Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/epolzEuJOV9YPcgeWK_f7H-Wr90.roa
File: epolzEuJOV9YPcgeWK_f7H-Wr90.roa (raw, json)
Hash identifier: /vrmHDhmtEbhH9C03Big4h1vLcLKZ+UgoghegICuzVI=
Subject key identifier: 7A:9A:25:CC:4B:89:39:5F:58:3D:C8:1E:58:AF:DF:EC:7F:96:AF:DD
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018918A1545205E9CCC7003DA9E91D146D63
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/epolzEuJOV9YPcgeWK_f7H-Wr90.roa
Signing time: Sun 02 Jul 2023 22:02:53 +0000
ROA not before: Sun 02 Jul 2023 22:02:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a0e:b107:1870::/48 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:b107:5d0::/44 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a10:ccc3:ccca::/48 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:97c0:76f::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 20 Jul 2023 01:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:18:a1:54:52:05:e9:cc:c7:00:3d:a9:e9:1d:14:6d:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jul 2 22:02:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a9a25cc4b89395f583dc81e58afdfec7f96afdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d9:28:e5:67:21:b6:db:04:f2:63:27:e4:4f:
f0:b7:15:ae:9a:d0:29:f8:20:e7:30:d7:32:bd:b5:
a7:cf:f7:a5:f2:57:44:22:d7:99:f9:7e:c1:a3:f7:
37:0a:b9:54:bb:c0:d4:d5:68:70:a4:c8:ee:a0:cd:
a6:cf:82:7a:65:76:c4:49:e6:82:21:b7:a8:cb:5f:
ad:60:01:68:05:92:57:ea:b1:c0:df:6e:88:3f:7d:
0b:88:be:ad:7d:44:7d:b8:cd:e4:f5:17:af:79:e6:
7f:a4:f7:d1:45:b3:8a:72:1a:8a:d7:8e:17:c1:34:
5c:fc:f5:63:3b:41:2c:8c:73:6a:8f:a4:38:4c:3d:
f2:b7:07:aa:9b:2b:06:e9:7c:37:90:e2:ca:83:77:
44:b4:15:a0:f6:bc:43:b2:71:67:92:40:b4:e6:6c:
c6:e6:e3:45:2c:7e:d7:6f:c5:fd:11:36:81:a8:16:
bf:ad:6a:34:86:0c:53:30:63:d8:49:ab:0a:84:cc:
d6:8e:ed:35:b0:e2:a7:97:56:87:43:c1:1b:50:cc:
95:7f:02:64:c2:1f:9b:57:c0:01:e4:79:d6:a3:d4:
8a:8b:b6:3c:40:c9:a5:22:d7:b5:c8:d4:71:3c:c5:
ee:c1:4d:59:f2:fe:4b:cc:86:e6:7f:fa:80:31:ca:
83:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:9A:25:CC:4B:89:39:5F:58:3D:C8:1E:58:AF:DF:EC:7F:96:AF:DD
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/epolzEuJOV9YPcgeWK_f7H-Wr90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:76f::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:b107:5d0::/44
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a10:ccc3:ccca::/48
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
c9:75:48:26:83:13:ac:e4:b5:f6:cf:00:e3:71:4a:f3:e7:6e:
4f:9f:fe:ef:62:d1:43:44:4d:cb:21:f1:ff:b6:40:ff:fe:48:
da:c2:fc:01:87:83:bd:45:b6:e4:ed:06:5f:f9:23:ba:eb:c4:
7c:a1:ed:4a:8f:b4:3a:80:0c:4d:f4:f5:66:1e:69:01:e3:66:
22:16:97:86:1a:b1:63:cf:02:75:3a:92:b3:43:01:b9:90:66:
d7:38:b8:bc:55:c0:ac:39:4c:da:d3:a4:cd:73:ad:24:a5:36:
e0:8f:fe:56:df:b0:cc:dc:e7:ac:80:aa:d0:1b:36:78:4b:5b:
f4:5c:bd:b7:10:11:67:15:24:ad:67:ee:69:b7:4d:38:60:9a:
a1:8a:c8:8c:62:f3:02:e8:1d:29:b8:71:17:ed:e9:f1:46:73:
d3:29:10:4d:cd:39:95:4b:07:54:9a:c1:38:bc:a3:cb:a5:04:
8e:a4:32:ee:ee:77:19:31:44:e1:0a:5f:5d:99:aa:b9:a0:50:
76:a7:89:bd:30:b3:40:67:52:e9:54:de:0e:ae:e4:35:17:52:
26:8d:12:17:e6:e4:75:95:fc:35:ff:c6:80:00:4f:56:0a:54:
c3:a0:f0:f3:3a:76:9f:d4:4d:cf:ab:a2:7e:3a:df:73:0c:bc:
93:fe:cb:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:35 2024 by rpki-client on console-fra.rpki-client.org