Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lYy37Mf8eRANsbu7x_a60orql1Q.roa
File: lYy37Mf8eRANsbu7x_a60orql1Q.roa (raw, json)
Hash identifier: Z4lhBijkhbO2mK7MReTXFHQ1lHNRua9yBlVsR2jwLOM=
Subject key identifier: 95:8C:B7:EC:C7:FC:79:10:0D:B1:BB:BB:C7:F6:BA:D2:8A:EA:97:54
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0189EE193F5A4B65B9FFD9604FF627C1D9E7
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lYy37Mf8eRANsbu7x_a60orql1Q.roa
Signing time: Sun 13 Aug 2023 08:52:59 +0000
ROA not before: Sun 13 Aug 2023 08:52:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a0e:b107:1870::/48 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a10:ccc3:ccc2::/48 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:b107:5d0::/44 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:97c0:76f::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 11 Sep 2023 15:14:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ee:19:3f:5a:4b:65:b9:ff:d9:60:4f:f6:27:c1:d9:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Aug 13 08:52:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=958cb7ecc7fc79100db1bbbbc7f6bad28aea9754
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:83:6b:5b:ae:1e:54:77:b5:ba:91:d7:c0:96:
4f:f4:22:28:ce:a3:a4:ce:be:da:98:fa:bc:06:e0:
0f:ab:ec:d8:37:8e:07:4f:ea:3f:69:7e:f9:78:5b:
6d:01:9c:35:fd:53:fc:7d:0e:af:b0:01:0d:22:f2:
92:3d:8d:23:78:b6:be:61:58:3d:08:fb:1e:e2:b0:
ce:a1:75:39:5e:f5:1c:c8:f0:21:99:19:fe:8b:63:
9b:9b:8a:00:3f:94:da:1f:b9:41:4f:e1:aa:b3:fd:
a9:10:16:7c:ee:88:3d:fd:5f:83:2b:aa:45:91:8b:
28:cc:f1:c7:63:39:5c:85:68:ad:82:54:6c:3b:5a:
d7:6f:8e:7b:b2:34:9b:a0:79:9d:50:70:83:05:8d:
6d:57:82:4a:8a:a5:10:06:fc:7f:f6:66:95:e9:25:
b3:36:78:54:01:bb:68:7a:21:82:c7:8b:ca:4d:20:
22:fb:eb:18:08:9c:50:6e:13:04:84:b5:e4:e4:b4:
6a:78:06:ec:38:33:73:fc:d0:28:f5:6e:34:07:15:
9c:10:d1:c0:b4:24:06:a3:aa:62:d0:01:e9:1e:bf:
17:2a:99:c9:27:b1:28:d2:68:88:9d:f7:4e:54:26:
13:59:6c:5f:82:f6:25:1b:5b:1e:02:af:e0:86:a3:
00:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:8C:B7:EC:C7:FC:79:10:0D:B1:BB:BB:C7:F6:BA:D2:8A:EA:97:54
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lYy37Mf8eRANsbu7x_a60orql1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:76f::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c4:ac00::/38
2a0e:b107:5d0::/44
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a10:ccc3:ccc2::/48
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
48:b5:cd:db:90:70:17:a8:b2:09:f8:3f:7c:27:8a:0e:1d:0c:
25:94:98:60:13:7b:01:77:01:fa:63:30:48:61:35:27:62:e7:
64:15:55:c1:9d:e9:35:8d:61:3c:0e:bc:cb:48:13:78:7a:4a:
b8:a1:9e:c2:88:e5:d1:24:80:57:86:af:38:ef:fe:0c:69:96:
54:96:59:4d:db:6c:a6:36:69:60:7d:05:d9:3d:4b:fd:d6:6a:
70:b8:fe:0d:ee:e8:5e:e2:60:fd:4b:e3:17:f0:0b:3f:93:40:
62:0c:8e:d4:30:42:f3:4f:bd:01:14:6a:87:7d:43:e2:7c:66:
64:77:9d:e4:91:81:86:67:e6:b3:0c:1b:92:5b:df:70:99:55:
73:cd:df:2a:85:18:0e:59:d8:d7:98:40:35:f9:00:cc:37:14:
65:fb:dd:55:fa:83:d9:34:f7:51:c8:46:a7:55:7c:ba:54:50:
8d:7e:d9:57:87:2e:5c:48:15:ab:56:e1:63:bf:34:99:8b:29:
85:4b:aa:cb:55:eb:52:7b:6b:ce:f4:6a:e4:48:c0:fb:f4:d4:
66:58:9e:ae:78:ab:11:fb:67:68:8f:92:a2:b0:e6:ac:4f:14:
5f:12:8c:b2:80:2b:57:a9:7e:a7:31:4c:d5:53:2f:c8:d1:c8:
43:72:39:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:11 2024 by rpki-client on console-ams.rpki-client.org