Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lhio0EVbXJT1bSTTPCpwK59eDDw.roa
File: lhio0EVbXJT1bSTTPCpwK59eDDw.roa (raw, json)
Hash identifier: wj71i8rebtR1BInWGEtA4FIjTKFyWUB0YWm1OlLGbRg=
Subject key identifier: 96:18:A8:D0:45:5B:5C:94:F5:6D:24:D3:3C:2A:70:2B:9F:5E:0C:3C
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7E115C453F63AD613C6870051B60F
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lhio0EVbXJT1bSTTPCpwK59eDDw.roa
Signing time: Mon 02 Jan 2023 05:15:22 +0000
ROA not before: Mon 02 Jan 2023 05:15:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209859
IP address blocks: 2a0e:b102:140::/43 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:e1:15:c4:53:f6:3a:d6:13:c6:87:00:51:b6:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9618a8d0455b5c94f56d24d33c2a702b9f5e0c3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:64:e5:40:c4:c1:9d:fc:c7:74:1b:61:15:19:
be:f9:42:64:61:ac:9e:9a:4e:3d:3c:f6:21:1e:00:
6d:49:5c:63:4c:69:04:78:be:83:b2:c9:15:27:50:
7c:27:77:87:28:85:fb:51:af:8b:a8:47:f5:86:64:
08:22:58:40:4e:15:e0:40:f2:3c:fb:96:97:d7:58:
41:a3:a4:e9:18:b2:4f:31:61:46:38:f8:d8:bb:21:
84:53:2a:73:58:4a:dc:d1:29:d0:5d:14:c3:30:04:
5e:25:97:31:d7:f2:5b:53:21:a0:83:cc:44:86:81:
20:13:31:19:3c:fc:9d:29:d9:44:68:b7:82:00:93:
e7:dc:d1:53:e7:9e:75:6a:bd:66:a3:ff:3b:73:4a:
3f:0a:af:fd:42:a8:a6:09:4c:f7:ca:7a:03:c7:60:
fa:df:9d:aa:59:78:3f:e3:3b:df:98:85:09:93:55:
db:fc:4e:cf:9a:72:7d:b4:a5:f5:d4:67:83:86:e5:
26:3a:5a:a6:75:8d:f6:7f:2f:68:77:ae:4a:3d:ec:
56:d4:ff:b3:57:49:e6:b3:9b:70:1b:56:a2:5d:0b:
ca:65:41:25:41:e7:8c:bd:b7:2f:56:ef:95:7b:00:
b8:d9:10:15:70:f4:9c:a4:30:75:2d:46:28:47:fb:
1b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:18:A8:D0:45:5B:5C:94:F5:6D:24:D3:3C:2A:70:2B:9F:5E:0C:3C
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lhio0EVbXJT1bSTTPCpwK59eDDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b102:140::/43
Signature Algorithm: sha256WithRSAEncryption
3e:9f:e8:ce:66:64:c9:df:ec:39:59:bc:42:9e:84:14:6e:94:
67:2d:68:bd:49:15:9a:db:bf:24:4d:bf:25:5f:e3:c4:e7:47:
70:2c:48:f7:f8:6c:dd:72:d6:7b:86:63:aa:57:f1:78:14:b0:
0d:b8:68:d6:84:9b:6e:a6:46:ba:93:48:c6:96:c7:17:6b:e2:
a5:0b:b3:45:1a:a3:d5:d0:ba:4d:4b:49:bd:c1:cd:4e:4f:85:
2a:c0:87:e4:71:53:99:b5:e8:73:03:3c:3d:70:dc:d4:7c:74:
f2:f5:f4:e9:b2:4b:07:10:b9:7e:3e:ad:86:1d:38:82:58:f6:
1b:97:0d:b5:13:c0:06:33:05:4d:60:8d:30:da:d6:eb:39:01:
59:94:f0:fd:c8:96:fa:86:40:d0:ed:38:19:e8:79:e3:8c:a9:
8b:08:28:6c:b7:7f:97:cf:d4:6d:96:96:3b:4a:88:93:00:76:
f2:69:58:df:6c:2e:72:63:4e:eb:3b:49:e1:a6:46:b8:dc:ac:
58:5d:6a:73:cb:99:3d:2f:3e:38:0c:44:35:d6:37:15:79:db:
f6:bd:8a:23:37:d2:3c:b3:29:a3:a1:6e:89:a9:34:ee:9b:b5:
bc:05:da:92:ca:02:6a:24:0d:1a:4c:c4:10:73:97:d6:7d:3e:
30:9a:43:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:03 2023 by rpki-client on console-ams.rpki-client.org