Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/eDZwY02SykVs7BEn1UGcXpLd6rw.roa
File: eDZwY02SykVs7BEn1UGcXpLd6rw.roa (raw, json)
Hash identifier: oND0W2ruK6wYsqYG4tovAwIs95HiIYcNjQX31dAqAbQ=
Subject key identifier: 78:36:70:63:4D:92:CA:45:6C:EC:11:27:D5:41:9C:5E:92:DD:EA:BC
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018BE4E569CCDB0FBDE9ED4878B9A3F8A17E
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/eDZwY02SykVs7BEn1UGcXpLd6rw.roa
Signing time: Sun 19 Nov 2023 00:05:21 +0000
ROA not before: Sun 19 Nov 2023 00:05:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2a0e:b107:19a0::/48 maxlen: 48
2a06:de00:10::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:e4:e5:69:cc:db:0f:bd:e9:ed:48:78:b9:a3:f8:a1:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 19 00:05:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=783670634d92ca456cec1127d5419c5e92ddeabc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:08:88:67:ae:4e:0a:47:ea:81:62:45:fb:03:
e3:f2:48:22:53:68:43:d7:48:f6:fd:3c:64:fa:ec:
86:2c:66:2e:4f:b5:73:f8:c8:5d:1b:b3:68:56:c9:
1f:a6:a1:03:84:d0:8a:13:bf:fa:14:84:cd:4c:fd:
43:34:1d:94:8a:b4:0a:d7:7d:1f:03:1b:aa:8b:8c:
46:23:5c:b1:3b:d6:f6:b9:e2:1c:13:3f:11:02:f4:
79:f7:21:b9:83:7f:bd:1b:90:70:7c:71:fc:2c:14:
ff:22:3b:1e:67:a1:90:82:cf:dc:d3:6d:b6:c4:d5:
24:a6:17:5f:54:4f:67:c6:60:7f:db:02:7a:76:2a:
0a:5a:38:6b:81:5c:a6:2c:5c:b8:2c:45:0a:a8:06:
95:ac:6e:c5:db:93:12:01:b6:c9:5e:19:c4:7e:a2:
c3:a9:59:01:0a:09:f5:ad:46:35:bc:47:3e:2d:43:
05:c9:ac:fd:2b:f4:ea:cd:04:ac:cd:84:b5:4d:56:
0b:f5:34:91:16:d0:b0:43:cb:e6:97:be:24:db:0c:
61:81:56:1f:b1:92:82:62:ef:8a:3b:9b:db:ca:80:
8e:8f:b5:a6:2f:f2:6d:b2:68:80:1f:7d:f7:1e:be:
d5:b5:35:77:2a:bb:a7:a7:e2:60:e8:21:2c:ed:04:
4a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:36:70:63:4D:92:CA:45:6C:EC:11:27:D5:41:9C:5E:92:DD:EA:BC
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/eDZwY02SykVs7BEn1UGcXpLd6rw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:de00:10::/48
2a0e:b107:19a0::/48
Signature Algorithm: sha256WithRSAEncryption
a8:17:30:ee:5d:7f:f8:50:92:a5:88:80:5a:7e:4a:79:59:1d:
7b:1c:6e:5a:14:b0:bc:0f:42:45:85:d8:57:35:5c:d1:03:c9:
1e:00:b9:8a:c0:8c:b2:10:29:60:f5:6d:f4:71:9c:89:20:74:
e1:ec:56:3c:89:65:f1:15:ca:3b:ea:2e:ac:9f:74:e7:ac:97:
b3:76:a1:77:cf:51:e8:d7:f9:ca:8b:8d:0e:d6:9f:cd:df:b6:
e1:40:fe:bb:00:fe:dd:7e:41:44:b6:db:d8:f3:cd:3e:7b:34:
b5:04:3e:93:92:7c:51:50:74:c1:05:6f:b3:c5:6a:b5:ee:3b:
c4:a6:bf:2e:97:bb:10:41:fe:dd:2f:70:8d:7d:67:f3:e8:91:
34:74:99:92:90:a8:d5:86:b2:d1:c3:6c:d1:97:5f:f1:d0:86:
a8:97:b5:35:cd:db:22:94:56:45:45:ec:72:ea:5d:94:be:37:
da:35:52:03:07:4e:d6:14:c5:6a:88:37:51:21:e8:11:1d:64:
dd:43:a0:d9:88:b2:13:90:2e:05:a3:a6:b7:03:88:eb:33:24:
66:31:85:1e:fd:cd:3a:a6:b2:c0:69:92:cf:bb:49:9b:5e:28:
63:9c:18:07:2b:a3:65:65:ad:80:cc:51:6f:29:a6:d0:2e:b6:
0b:37:92:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Dec 24 17:02:06 2023 by rpki-client on console-ams.rpki-client.org