Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/hbP42RSzJqdZ2JJF8lpLorbzvbo.roa
File: hbP42RSzJqdZ2JJF8lpLorbzvbo.roa (raw, json)
Hash identifier: F52/BMiDteMIwlLN98fL+Mb23ai/PVF3KegdEZQukpU=
Subject key identifier: 85:B3:F8:D9:14:B3:26:A7:59:D8:92:45:F2:5A:4B:A2:B6:F3:BD:BA
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018B963D385E6042FFC78A4D03556FCC8332
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/hbP42RSzJqdZ2JJF8lpLorbzvbo.roa
Signing time: Fri 03 Nov 2023 17:31:16 +0000
ROA not before: Fri 03 Nov 2023 17:31:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 149938
IP address blocks: 2a10:ccc0:bbb0::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:96:3d:38:5e:60:42:ff:c7:8a:4d:03:55:6f:cc:83:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 3 17:31:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85b3f8d914b326a759d89245f25a4ba2b6f3bdba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:2d:42:c1:6a:d8:7c:a7:c9:05:d4:bb:6e:fb:
21:32:69:48:2c:65:95:d4:ea:ee:5f:a1:be:51:c5:
a6:8b:d5:77:89:13:e6:9a:17:8d:22:d8:c1:a8:51:
5c:b3:10:5a:84:dc:f5:5c:dc:cd:27:79:1c:3d:fe:
96:07:af:2d:41:36:77:2c:42:7b:15:d4:e8:8c:9d:
3e:d5:0b:18:3f:10:ac:bb:65:32:53:65:4d:61:84:
16:99:2f:63:6e:d5:b6:6a:0a:fa:75:53:85:be:38:
55:70:5e:4f:0e:db:d1:ce:7f:02:aa:87:da:4d:6a:
91:88:28:7c:06:dd:1d:80:4b:a3:0f:64:58:c5:ee:
8c:fc:47:6e:fb:a3:dc:ca:82:97:95:b6:97:2c:49:
ec:f6:aa:05:bd:e8:3f:2b:ea:bf:12:6c:b2:32:26:
98:10:a7:4e:dd:52:1b:c2:a8:f4:b1:73:9c:f4:84:
18:f9:6d:44:29:a2:ea:fc:9b:82:16:0a:39:31:88:
8c:07:86:b9:af:9b:79:3a:2d:13:4e:d9:5f:33:e4:
35:1c:12:79:ae:b0:d7:74:c5:51:55:01:9c:65:6d:
4f:3a:47:63:80:61:0e:d3:77:df:3a:17:5f:58:49:
c7:87:74:b9:b6:fd:d9:21:7a:1d:12:fb:db:07:10:
73:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:B3:F8:D9:14:B3:26:A7:59:D8:92:45:F2:5A:4B:A2:B6:F3:BD:BA
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/hbP42RSzJqdZ2JJF8lpLorbzvbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:ccc0:bbb0::/48
Signature Algorithm: sha256WithRSAEncryption
98:e4:41:73:b0:dc:49:4e:a2:b6:1c:f5:cf:f0:f8:2d:87:89:
f1:ec:98:ea:7d:7a:32:77:be:8d:c4:07:12:9c:49:c6:c5:93:
f2:74:09:26:9c:7a:32:9a:95:cd:a7:41:57:83:11:a0:c2:6f:
e9:bb:b3:26:bd:be:e2:a8:39:eb:ca:ae:a4:39:04:dc:98:45:
3f:c9:65:23:a8:cf:31:77:c9:93:02:a8:67:e5:a3:0a:8f:00:
cd:82:65:25:e8:81:9e:fb:c8:dd:26:7e:9e:92:96:84:91:e8:
43:0f:d3:90:90:17:0a:8c:af:84:08:75:45:79:e5:cf:29:7c:
5c:72:d0:3a:d7:73:95:29:ae:a9:76:28:78:f4:a0:f7:b9:e3:
31:66:69:38:13:d6:2b:f7:5b:72:62:a8:af:7b:05:d7:03:80:
68:bd:0e:d6:fe:53:ca:a1:15:1b:bd:4d:91:97:aa:1e:c4:e2:
bc:52:d2:66:7a:ca:c8:6c:51:d5:fc:aa:ca:32:e3:85:66:72:
da:54:c5:fa:a6:81:76:1a:54:be:88:f8:f8:f5:b6:af:c2:bb:
9f:7a:10:19:f3:71:6f:29:7f:23:00:63:88:ac:f6:cc:e4:a1:
b8:00:ab:ee:46:82:e9:e2:11:bd:ed:f2:87:b5:5c:e1:01:62:
cb:55:c1:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:51 2024 by rpki-client on console-ams.rpki-client.org