Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/heNOZNh-37JYB0Q_UncEoI2t_JI.roa
File: heNOZNh-37JYB0Q_UncEoI2t_JI.roa (raw, json)
Hash identifier: 9LC/uisqIvF8xcs4RV58ei1SD2ErnfoYkuOnNPBHDKQ=
Subject key identifier: 85:E3:4E:64:D8:7E:DF:B2:58:07:44:3F:52:77:04:A0:8D:AD:FC:92
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185E48ABAAF1FD48588E30CC5008FBC7752
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/heNOZNh-37JYB0Q_UncEoI2t_JI.roa
Signing time: Tue 24 Jan 2023 16:09:34 +0000
ROA not before: Tue 24 Jan 2023 16:09:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31798
IP address blocks: 2a0e:b107:2a0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e4:8a:ba:af:1f:d4:85:88:e3:0c:c5:00:8f:bc:77:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 24 16:09:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85e34e64d87edfb25807443f527704a08dadfc92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4d:58:7f:38:6d:c5:52:fe:60:23:3f:52:d9:
c7:89:cc:29:6d:cd:d5:68:40:17:b8:c7:04:d5:21:
80:79:25:5f:df:5d:36:7b:ce:2a:3e:a1:00:70:92:
5e:de:43:8c:47:90:4d:52:54:c8:a6:88:1d:fb:59:
7c:18:e9:36:46:cd:2a:04:c5:1d:69:bc:70:1e:d5:
1a:33:87:cb:1e:31:d5:82:23:9f:65:eb:cf:13:bc:
42:e8:e2:87:cc:88:ba:d3:f4:6f:4f:be:a2:cf:9c:
a0:8b:83:1d:f9:b9:4c:79:3c:fb:4a:9f:13:dd:e7:
fd:41:31:91:5f:f2:d4:32:ca:67:2b:91:9d:ec:f1:
70:42:fc:72:17:1f:25:dc:75:27:24:bc:99:90:aa:
4a:b1:78:16:4d:84:16:80:d4:42:55:fa:b4:d7:cd:
a8:5a:4c:78:28:2d:d0:77:47:bc:3d:10:9b:9a:90:
1f:ae:ab:bf:0a:67:6e:78:7a:73:69:1c:85:e9:0d:
3e:bd:7c:4a:ce:35:2e:5d:98:40:76:f2:3e:83:31:
78:da:03:05:fb:41:a7:3d:a6:59:b2:50:18:5f:16:
b4:a5:f8:27:c2:c7:7e:25:62:89:02:9f:59:a4:d8:
e8:0b:20:6a:27:67:ee:fd:43:a1:f7:3e:38:c0:a6:
66:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:E3:4E:64:D8:7E:DF:B2:58:07:44:3F:52:77:04:A0:8D:AD:FC:92
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/heNOZNh-37JYB0Q_UncEoI2t_JI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:2a0::/44
Signature Algorithm: sha256WithRSAEncryption
2f:ef:40:65:22:75:4f:43:fe:2a:3e:94:35:e7:b2:cd:21:8b:
61:25:04:05:1e:7c:ee:4f:05:99:19:3d:47:72:41:14:2f:8b:
64:8c:07:17:65:ba:07:b9:0e:76:82:df:b1:d6:0e:22:52:a5:
1c:46:69:e6:a8:ff:77:17:c2:60:0a:eb:55:0d:f7:fb:cb:65:
13:95:2c:c8:9b:8e:d4:4c:65:1e:57:57:ae:83:8d:f6:ba:e9:
bf:1c:da:7a:93:c3:ba:e4:10:32:b8:f0:3f:d7:b1:fb:52:d8:
6a:16:08:da:e3:4c:4e:84:ef:f5:69:bb:c4:8c:7a:10:01:e0:
8c:8e:a8:99:61:6b:15:04:24:72:eb:f3:78:56:1e:77:f5:c3:
f4:13:3d:47:6b:4e:af:d5:fb:f7:91:96:77:ef:70:58:61:47:
a7:95:ad:eb:6a:d3:e4:a2:8f:8f:07:f9:2a:cc:26:9e:6e:e5:
8f:6c:1c:06:b8:0e:1e:7d:4b:d4:78:60:3a:1d:83:cc:f3:f4:
4a:5f:da:a3:29:4e:09:75:59:7a:ae:67:d9:55:d0:95:ab:09:
e9:41:51:a8:db:db:94:8b:82:88:72:33:4e:84:93:0f:04:a1:
23:2f:41:8d:2b:10:6c:9e:ea:1e:7c:fe:32:99:57:b5:f3:53:
e5:82:c7:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:18 2023 by rpki-client on console-fra.rpki-client.org