Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lvBy2yNLOAImDDk69AQN2iHopsE.roa
File: lvBy2yNLOAImDDk69AQN2iHopsE.roa (raw, json)
Hash identifier: rHmOKdQnVPDBzC6Fe2DVo3B0+sg5uhJ5JC9PrjGGp0o=
Subject key identifier: 96:F0:72:DB:23:4B:38:02:26:0C:39:3A:F4:04:0D:DA:21:E8:A6:C1
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0186B28298123BC1EB1BDA0EFC92A3BFF3AD
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lvBy2yNLOAImDDk69AQN2iHopsE.roa
Signing time: Sun 05 Mar 2023 16:02:28 +0000
ROA not before: Sun 05 Mar 2023 16:02:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205212
IP address blocks: 2a0e:b107:2a0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b2:82:98:12:3b:c1:eb:1b:da:0e:fc:92:a3:bf:f3:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 5 16:02:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96f072db234b3802260c393af4040dda21e8a6c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:52:7b:a9:aa:cc:a3:5b:8b:0d:1e:10:a6:1c:
65:26:45:73:4f:2d:17:3d:87:53:fa:24:08:ef:81:
91:2b:5e:85:32:7e:04:cc:f2:fd:f2:34:71:a9:70:
48:40:74:11:27:2c:6a:72:b3:ae:e3:69:13:de:be:
f7:09:a0:32:09:bd:36:f2:85:91:62:b7:a9:a9:ba:
e8:6a:b0:5b:33:60:73:56:9a:a8:8e:ef:21:3a:5b:
bb:3f:ea:00:e3:33:5e:2b:aa:24:29:f3:8a:89:12:
31:fe:98:06:23:76:b6:e7:e5:ee:0b:68:68:5c:d4:
e7:ec:5a:48:ad:03:a4:a9:a7:65:43:dd:0f:7d:05:
6f:7e:54:2b:e4:b5:62:91:ff:d1:3b:84:26:08:6c:
72:82:b1:65:45:6a:c7:01:da:ae:f5:97:58:1c:17:
6d:7d:2f:9a:9f:bf:66:89:2e:a1:25:c4:59:91:89:
66:8b:05:46:6c:66:13:5c:7c:31:69:59:5d:1d:bd:
2d:47:ba:13:81:35:71:53:e7:7b:20:7b:8a:6a:36:
b4:71:2a:4d:95:c7:09:d5:da:f4:16:97:39:fd:e9:
8d:ef:f3:66:4d:66:95:7f:5b:a9:23:93:46:a3:e4:
36:59:62:2f:b9:54:8d:01:dd:6a:af:55:08:cc:91:
d5:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:F0:72:DB:23:4B:38:02:26:0C:39:3A:F4:04:0D:DA:21:E8:A6:C1
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lvBy2yNLOAImDDk69AQN2iHopsE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:2a0::/44
Signature Algorithm: sha256WithRSAEncryption
15:a9:eb:0c:2a:d6:24:ac:fc:61:f1:42:57:5f:2a:4f:15:6f:
61:f7:bc:89:d6:5b:5b:a7:ac:b9:52:24:d2:45:21:31:c8:be:
59:55:7f:70:60:65:9e:33:5b:8a:a5:13:3c:97:92:81:d4:7c:
39:b5:b7:c1:1e:77:09:1b:f5:86:3f:e7:57:4f:be:eb:ff:1c:
30:b1:9b:55:34:58:c0:16:5b:9a:3e:4b:a9:f2:78:35:76:2f:
26:37:13:3a:91:b7:69:d2:b1:a0:72:51:c6:c3:b2:be:e7:b7:
66:a0:8b:67:57:6d:59:e0:35:5f:5b:ee:91:cf:f6:21:81:61:
f4:b6:bb:e7:15:59:ec:6f:ab:9f:76:32:7c:44:5b:b2:62:87:
3a:51:1d:77:d0:f7:19:82:63:51:70:9c:94:3c:f3:59:fb:c7:
25:0e:03:20:ca:8b:45:db:40:cc:83:e0:5c:61:ca:a9:02:6e:
4e:09:c3:f4:2b:79:64:18:95:58:17:08:fa:16:8d:50:a7:90:
38:b4:32:f6:b9:36:64:03:8a:8f:39:21:fa:13:b2:fb:ad:f4:
d1:2e:29:ee:74:c1:ff:b5:81:dd:c1:c2:40:92:02:75:09:64:
3b:a9:ba:d3:ca:68:5c:a5:f1:cf:da:99:8c:b0:6f:52:e5:cf:
9d:3c:d1:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-fra.rpki-client.org