Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/gKQPt2a8zMq87xg3J7LAfFs7tlA.roa
File: gKQPt2a8zMq87xg3J7LAfFs7tlA.roa (raw, json)
Hash identifier: azOa9CE5apJHeQOluh9knE9IeaggZHpts75cXwt1VeI=
Subject key identifier: 80:A4:0F:B7:66:BC:CC:CA:BC:EF:18:37:27:B2:C0:7C:5B:3B:B6:50
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01897306B79923771731746111553ED7FE24
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/gKQPt2a8zMq87xg3J7LAfFs7tlA.roa
Signing time: Thu 20 Jul 2023 11:19:27 +0000
ROA not before: Thu 20 Jul 2023 11:19:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212085
IP address blocks: 2a0e:b107:ea5::/48 maxlen: 48
2a0e:b107:ea7::/48 maxlen: 48
2a0e:b107:ea4::/48 maxlen: 48
2a0e:b107:ea6::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 20 Jul 2023 13:36:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:73:06:b7:99:23:77:17:31:74:61:11:55:3e:d7:fe:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jul 20 11:19:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80a40fb766bccccabcef183727b2c07c5b3bb650
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:0a:b5:4e:ef:5f:66:5c:4d:12:0b:25:2a:a4:
91:5f:ce:6c:47:3d:3e:1d:35:68:34:c0:ba:11:5d:
ab:e5:53:c7:be:f1:58:96:02:af:53:f2:1d:f5:84:
c5:7a:04:f9:a7:18:7e:f4:f7:6f:73:2f:d5:7b:a9:
48:1c:f6:e6:7a:64:3b:dc:a1:b5:48:d4:03:b8:4c:
b0:18:36:a1:ab:df:4b:35:f9:28:04:4c:23:21:ca:
cd:51:aa:64:9e:f7:32:de:dc:b3:98:76:82:cd:a6:
bf:d3:d3:cd:a5:c9:8d:8e:20:34:c0:75:1e:05:ac:
1f:22:34:ab:77:30:6e:7f:d0:55:4c:16:a4:90:47:
fc:d2:b8:37:ae:03:d8:7a:66:fb:7c:25:38:e9:45:
24:02:88:4c:df:ea:03:34:fe:96:db:a0:0a:89:17:
29:38:d6:07:a3:da:18:4a:04:88:88:3d:ee:12:a9:
c4:18:41:76:10:54:7b:7a:d4:a0:a3:67:9e:ae:0d:
f9:d4:d1:28:d3:14:79:69:84:1a:19:7c:db:5e:f4:
f7:8f:82:40:5b:c8:b5:94:3a:5b:d4:c7:a5:3a:47:
2a:41:72:6a:04:15:cb:5b:23:8f:64:3c:05:81:f2:
e1:9d:4c:e8:89:fa:27:5f:9e:6b:21:b2:60:ec:3e:
14:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:A4:0F:B7:66:BC:CC:CA:BC:EF:18:37:27:B2:C0:7C:5B:3B:B6:50
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/gKQPt2a8zMq87xg3J7LAfFs7tlA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:ea4::/46
Signature Algorithm: sha256WithRSAEncryption
1f:ae:1e:de:a3:f9:15:c3:7f:15:48:00:08:40:65:2e:db:85:
0e:61:42:7d:0a:9d:0a:da:00:29:8c:9c:8f:82:7a:72:d9:2e:
ed:dd:82:95:6f:fe:84:f5:4e:8b:b5:ab:e1:97:b1:ea:75:20:
e8:96:16:70:cb:9e:43:0d:31:9a:13:75:cf:ea:54:1c:3f:cc:
e7:05:58:75:cd:df:f0:a6:e0:d5:e4:fd:5c:5a:c3:a6:ce:58:
34:27:69:06:b0:45:4d:b9:7b:50:c0:37:95:81:5e:f3:ae:9b:
ea:91:6f:6e:a4:23:17:53:c0:16:86:ce:26:12:d1:a7:ba:fd:
10:5c:39:21:4f:e5:bc:3c:15:7f:3e:26:aa:b6:52:f8:37:e0:
82:8b:c5:b8:c5:eb:ce:ee:58:8d:3f:62:1a:27:45:77:47:b5:
10:5d:a2:c8:35:47:be:87:06:b9:81:82:69:f5:94:04:cc:d1:
a3:00:ec:5e:f8:01:06:91:44:90:82:3d:15:0c:20:68:98:2d:
b5:d6:f6:e5:2b:99:1f:37:85:95:75:12:be:66:2b:98:95:e7:
05:ab:db:76:c4:41:49:2c:eb:b3:e6:d7:e0:67:29:9d:3c:ed:
94:12:2b:3d:29:47:24:8f:d6:fd:09:ae:6b:b2:44:bd:0d:d4:
c5:19:85:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:09 2024 by rpki-client on console-ams.rpki-client.org