Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/jjn84jfcGqEQsVC_Gx9iBmL5poE.roa
File: jjn84jfcGqEQsVC_Gx9iBmL5poE.roa (raw, json)
Hash identifier: CTxUtQafQo+amqBh16IT0lXPU6tzJDjkX7pcE7kJ5Vg=
Subject key identifier: 8E:39:FC:E2:37:DC:1A:A1:10:B1:50:BF:1B:1F:62:06:62:F9:A6:81
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018FD92B5AEED74744323AB6BC2D6284E62B
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/jjn84jfcGqEQsVC_Gx9iBmL5poE.roa
Signing time: Sun 02 Jun 2024 13:37:28 +0000
ROA not before: Sun 02 Jun 2024 13:37:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 2a06:de01:d8::/45 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:97c1:8a2f::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a0e:b107:1870::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
2a10:ccc3:ccca::/48 maxlen: 48
2a10:ccc3:cccc::/48 maxlen: 48
2a10:ccc3:ccce::/47 maxlen: 48
2a10:ccc6:6660::/44 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
Validation: Failed, certificate revoked on Sun 18 Aug 2024 07:32:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d9:2b:5a:ee:d7:47:44:32:3a:b6:bc:2d:62:84:e6:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 2 13:37:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8e39fce237dc1aa110b150bf1b1f620662f9a681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:50:2e:b3:c5:f5:ae:99:04:fd:1c:66:16:11:
1d:a9:f5:a8:3a:81:06:dc:89:59:f9:bb:73:5a:84:
55:a4:31:a6:e1:97:cf:48:cf:ca:b1:40:64:90:6b:
8c:c4:05:8b:b9:bb:a1:a9:f4:2a:be:3d:92:b9:07:
b2:0d:0e:97:7b:bb:8e:49:b1:ed:14:70:40:3a:b9:
47:eb:d3:b2:b9:88:82:9e:cf:c8:f9:fb:17:bb:ff:
0d:5b:fe:10:41:df:34:60:8e:80:43:b1:07:6b:a0:
55:80:e7:bf:f2:e7:b3:3e:5e:a5:5d:eb:fe:28:45:
82:c1:60:92:17:3f:bc:ed:d0:e3:4d:bd:82:62:aa:
7c:db:c4:dc:0f:41:a1:a0:51:fc:f6:07:1f:06:1b:
ff:56:7f:92:24:05:d2:11:6c:75:11:82:fb:72:8a:
19:cd:8d:40:08:9e:ad:ff:ad:af:dd:bb:61:a4:f3:
da:50:a5:a8:24:fd:87:f1:45:8e:46:d3:ab:88:67:
ae:07:e3:37:a5:da:d8:f0:94:9c:fb:ef:0d:44:af:
1b:cc:89:e0:2f:12:e9:16:f4:d6:f3:28:45:06:04:
36:c6:0c:0d:1f:bc:0c:5e:2d:30:c7:5f:ef:3a:24:
2a:26:d9:37:2b:b9:01:8e:0f:4a:36:10:33:42:0f:
4c:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:39:FC:E2:37:DC:1A:A1:10:B1:50:BF:1B:1F:62:06:62:F9:A6:81
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/jjn84jfcGqEQsVC_Gx9iBmL5poE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:de01:d8::/45
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c1:8a2f::/48
2a0e:97c4:ac00::/38
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc3:ccca::/48
2a10:ccc3:cccc::/48
2a10:ccc3:ccce::/47
2a10:ccc6:6660::/44
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
7c:48:13:cc:d3:f9:c9:ae:8f:62:f4:74:26:0c:59:f0:3d:ba:
2a:c8:56:80:a7:33:2c:26:a6:be:50:d1:73:79:b9:b0:26:12:
45:e9:a0:46:63:48:ea:f3:03:1f:41:76:bb:1c:66:45:bb:7e:
c0:55:e5:2a:89:f3:d4:d6:21:48:94:63:ae:5a:ff:d4:32:35:
37:0e:a7:81:70:32:f1:c5:7e:43:c4:bb:68:ac:64:bd:fa:88:
38:49:55:55:87:30:f2:00:67:9f:8c:ef:db:b4:9f:12:3a:34:
6f:c6:6b:15:48:e3:52:d6:0a:19:77:5c:36:0a:b5:81:13:34:
f6:7c:c5:c7:02:e7:8b:98:b6:29:00:51:8b:fb:34:8d:e9:db:
1c:19:5e:7c:96:0e:96:6d:b5:29:af:88:f8:0e:ae:c3:9f:e4:
c0:44:68:03:cd:b6:af:e0:72:63:12:b5:fd:24:aa:89:61:02:
d9:81:2b:89:18:5d:ce:55:74:36:a4:fb:24:64:75:f4:55:19:
93:77:78:1e:a0:91:89:26:66:a4:fa:5f:2f:9a:5c:44:f1:05:
12:6e:10:dd:0c:ea:d1:27:8b:7f:32:45:8b:ce:77:61:0f:5e:
9f:8d:99:49:ca:27:0e:30:70:3b:da:ed:89:e0:5e:ee:e0:2c:
9f:87:2f:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 18 09:58:22 2024 by rpki-client on console-fra.rpki-client.org