Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/fiZ0_imM6ASmrSWKIRuRjTO8x4k.roa
File: fiZ0_imM6ASmrSWKIRuRjTO8x4k.roa (raw, json)
Hash identifier: JPGRuD17RCjl+5sHZE7wvEZ+tsjX+IJhdj4nSyXf0GE=
Subject key identifier: 7E:26:74:FE:29:8C:E8:04:A6:AD:25:8A:21:1B:91:8D:33:BC:C7:89
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01859F5CD7BBCB2FD240236FB3781B878CE0
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/fiZ0_imM6ASmrSWKIRuRjTO8x4k.roa
Signing time: Wed 11 Jan 2023 05:45:39 +0000
ROA not before: Wed 11 Jan 2023 05:45:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202256
IP address blocks: 2a0e:97c6:4000::/34 maxlen: 48
2a10:cc42:1000::/36 maxlen: 48
Validation: Failed, certificate revoked on Sat 14 Jan 2023 23:51:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9f:5c:d7:bb:cb:2f:d2:40:23:6f:b3:78:1b:87:8c:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 11 05:45:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e2674fe298ce804a6ad258a211b918d33bcc789
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:2b:fc:a5:fb:a3:66:80:78:bc:e4:b6:ab:78:
3d:93:39:12:28:c9:84:56:92:96:cc:21:3f:0d:a2:
c2:89:61:21:92:54:36:6c:21:52:31:dc:47:1d:0d:
9d:e5:f8:90:14:45:29:ba:8e:0a:dd:05:1d:57:6c:
3f:8d:f8:82:f4:8a:6f:83:c8:4b:47:b9:26:f4:3f:
61:79:3e:2d:48:e0:26:10:c9:4b:0b:3c:77:b6:56:
0b:64:bd:28:90:b9:ec:d6:42:71:ff:31:95:9c:db:
b2:aa:5a:98:a7:d8:b0:99:75:f9:96:ce:f0:71:78:
00:00:0f:fb:8b:94:a4:46:0f:e9:8e:04:ad:28:15:
8c:df:68:70:2c:56:72:74:15:ed:1d:f5:02:8c:e6:
f7:13:98:99:ff:2a:a7:31:71:c0:36:40:c4:0e:36:
8e:0b:f1:9a:cf:66:6e:94:cb:ba:3a:87:38:82:a4:
8a:7d:98:6a:6f:23:93:9a:f2:ed:e1:14:d9:50:7d:
be:69:ff:9d:a4:07:1b:b0:8b:51:d5:ed:f7:80:10:
3a:e4:32:2c:b2:73:79:ef:66:a5:eb:45:3c:1f:90:
5e:82:a9:db:d3:ff:ff:3a:a3:f9:09:42:ab:5e:af:
28:25:a7:74:95:ef:a3:2e:08:6e:8b:40:2d:01:d4:
55:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:26:74:FE:29:8C:E8:04:A6:AD:25:8A:21:1B:91:8D:33:BC:C7:89
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/fiZ0_imM6ASmrSWKIRuRjTO8x4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c6:4000::/34
2a10:cc42:1000::/36
Signature Algorithm: sha256WithRSAEncryption
5f:22:93:5a:93:46:c0:49:de:0b:d4:7e:8e:63:72:6b:89:a4:
52:ca:29:5b:db:53:e0:21:13:e0:0c:c8:f6:aa:15:51:cb:83:
b6:9c:70:91:72:54:99:c6:75:e6:b5:35:f0:d8:c0:9d:ac:ed:
62:ae:6c:3c:2f:01:07:db:89:42:ae:68:20:db:02:e2:42:78:
d9:d6:98:55:eb:2f:43:49:4a:74:d2:e3:fa:bf:db:2b:19:9b:
0a:57:54:4c:bd:a5:6f:d5:47:f8:17:1c:cc:90:70:92:1d:e7:
6f:de:3d:d8:24:a1:d1:53:15:c7:cb:24:19:e6:ad:44:0a:52:
6e:1e:12:78:9c:5e:ca:97:93:9f:30:17:c0:7d:32:f3:42:92:
53:76:63:74:9a:1f:26:c7:7a:3a:d8:1b:91:83:70:4d:d5:ab:
02:37:e6:29:ea:e0:96:7c:86:c6:64:6b:e7:b8:ab:78:d7:e2:
fd:cf:42:4b:f4:3f:5c:1c:44:43:82:4a:6e:5c:5e:2c:82:8b:
c6:41:82:c3:9d:f4:03:92:c0:64:b5:b5:93:6b:be:dd:2d:2d:
7f:80:a5:ee:ce:9d:73:9b:bb:60:75:da:88:f9:b5:8a:05:b0:
5d:03:3d:00:be:b4:35:4c:f2:78:a5:1e:5d:2f:51:d0:71:ff:
48:2c:75:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:35 2024 by rpki-client on console-fra.rpki-client.org