Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/eUJlAttV5FJCr0BmwHJZ8NDpylU.roa
File: eUJlAttV5FJCr0BmwHJZ8NDpylU.roa (raw, json)
Hash identifier: /EO5jF64d0Sge18pGVraMvjYOCq2Ik8joHfywseDMKU=
Subject key identifier: 79:42:65:02:DB:55:E4:52:42:AF:40:66:C0:72:59:F0:D0:E9:CA:55
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018CC9BD5A548214F440CB6D8F6CC01A2F84
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/eUJlAttV5FJCr0BmwHJZ8NDpylU.roa
Signing time: Tue 02 Jan 2024 10:34:38 +0000
ROA not before: Tue 02 Jan 2024 10:34:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216419
IP address blocks: 2a06:de01:503::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 27 Feb 2024 23:51:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bd:5a:54:82:14:f4:40:cb:6d:8f:6c:c0:1a:2f:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 10:34:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=79426502db55e45242af4066c07259f0d0e9ca55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:53:95:b7:f5:4e:66:71:18:5c:f9:50:1b:bd:
31:1a:f6:1c:d6:0f:2a:47:ba:2c:2a:24:f6:58:37:
2b:c7:5d:eb:24:f8:f0:b3:00:14:dc:c1:e6:90:17:
5d:8e:ab:56:1c:7e:15:97:d4:5c:14:b5:cc:f9:a7:
33:f2:12:0e:5e:81:f1:19:9c:0c:3d:ab:f9:42:9b:
9d:17:0a:75:6c:13:0e:79:d3:af:ec:47:b1:c7:40:
df:78:d8:13:b9:39:41:2c:f4:26:97:6f:1b:80:40:
99:6e:df:53:03:7b:03:cc:c3:b1:5f:a5:bd:24:09:
8c:5a:6c:57:a4:c3:f3:b3:6f:81:f8:50:d6:02:41:
7e:56:48:37:54:6a:fc:f8:91:2d:cc:29:7f:07:bc:
ff:6c:5e:0b:0d:76:da:34:11:57:6e:10:0a:aa:41:
b5:e5:e8:8d:61:25:48:fc:d1:1a:46:86:35:47:c3:
2f:4d:c7:ca:a8:f0:84:cc:36:3d:f0:ca:6b:3f:03:
69:15:01:94:f9:63:cc:86:a1:00:64:06:c0:38:ad:
1c:fb:3b:5f:4c:92:a7:50:e4:12:49:97:0e:7a:71:
e9:a2:df:8b:49:f2:52:5d:f3:eb:ab:12:2b:cf:8b:
47:cf:35:12:e4:d8:d8:35:ba:64:80:1b:52:ab:c6:
fa:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:42:65:02:DB:55:E4:52:42:AF:40:66:C0:72:59:F0:D0:E9:CA:55
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/eUJlAttV5FJCr0BmwHJZ8NDpylU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:de01:503::/48
Signature Algorithm: sha256WithRSAEncryption
75:16:90:7e:c4:aa:22:b1:98:a2:2d:49:f4:7a:7c:ae:13:ea:
c3:09:48:41:c7:ae:fd:74:5e:d1:04:a2:54:a6:ec:65:2c:f4:
d0:29:33:64:75:cc:b9:23:83:36:bb:16:85:9c:2d:41:f1:78:
a7:7d:9b:20:c5:f2:59:33:2a:ea:ea:ff:22:12:8b:98:a7:65:
99:57:f1:da:b9:1d:b7:9d:01:4d:e6:2f:1f:23:a9:c4:0e:56:
04:6a:23:55:df:1d:06:2f:6f:c3:e4:4a:e3:b7:68:77:e9:bf:
b2:60:de:47:61:40:90:6d:fe:a8:db:2e:40:e8:a1:e2:ea:5c:
8a:fc:6a:65:d5:b4:ef:48:39:7d:4f:10:d3:b6:64:63:c0:17:
bd:51:60:89:70:e2:ab:2a:19:e1:3e:f5:b9:7f:44:d1:9d:87:
e9:5a:c2:44:7f:6c:cf:44:9c:36:57:4f:e6:ee:22:64:ac:fe:
4d:f3:99:68:29:dd:24:77:1a:70:24:3d:a7:87:4c:1c:42:4f:
34:ca:02:47:b8:74:9b:f2:7d:6c:c4:fa:9c:fd:3e:19:26:ff:
61:9c:85:42:ad:ea:e4:94:43:b7:00:44:a5:eb:2b:be:c7:af:
ff:0e:c7:cd:30:f2:9d:58:22:14:0a:94:c6:eb:27:e9:52:75:
70:5b:f5:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 28 02:53:50 2024 by rpki-client on console-fra.rpki-client.org