Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/mpYgaw83IiB17WNC8FSxGZNoIyE.roa
File: mpYgaw83IiB17WNC8FSxGZNoIyE.roa (raw, json)
Hash identifier: c1TL+/zOKN/AKoDwwzkx7VMeU6JBuQ7ZaiIPh8LXngg=
Subject key identifier: 9A:96:20:6B:0F:37:22:20:75:ED:63:42:F0:54:B1:19:93:68:23:21
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185E48AFB11C2462F8A121602683E0970D1
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/mpYgaw83IiB17WNC8FSxGZNoIyE.roa
Signing time: Tue 24 Jan 2023 16:09:51 +0000
ROA not before: Tue 24 Jan 2023 16:09:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211946
IP address blocks: 2a0e:b107:1c35::/48 maxlen: 48
2a0e:97c0:148::/48 maxlen: 48
2a0e:b107:1c3a::/48 maxlen: 48
2a0e:97c0:143::/48 maxlen: 48
2a0e:b107:1c3f::/48 maxlen: 48
2a0e:b107:1c34::/48 maxlen: 48
2a0e:97c0:141::/48 maxlen: 48
2a0e:b107:1c39::/48 maxlen: 48
2a0e:b107:1c3e::/48 maxlen: 48
2a0e:b107:1c33::/48 maxlen: 48
2a0e:97c0:142::/48 maxlen: 48
2a0e:b107:1c38::/48 maxlen: 48
2a0e:97c0:145::/48 maxlen: 48
2a0e:b107:1c3d::/48 maxlen: 48
2a0e:b107:1c32::/48 maxlen: 48
2a0e:b107:1c37::/48 maxlen: 48
2a0e:97c0:146::/48 maxlen: 48
2a0e:b107:1c3c::/48 maxlen: 48
2a0e:97c0:149::/48 maxlen: 48
2a0e:b107:1c31::/48 maxlen: 48
2a0e:97c0:144::/48 maxlen: 48
2a0e:b107:1c36::/48 maxlen: 48
2a0e:b107:1c3b::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e4:8a:fb:11:c2:46:2f:8a:12:16:02:68:3e:09:70:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 24 16:09:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a96206b0f37222075ed6342f054b11993682321
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:70:02:ea:e7:bc:d4:57:35:d3:8f:5d:2e:23:
7c:d2:76:a7:1e:1a:40:eb:69:ef:3d:bf:6d:3c:5c:
76:57:a2:49:1e:e4:94:5d:34:36:55:0b:9b:46:23:
19:aa:5c:2a:cf:44:30:ae:df:cb:76:b1:fe:2e:2a:
94:24:5f:03:c6:21:12:c4:5e:ae:fd:b1:5d:5b:b1:
48:b4:41:d9:2f:c2:18:53:d9:43:40:63:13:85:23:
54:d9:55:1d:dd:5f:9e:f4:e3:ea:a2:bb:91:d1:c9:
a4:d8:db:80:ed:fe:f2:be:69:e8:88:cc:2a:65:4a:
eb:29:59:a8:b3:1f:c3:e5:05:20:b3:51:08:9a:af:
4b:2a:2e:ee:64:6e:12:77:29:65:5a:38:e2:43:77:
57:df:f6:73:bd:33:49:64:f5:ec:ed:42:bb:fe:03:
0b:33:a8:5e:1c:12:e2:e7:e1:27:0a:f8:c3:fc:a4:
02:2b:e7:f5:50:29:92:bf:7f:6f:ba:ca:9b:65:e4:
fd:c9:5a:2f:f4:6d:68:00:da:86:7d:4d:f4:d0:72:
3f:0d:50:08:7a:b2:94:91:da:a2:be:9e:0e:f6:42:
78:ac:ba:aa:ad:b5:05:bf:7c:3c:09:da:43:9c:0a:
3a:3b:dc:6a:ef:71:50:b3:a9:e4:5d:ad:84:5d:c4:
8f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:96:20:6B:0F:37:22:20:75:ED:63:42:F0:54:B1:19:93:68:23:21
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/mpYgaw83IiB17WNC8FSxGZNoIyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:141::-2a0e:97c0:146:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:148::/47
2a0e:b107:1c31::-2a0e:b107:1c3f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
31:b4:82:dc:be:5a:2b:0b:6b:2e:76:16:28:97:13:53:d6:29:
a9:5a:2c:d5:2e:71:7f:01:64:0a:83:4e:21:5e:9f:d4:7c:46:
41:1e:cf:f6:ab:5d:e4:30:af:40:f7:99:09:2a:38:12:27:ac:
1d:8c:b2:34:0c:ea:f7:e3:45:b8:0c:79:5d:e3:db:7f:10:ee:
a1:59:44:b5:05:dd:61:d0:5f:cd:b3:5d:62:5c:e4:5e:4b:c3:
6f:a0:18:31:d9:f1:6f:85:07:44:b1:b9:c1:c5:48:4b:75:4d:
5a:36:92:2b:3d:fc:b2:77:cc:fd:e9:df:d5:64:8f:0f:3b:a2:
7b:a7:1d:8e:b4:00:2c:ae:9e:ee:c2:72:dc:8d:af:ff:9c:f2:
87:c0:fb:d8:01:04:3e:b7:3d:cf:f9:64:af:57:82:4d:13:25:
50:7e:29:9e:d8:ed:05:93:bd:1d:95:4d:60:82:89:ce:fd:39:
d0:38:74:0c:e0:0b:00:70:f7:42:c8:23:f4:d0:da:18:45:0c:
39:14:fa:74:b0:93:c1:77:ee:05:e2:19:70:90:fd:8e:92:47:
f3:ce:35:11:50:94:54:73:09:03:68:62:90:9e:4c:7b:af:4e:
99:d4:0e:34:e7:fc:27:e3:a2:63:94:49:eb:7b:14:05:a1:19:
a6:71:7c:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:52 2024 by rpki-client on console-ams.rpki-client.org