Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/hVStLemx1ffZCaNeRg2p-4Q-Bpg.roa
File: hVStLemx1ffZCaNeRg2p-4Q-Bpg.roa (raw, json)
Hash identifier: FV30XWEhchkortP/JGRns0EbF1VUi7cNDQ/9cjJzP2U=
Subject key identifier: 85:54:AD:2D:E9:B1:D5:F7:D9:09:A3:5E:46:0D:A9:FB:84:3E:06:98
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01869B6B004BFAF64AE8C5AA9012977C03E3
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/hVStLemx1ffZCaNeRg2p-4Q-Bpg.roa
Signing time: Wed 01 Mar 2023 04:25:26 +0000
ROA not before: Wed 01 Mar 2023 04:25:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a0e:b107:1870::/48 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a0e:b107:5d0::/44 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a0e:97c0:736::/48 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:b102:12f::/48 maxlen: 48
2a0e:97c0:76f::/48 maxlen: 48
2a0e:97c0:73f::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 24 Mar 2023 23:52:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9b:6b:00:4b:fa:f6:4a:e8:c5:aa:90:12:97:7c:03:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 1 04:25:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8554ad2de9b1d5f7d909a35e460da9fb843e0698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:bc:92:7e:57:a5:58:aa:c9:e5:ed:2b:6f:2e:
73:e4:f1:f6:18:1c:62:4d:cd:a3:c7:a8:47:d5:63:
ca:23:32:2e:2f:0d:c6:21:37:bd:af:e6:77:e8:37:
ef:7c:c9:7d:25:d3:c7:d8:d6:85:c0:09:55:2e:90:
bc:2b:5f:a9:05:24:79:10:72:29:6a:41:21:8c:a4:
d6:14:97:6c:16:5d:42:67:b5:ab:b8:fe:df:ed:91:
98:e0:29:d1:5d:76:ef:bc:07:47:fb:c0:f4:7a:34:
5e:0a:76:0f:a8:a3:6e:73:24:4b:35:5f:ad:4b:32:
1f:e7:f9:2d:be:ca:e1:bc:43:77:75:aa:d7:95:95:
3d:89:d6:05:3e:9c:7d:0d:14:a9:58:a2:8a:40:c5:
91:63:7a:48:0e:08:d0:0f:f2:e9:9e:5e:3c:13:64:
47:00:56:92:40:b6:86:2d:1d:c8:55:34:de:9f:87:
f8:46:50:6a:cc:e5:db:eb:37:cd:40:27:39:59:9b:
4b:87:cd:aa:9e:29:59:79:09:3e:10:0e:08:1a:b9:
22:44:99:2f:ae:a1:a4:17:91:c7:53:ec:eb:a2:03:
ba:4c:4d:5d:90:8d:ac:63:97:df:ff:d8:eb:d2:6f:
53:62:32:30:af:30:bd:eb:99:78:c0:ba:ed:d2:27:
4f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:54:AD:2D:E9:B1:D5:F7:D9:09:A3:5E:46:0D:A9:FB:84:3E:06:98
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/hVStLemx1ffZCaNeRg2p-4Q-Bpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:3b87:ff00::/40
2a0e:97c0:736::/48
2a0e:97c0:73f::/48
2a0e:97c0:750::/48
2a0e:97c0:76f::/48
2a0e:b102:12f::/48
2a0e:b107:5d0::/44
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
Signature Algorithm: sha256WithRSAEncryption
52:1c:7e:b0:6f:c6:53:1c:0c:bc:20:5c:06:72:65:63:89:eb:
1a:44:0d:ec:8c:34:80:31:91:d9:01:d8:77:d4:3a:64:99:a5:
2d:a2:b7:34:b5:be:b5:25:8c:c4:2a:bc:c3:7d:3f:34:27:bc:
00:73:41:80:c8:0a:e4:26:ef:36:bd:b3:f7:f3:64:7f:c6:d1:
d2:10:a1:b7:67:dc:9e:03:cf:7e:f8:fb:3e:2d:80:24:8e:e2:
06:36:c7:0f:fa:95:db:81:f4:48:eb:0f:04:0a:9a:0d:ba:ff:
d1:19:3e:9b:2f:3b:e4:b0:55:f4:05:cc:d8:28:58:27:e8:7d:
21:39:06:f1:97:6c:96:6b:d5:1e:9c:3b:3e:c3:96:ba:4d:f3:
05:9e:89:2f:ea:e0:4f:a8:c3:89:e2:19:b6:9b:db:6f:44:cd:
7c:f0:07:a0:4b:30:59:44:6e:01:77:70:4b:b5:36:a0:96:50:
2a:5d:8c:81:81:93:c0:2e:48:06:f6:94:5f:47:45:f7:95:29:
53:08:63:c0:bd:93:24:41:ce:d5:ae:1b:b3:88:e7:39:5d:d2:
95:8c:86:96:99:6b:2b:2d:f4:99:9f:8f:f7:85:99:57:34:e2:
34:5b:cf:4a:f0:bd:1f:15:45:20:a6:f5:66:93:a4:21:9b:84:
e8:86:8c:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:10 2024 by rpki-client on console-ams.rpki-client.org