Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/mLzuW1AC-B2kJGFTYOc60dG7h34.roa
File: mLzuW1AC-B2kJGFTYOc60dG7h34.roa (raw, json)
Hash identifier: WxKI7uKrrJE+l2x7V5bU4tjanM3+jBC/beb+LUzWJv8=
Subject key identifier: 98:BC:EE:5B:50:02:F8:1D:A4:24:61:53:60:E7:3A:D1:D1:BB:87:7E
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01886DCA2B1C83091922C8E65B86EF2456A4
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/mLzuW1AC-B2kJGFTYOc60dG7h34.roa
Signing time: Tue 30 May 2023 17:52:25 +0000
ROA not before: Tue 30 May 2023 17:52:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136535
IP address blocks: 2a0e:97c0:83f::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6d:ca:2b:1c:83:09:19:22:c8:e6:5b:86:ef:24:56:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 30 17:52:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=98bcee5b5002f81da424615360e73ad1d1bb877e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fe:e5:e4:fc:93:62:84:3a:f9:cc:59:7e:6d:
f3:3b:85:25:9e:76:60:9f:75:99:c5:c7:34:a6:1f:
58:82:9c:3f:7a:b7:ee:51:27:ca:28:c5:9b:74:81:
72:ce:80:ea:c3:77:cd:ba:1b:25:63:e3:23:f6:1f:
84:bb:2e:98:f4:96:68:33:dc:6d:71:8a:97:29:36:
cd:28:8f:a3:9d:ba:d2:ae:f4:a9:3b:c0:b3:1d:65:
73:44:8d:85:d9:34:76:45:30:f7:72:8e:43:7e:11:
f5:3e:44:43:05:5a:1a:4d:18:7c:1a:66:16:0b:f6:
ac:a5:73:42:69:61:0a:12:57:6e:97:d6:e6:f9:27:
67:54:ce:a4:99:84:71:e4:54:14:8d:87:2f:ff:7c:
0b:24:88:07:4f:08:7b:af:b4:5b:32:36:0c:7e:aa:
72:f3:8b:9f:ac:81:05:eb:b7:ec:4c:64:aa:b0:85:
f3:8b:e4:64:ce:bd:e9:4b:0f:7a:30:f7:a7:e9:76:
f4:00:f4:8b:b4:19:f1:3e:2a:4d:ed:98:4e:bd:04:
50:25:96:08:73:a6:91:2b:ce:e8:28:72:f1:cf:61:
7d:8d:79:05:55:87:ff:5f:5e:a6:a6:ef:7d:06:5a:
7c:ef:a0:8d:df:e1:e9:fe:96:80:89:a8:64:e0:30:
1b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:BC:EE:5B:50:02:F8:1D:A4:24:61:53:60:E7:3A:D1:D1:BB:87:7E
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/mLzuW1AC-B2kJGFTYOc60dG7h34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:83f::/48
Signature Algorithm: sha256WithRSAEncryption
61:ca:07:9e:7e:80:a4:d1:f3:05:c5:48:cf:3e:62:6e:f7:e0:
16:12:09:41:06:75:18:09:8a:1d:0d:83:15:e3:10:eb:e6:2a:
ae:95:5d:00:10:cf:be:b4:66:90:73:ab:e1:1c:27:5f:45:2b:
47:8e:26:0d:80:cb:a9:20:44:a2:7a:37:da:52:93:c6:c0:8d:
6b:fd:fa:f4:ac:00:ab:15:dd:00:82:aa:71:e1:53:6e:9f:59:
71:7f:11:d6:fc:00:bb:ee:36:bc:6f:d5:72:10:d2:d6:ad:db:
05:ee:ef:30:61:b5:65:6a:34:6f:b2:61:68:db:ba:ee:dd:94:
2b:71:e8:02:92:ef:93:c3:50:85:db:22:33:23:c7:70:73:cb:
17:8a:3a:ba:9a:8e:4f:00:91:b9:58:eb:02:bb:ec:f4:51:9a:
30:af:cb:38:ba:80:83:5b:3e:80:82:e9:09:ee:67:66:8d:6f:
a0:be:0e:31:57:3b:76:ad:84:09:b2:36:fc:7b:cf:45:b9:4f:
d6:fd:0c:e1:84:25:68:0a:a0:74:10:69:92:25:7e:7d:59:71:
92:4a:bc:0e:4f:57:56:1b:20:5a:da:b6:34:00:b2:69:d7:f3:
d8:3d:d0:fc:61:4b:0a:e7:20:5f:17:e8:6a:f2:c3:8e:d8:93:
fa:43:69:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:11 2024 by rpki-client on console-ams.rpki-client.org