Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/jzN2a23zUU_FivzSQ6AxgMyuJUY.roa
File: jzN2a23zUU_FivzSQ6AxgMyuJUY.roa (raw, json)
Hash identifier: mOqY4vG4rtYqdD77EpK+bvAxgmXd88QjYxpKZv9BTCY=
Subject key identifier: 8F:33:76:6B:6D:F3:51:4F:C5:8A:FC:D2:43:A0:31:80:CC:AE:25:46
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0187857E593F125650460A6E22C9B85A3A11
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/jzN2a23zUU_FivzSQ6AxgMyuJUY.roa
Signing time: Sat 15 Apr 2023 15:17:42 +0000
ROA not before: Sat 15 Apr 2023 15:17:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203979
IP address blocks: 2a0e:b107:1fe0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:85:7e:59:3f:12:56:50:46:0a:6e:22:c9:b8:5a:3a:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 15 15:17:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f33766b6df3514fc58afcd243a03180ccae2546
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:52:3f:27:80:39:40:bc:87:d8:e1:8a:a6:28:
aa:d8:03:49:cf:5a:ce:af:68:9f:89:fe:6f:15:38:
d1:15:f9:b9:5d:54:cc:29:1d:79:0d:5d:46:6d:34:
c9:00:16:32:0f:cb:e7:9c:3e:16:b0:19:d1:4e:08:
63:cd:80:ad:ea:03:2e:f2:91:0b:d7:0c:54:4d:b4:
58:02:a8:60:5f:62:d9:c5:cb:25:a5:4a:90:d3:45:
82:7d:8a:82:b7:e1:05:f2:fe:b4:6a:1a:f9:55:be:
ec:42:0d:47:7f:7a:e5:42:d4:69:c5:a5:5f:34:19:
c1:5e:80:6a:f4:dc:ba:90:f0:8b:2b:fa:b7:b5:90:
22:73:4a:3c:69:f6:bc:cf:4f:47:09:a8:c4:af:53:
45:97:9a:57:0f:ad:2e:0e:3b:c2:0a:32:3c:8e:5e:
1d:5c:1f:9b:33:77:0e:2f:d0:1f:87:1f:e0:d4:8f:
31:61:00:86:9b:a2:aa:89:ba:eb:da:20:66:34:aa:
0f:3d:5f:12:f5:20:8c:86:01:9c:f8:80:27:ec:2c:
e0:02:a3:80:d2:3b:ae:1d:db:0f:9b:79:85:b7:39:
b7:bd:5b:3c:27:5c:ee:b0:02:d3:16:bd:07:b1:e5:
54:d1:fc:22:ff:b8:da:bd:32:3b:dd:a0:01:27:ed:
4b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:33:76:6B:6D:F3:51:4F:C5:8A:FC:D2:43:A0:31:80:CC:AE:25:46
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/jzN2a23zUU_FivzSQ6AxgMyuJUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1fe0::/44
Signature Algorithm: sha256WithRSAEncryption
90:53:6d:ab:8a:9d:f7:5e:72:73:30:5a:7f:27:30:28:6c:aa:
9b:da:a9:b9:ad:2f:c1:03:d4:47:13:6d:07:e5:f0:eb:24:cf:
d1:c6:35:ad:8a:11:69:a4:3b:ac:f0:59:9c:9a:1c:cf:99:df:
5a:a6:a2:70:8f:35:35:52:64:8e:db:a1:d9:57:0c:0f:14:64:
af:03:2c:e4:fe:7d:d0:d8:72:e3:57:b4:99:a3:b4:26:1e:20:
d1:ab:bb:e0:29:46:f4:8e:a2:54:1e:84:97:3e:fe:cf:8e:b3:
2e:0f:51:fe:35:ea:65:5b:8d:df:4c:03:0a:e8:d3:96:32:49:
d4:57:39:90:1b:3e:44:10:71:40:0c:b0:4f:5e:f5:2f:1a:9d:
d1:74:b1:5d:8e:a3:fd:b2:00:92:42:ef:0f:ae:3b:4d:96:50:
cf:7f:48:3c:0c:ef:3b:62:47:36:17:c0:12:e5:f3:f4:b6:ce:
82:0d:a9:bf:d3:d2:dc:7f:d0:32:3b:d0:c6:8f:64:e5:60:bd:
71:bd:45:75:2a:49:13:88:d5:53:40:17:65:b1:fd:18:6a:a1:
42:d2:7d:38:7c:2d:b8:e5:16:42:4a:33:b5:ad:cd:6e:b3:00:
96:18:95:00:a6:14:ae:01:2b:9b:93:a9:dd:53:5d:82:b2:d2:
27:7e:3c:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-fra.rpki-client.org