Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lNIjttX7Jhzn2rRQJYe4NRjKlm4.roa
File: lNIjttX7Jhzn2rRQJYe4NRjKlm4.roa (raw, json)
Hash identifier: nt5PREG7rN8tNEEAY/AQjtW6441GE/dl2jdYicqE2cc=
Subject key identifier: 94:D2:23:B6:D5:FB:26:1C:E7:DA:B4:50:25:87:B8:35:18:CA:96:6E
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018A84CF455252E680628167AFAB14F21CEE
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lNIjttX7Jhzn2rRQJYe4NRjKlm4.roa
Signing time: Mon 11 Sep 2023 15:14:50 +0000
ROA not before: Mon 11 Sep 2023 15:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a0e:b107:1870::/48 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a10:ccc3:ccc2::/48 maxlen: 48
2a0e:97c6:6800::/38 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:b107:5d0::/44 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:97c0:76f::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:84:cf:45:52:52:e6:80:62:81:67:af:ab:14:f2:1c:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Sep 11 15:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=94d223b6d5fb261ce7dab4502587b83518ca966e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:3f:59:7a:29:52:aa:09:9c:66:5a:e2:fc:be:
46:71:a1:95:89:05:93:78:60:08:8d:5f:5f:96:f4:
1e:d2:63:a5:c3:2a:68:8a:f9:e3:27:e7:ca:77:8f:
69:26:a8:ea:be:18:ba:1c:2d:b6:18:d1:a9:e7:b3:
63:2e:c2:e7:d8:cc:44:71:46:cb:60:7e:c2:dc:a9:
26:46:aa:dd:41:6f:b8:74:d9:2a:94:42:07:fa:d4:
f3:79:d0:62:04:f4:92:f0:cb:73:ed:8b:a6:20:c4:
53:34:b3:55:27:77:d1:fd:13:e5:eb:5d:d8:57:15:
6c:58:43:8e:55:c7:c0:ef:2f:33:de:e8:b7:26:eb:
f9:00:9d:a2:39:15:59:75:2b:ac:99:5b:b4:7a:cc:
1e:53:fa:72:c9:dd:f9:20:7a:c1:60:3a:d5:74:b5:
39:22:61:9b:f1:39:7f:f9:ea:0a:3b:5e:02:67:a2:
f5:ff:00:ba:d0:26:fd:6a:af:9d:ff:50:44:3c:d4:
e6:1a:db:0a:fc:ba:cc:a6:eb:5c:1a:3d:4d:ce:dd:
cf:8f:98:2d:28:06:f1:49:02:10:b5:f9:85:cd:e1:
a1:9f:61:0b:83:bc:10:d6:91:99:22:a7:8a:48:da:
1c:19:d3:1f:90:10:c1:47:df:2f:00:78:39:5e:85:
88:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:D2:23:B6:D5:FB:26:1C:E7:DA:B4:50:25:87:B8:35:18:CA:96:6E
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lNIjttX7Jhzn2rRQJYe4NRjKlm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:76f::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c4:ac00::/38
2a0e:97c6:6800::/38
2a0e:b107:5d0::/44
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a10:ccc3:ccc2::/48
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
25:1f:cc:12:03:99:cb:2f:f4:95:da:23:89:d2:27:fe:4e:42:
ba:08:92:cf:5d:31:d9:ec:73:cd:3f:f0:26:5c:1d:16:c5:3b:
2d:7a:ad:5d:19:db:06:f6:aa:24:71:36:26:08:05:2d:35:18:
da:82:e7:42:e2:d6:e2:8b:c1:6e:b8:8f:e8:2a:4d:73:c6:3b:
5e:a1:34:d0:ae:e9:f8:ae:d5:be:09:32:3e:b2:af:42:91:da:
fd:1e:22:c8:a7:17:b5:63:74:02:66:72:d0:5b:7b:26:b9:7d:
18:69:e9:85:59:3c:91:52:a1:c5:38:a5:70:64:3b:51:9d:e6:
1a:34:61:52:f1:ca:e9:9d:bf:05:fd:d6:78:55:cf:2d:e7:3f:
25:4e:b8:4b:12:14:47:16:87:f5:f2:4c:6b:b9:45:a4:8a:fb:
3b:c9:e8:48:58:6d:29:bc:6c:79:ab:05:34:f0:c1:18:82:d8:
d3:fc:83:7a:8d:05:ab:02:e8:35:a9:41:f8:54:a1:7e:26:57:
aa:6a:78:6e:f6:5d:a7:03:ed:2f:ec:ae:7c:24:ba:06:56:d2:
4b:08:71:4e:d4:a3:58:e1:7f:66:7b:a9:0a:69:1a:89:81:7a:
7e:50:8b:7b:5b:4c:2e:15:cb:9b:c5:05:ca:3c:14:d8:93:06:
06:a4:f3:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 11 16:05:57 2023 by rpki-client on console-fra.rpki-client.org