Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lzTRRNioRHNVJ4KIq4Q4lNXI_7E.roa
File: lzTRRNioRHNVJ4KIq4Q4lNXI_7E.roa (raw, json)
Hash identifier: snUZb47MlHzo9qgz3Vs6aTgEjePYFb60mrNpAE8a4zU=
Subject key identifier: 97:34:D1:44:D8:A8:44:73:55:27:82:88:AB:84:38:94:D5:C8:FF:B1
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018B496BB26D51645BBC15C8F0F865CE7C66
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lzTRRNioRHNVJ4KIq4Q4lNXI_7E.roa
Signing time: Thu 19 Oct 2023 19:31:16 +0000
ROA not before: Thu 19 Oct 2023 19:31:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8100
IP address blocks: 2a10:ccc3:ccc2::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:49:6b:b2:6d:51:64:5b:bc:15:c8:f0:f8:65:ce:7c:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 19 19:31:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9734d144d8a8447355278288ab843894d5c8ffb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e6:16:21:8e:0a:35:32:9b:eb:5a:ec:5e:15:
1b:b6:3d:2f:db:9c:9a:b7:ee:94:95:31:90:b2:3f:
3b:f7:a6:d4:77:f0:84:ab:df:fd:1f:31:f4:1f:72:
97:37:51:00:81:3f:61:b5:af:a8:94:c9:fd:16:c8:
47:bc:f5:20:5d:cb:fb:39:94:7e:47:47:3b:5a:e0:
ba:10:76:bc:5d:91:0f:2a:27:65:d8:3a:8b:8c:58:
a3:ae:3c:6f:58:f0:b3:9a:37:7a:f9:c6:0c:68:18:
2e:b2:23:25:1b:f4:3a:ae:44:a6:a0:be:5d:26:a1:
39:cc:34:50:9d:43:36:e9:83:91:22:d2:8d:76:69:
24:b3:02:fa:9e:cd:3e:ae:b7:ac:53:9d:9e:49:32:
3e:3e:d1:90:a0:94:f0:fb:bb:63:5f:3b:33:c7:45:
87:73:d7:fa:f6:16:66:ab:20:0b:86:62:50:53:9f:
99:6d:f8:11:47:68:66:cb:ef:ca:73:fb:c8:c0:72:
5b:8b:d3:de:68:20:99:1e:97:ca:d9:a1:89:14:3c:
0f:77:98:01:94:a4:53:e6:5a:42:20:60:49:cf:69:
b8:ce:eb:fa:35:64:55:c5:28:1a:e3:9b:5c:9c:a9:
5f:d8:eb:d1:d1:fd:f0:9e:a1:4e:59:68:37:9e:a0:
6e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:34:D1:44:D8:A8:44:73:55:27:82:88:AB:84:38:94:D5:C8:FF:B1
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lzTRRNioRHNVJ4KIq4Q4lNXI_7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:ccc3:ccc2::/48
Signature Algorithm: sha256WithRSAEncryption
09:d9:62:ff:a0:db:dd:5d:a0:99:b1:3a:7b:bc:c0:41:ba:be:
1b:17:80:50:17:0c:d3:7a:36:73:15:6a:95:a5:44:c6:ad:3c:
68:2b:70:fb:22:2c:7b:8e:fd:a1:4b:b3:d6:83:d9:d2:e7:d6:
48:4e:ca:86:f4:28:d0:92:84:de:a3:d9:ed:dc:e4:14:23:78:
28:b3:7d:26:2b:07:2f:b3:3c:c6:70:c6:5f:56:30:ec:92:27:
3a:14:c3:f4:d4:c0:9f:0d:5e:b8:fc:04:16:de:90:57:22:f7:
8b:f5:25:e7:13:b4:19:db:ed:89:54:7e:e5:12:ee:65:93:ef:
a6:8d:65:a8:ed:f7:64:44:71:02:8d:53:d7:ef:26:1a:f7:cf:
bb:08:e0:91:de:32:1b:c6:35:5a:18:44:d5:64:a3:28:e8:8b:
96:6d:8c:61:47:35:4d:f8:9f:78:ae:ca:2e:2b:54:6b:87:d7:
5b:d3:b8:79:3c:ab:a8:a9:b3:49:65:05:4e:fa:f3:f0:3b:de:
15:2b:ba:f5:d8:2e:b1:e5:b9:d4:07:de:a5:9f:13:6a:13:fd:
6f:16:e7:fb:82:2f:37:f0:bd:27:92:d4:d6:7d:43:c6:26:13:
16:20:cd:6b:16:77:e9:04:a6:2a:a9:ae:b0:e9:44:6b:c8:cd:
71:fd:7a:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 30 12:12:29 2023 by rpki-client on console-fra.rpki-client.org