Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lrYWOA4qWzIwEQWVkzjJYdWc5Go.roa
File: lrYWOA4qWzIwEQWVkzjJYdWc5Go.roa (raw, json)
Hash identifier: 0Iha+KrVaB66ky5A6k+dTyQqpvYV4Cse362KsJyULmE=
Subject key identifier: 96:B6:16:38:0E:2A:5B:32:30:11:05:95:93:38:C9:61:D5:9C:E4:6A
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018D5B6F0A19DB57B51512AD8CD781DD84E2
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lrYWOA4qWzIwEQWVkzjJYdWc5Go.roa
Signing time: Tue 30 Jan 2024 17:33:40 +0000
ROA not before: Tue 30 Jan 2024 17:33:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49953
IP address blocks: 2a0e:97c0:680::/45 maxlen: 48
Validation: Failed, certificate revoked on Sun 04 Feb 2024 18:33:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5b:6f:0a:19:db:57:b5:15:12:ad:8c:d7:81:dd:84:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 30 17:33:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=96b616380e2a5b32301105959338c961d59ce46a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:df:f3:f5:98:89:8e:72:6a:90:eb:6d:d6:80:
f1:3b:f7:b6:eb:37:36:4e:e3:bc:90:86:a4:f7:4c:
7c:c8:cd:56:bd:48:6d:08:a1:1c:f6:f4:37:62:5d:
3b:c3:00:2e:dd:ec:6a:05:26:bd:5a:36:7b:17:75:
3c:ab:a0:0c:4c:93:3a:4e:c4:df:20:4d:1c:a6:33:
b8:d6:23:79:26:c1:f8:71:00:7c:b0:8a:0e:81:0e:
95:29:59:6f:81:3a:70:a2:30:b7:7b:f3:3c:11:56:
d2:8e:7e:38:3e:66:8f:fe:ce:70:dd:e4:09:2b:43:
37:1b:66:98:7d:54:5d:37:1d:6e:8a:f8:4b:78:c5:
e1:4d:f7:64:06:23:49:b5:24:05:db:f5:d3:0e:c8:
d5:19:77:d3:34:67:a6:bd:7a:2f:ff:38:53:8b:6e:
ec:fa:d9:ba:6a:7f:bd:42:25:a9:1f:f3:5a:a7:39:
07:e7:26:73:d1:59:71:93:24:53:52:dc:04:3a:65:
35:d0:58:cf:31:55:c0:d4:be:43:90:8b:c3:83:d3:
43:fb:a7:5e:cf:fa:ed:21:cc:66:e6:34:ec:23:fb:
59:8e:41:31:84:e2:69:b1:b2:3c:11:10:72:21:31:
d3:fa:42:20:20:65:76:68:33:72:d0:bd:0c:3c:b3:
9d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:B6:16:38:0E:2A:5B:32:30:11:05:95:93:38:C9:61:D5:9C:E4:6A
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lrYWOA4qWzIwEQWVkzjJYdWc5Go.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:680::/45
Signature Algorithm: sha256WithRSAEncryption
3a:00:53:c3:67:fc:d6:85:c4:01:3f:75:a4:19:ec:ec:18:de:
fa:e7:29:04:39:72:81:03:89:52:e3:16:69:03:66:be:f0:6a:
11:2a:a8:ac:b6:d1:43:1f:17:4d:34:11:3e:92:11:7b:20:7f:
38:e6:fe:a2:d5:b9:24:ff:dc:67:3e:80:a5:2b:8c:87:7e:3a:
c3:49:f2:33:85:7c:fe:bc:98:d5:63:86:7d:7a:bc:4b:4a:44:
4e:8b:c2:73:94:e5:1e:0d:63:73:60:c5:1a:45:a4:72:4a:13:
2f:14:1a:6a:be:d8:ef:2a:a6:34:4b:40:d3:e0:5c:01:da:4e:
32:01:28:79:fd:53:59:98:49:c0:1b:1e:79:56:a5:1c:d4:39:
20:df:49:79:b0:ec:41:1f:26:52:82:1c:b8:a6:b0:88:13:e7:
99:30:f3:31:ac:64:df:cc:71:52:db:37:09:24:b1:71:e2:b1:
e8:e0:e1:7e:f8:b8:52:ac:dd:43:0f:51:eb:af:38:ec:40:90:
12:91:36:5c:47:e6:85:b8:a8:aa:8b:2a:c9:1b:fa:07:5a:0b:
d3:93:55:a5:07:94:be:eb:67:20:c1:d3:75:b9:a2:91:81:02:
8e:9d:80:0a:42:b3:bf:91:88:04:c7:b7:64:f7:70:c5:34:23:
d6:0e:68:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 4 21:01:49 2024 by rpki-client on console-fra.rpki-client.org