E:D7:34:A1:0F:79:83:F0:03:7F:13:B7:46
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/eBkb6gs5xC7XNKEPeYPwA38Tt0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f00:167::/48
Signature Algorithm: sha256WithRSAEncryption
10:5e:11:ac:ab:88:0d:9f:3d:a7:62:78:9d:53:16:09:4d:2c:
11:dc:6b:5b:b3:fc:27:27:94:74:61:b3:5c:2c:1a:04:08:db:
d1:92:76:0a:5a:89:4c:03:8c:fe:f8:14:07:88:13:db:73:d8:
db:98:f5:00:29:96:e6:1b:d4:64:d6:30:00:18:bb:18:da:19:
e7:25:9f:41:d5:17:4a:14:36:92:93:d5:7c:82:0b:74:bf:cb:
7a:fc:46:8a:24:05:65:2d:b9:be:10:e5:40:ae:b3:8a:05:52:
55:60:42:5a:c1:39:a1:b6:b6:ed:22:83:33:39:4a:ee:77:d0:
97:d2:eb:6e:d5:f1:46:9b:0f:82:88:4d:9a:5f:3e:46:39:17:
8b:95:39:d4:4a:91:11:75:07:06:cc:82:98:e2:61:67:9d:83:
57:02:88:7e:88:13:d2:82:88:1a:15:bf:8b:f3:5a:78:c2:03:
8c:c6:3b:1c:eb:22:9c:a2:18:9b:0f:48:24:71:1b:2f:4c:1e:
43:d2:c5:82:06:56:47:42:2f:27:0c:17:bc:23:75:63:64:9b:
1b:35:0f:42:6a:16:82:0a:29:d3:f9:57:0b:1c:ce:24:27:4c:
75:45:9c:54:d6:8f:ce:d5:ca:74:59:15:24:b7:9b:69:f5:4c:
7c:bf:d5:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:51 2024 by rpki-client on console-ams.rpki-client.org