Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/mj1WTx0ASHFlv0p3JH0PLpsurLI.roa
File: mj1WTx0ASHFlv0p3JH0PLpsurLI.roa (raw, json)
Hash identifier: ZTYY6gt/wAI49cczZbVAqXSCW0ASeisPQb94l1ENQsQ=
Subject key identifier: 9A:3D:56:4F:1D:00:48:71:65:BF:4A:77:24:7D:0F:2E:9B:2E:AC:B2
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018A028CA1589D49528001196DE1A825D90F
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/mj1WTx0ASHFlv0p3JH0PLpsurLI.roa
Signing time: Thu 17 Aug 2023 08:11:25 +0000
ROA not before: Thu 17 Aug 2023 08:11:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 2a0e:97c0:d50::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:02:8c:a1:58:9d:49:52:80:01:19:6d:e1:a8:25:d9:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Aug 17 08:11:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a3d564f1d00487165bf4a77247d0f2e9b2eacb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4d:0f:7e:b5:c0:d2:c5:7f:b4:d6:00:af:ed:
4b:29:58:9c:aa:7b:ac:fe:c3:25:76:79:1e:58:3e:
05:ff:5d:83:8f:da:57:95:f4:6b:17:6e:d1:be:af:
e2:6a:41:b1:61:cb:60:9b:52:98:2b:ee:52:0f:99:
51:16:05:01:2e:f7:d2:9f:b6:92:8d:b1:92:e2:18:
48:89:6b:0a:44:34:ca:a8:e7:3d:be:c8:7b:65:30:
5b:0a:35:a5:53:4b:0a:b7:41:76:b0:25:4a:8d:1d:
52:47:0b:3d:66:6a:fd:88:e5:76:73:34:b6:a0:a1:
e6:ad:f8:63:2c:35:d6:cb:b1:44:92:62:74:6f:18:
bf:44:89:12:a2:18:fa:49:a1:45:9d:8a:42:3b:3e:
55:f8:1a:d1:89:d3:94:92:6d:21:8b:8d:0e:cb:f4:
0f:93:a9:c7:6a:45:ed:86:0c:1a:79:dc:24:97:db:
95:3e:1f:73:66:99:88:dc:b7:e5:57:3d:74:fe:cb:
eb:b0:fe:a2:96:88:b1:9a:c7:31:ee:55:e6:c5:81:
3e:e1:64:f7:4b:ab:76:db:ef:e6:7d:76:13:d9:4e:
55:7b:71:1f:c7:b1:86:32:bc:05:ae:09:d8:3f:73:
59:6c:87:65:8d:02:2d:90:04:32:68:30:5e:9c:29:
ef:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:3D:56:4F:1D:00:48:71:65:BF:4A:77:24:7D:0F:2E:9B:2E:AC:B2
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/mj1WTx0ASHFlv0p3JH0PLpsurLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:d50::/44
Signature Algorithm: sha256WithRSAEncryption
91:33:bd:16:3d:7c:83:4c:35:b0:85:e8:07:7e:b4:81:f2:9d:
95:9e:ad:dd:da:82:66:75:39:aa:ee:66:12:48:3b:2e:87:98:
38:d5:54:7c:c7:13:cc:39:a5:6f:36:12:c8:fe:96:9a:c0:d2:
b3:ba:80:99:5c:f0:ae:aa:ad:b6:06:7d:9c:09:2d:b9:81:f9:
8e:a3:e8:80:e6:85:14:a8:6c:a7:8e:aa:42:64:1c:23:74:57:
31:c6:dd:50:68:5b:ec:82:45:c1:ff:72:03:e3:83:b3:67:e1:
87:b6:f9:8d:d1:f9:a1:14:cc:fd:60:8f:7c:88:d8:74:8b:a4:
69:ca:0f:6c:6d:b9:e7:85:bf:91:71:ee:e7:52:90:ba:03:5b:
ca:51:d1:e2:7c:64:69:e9:9a:6b:df:e5:e4:bd:b3:87:24:58:
e6:b3:31:64:1a:73:b2:60:59:47:63:98:62:3c:e9:66:89:38:
a7:54:9f:3d:65:5c:46:52:2f:7e:48:7f:45:c6:b5:1a:00:9d:
b7:7d:63:bf:cc:2e:e9:8e:b0:99:c1:e4:38:bf:7d:fe:62:33:
ae:5c:aa:62:ad:c4:e9:f4:07:7b:30:f4:bd:bc:12:17:1e:2e:
3a:b3:4c:66:39:00:50:ad:b8:43:89:21:4f:41:7c:db:22:0c:
8a:50:30:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 17 01:38:45 2023 by rpki-client on console-fra.rpki-client.org