Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/oLjTbFfyJpWZOwHNg08hm1rILW8.roa
File: oLjTbFfyJpWZOwHNg08hm1rILW8.roa (raw, json)
Hash identifier: vDZp+7Uv0962I00Zr1maFwGi898d0pPJVzndlf18IDo=
Subject key identifier: A0:B8:D3:6C:57:F2:26:95:99:3B:01:CD:83:4F:21:9B:5A:C8:2D:6F
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01880DA976B8F8ACAE95E6FD6AC4AF908A9D
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/oLjTbFfyJpWZOwHNg08hm1rILW8.roa
Signing time: Fri 12 May 2023 01:53:09 +0000
ROA not before: Fri 12 May 2023 01:53:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a0e:b107:1870::/48 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:97c0:1000::/38 maxlen: 48
2a0e:b107:5d0::/44 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a0e:97c0:736::/48 maxlen: 48
2a06:de01:400::/38 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:97c0:76f::/48 maxlen: 48
2a0e:97c0:73f::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0d:a9:76:b8:f8:ac:ae:95:e6:fd:6a:c4:af:90:8a:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 12 01:53:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0b8d36c57f22695993b01cd834f219b5ac82d6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b1:ff:fa:44:2e:6d:98:be:4a:43:2d:ed:6d:
c9:1c:8b:09:09:ac:2b:1e:19:5b:e0:15:e8:cb:e0:
2d:48:3f:9b:2b:a4:b9:68:d0:cb:cd:88:6c:95:15:
12:60:99:d8:f0:c4:05:53:4c:18:19:3b:45:ff:5e:
a7:e6:2c:a2:71:35:6c:f3:2e:15:a7:a3:c2:82:26:
9a:57:57:5d:82:bd:a5:b5:73:d4:38:3b:ab:a6:aa:
99:67:69:48:0c:87:b2:b0:5c:38:0f:3d:47:0b:30:
e0:3b:be:99:3c:6c:c4:ed:cc:92:d3:62:88:db:6e:
94:0b:ab:b3:25:ba:73:49:58:7c:0e:cf:88:90:2b:
55:6b:3b:f3:c0:51:d3:bb:9e:c6:2f:54:fa:45:59:
48:86:62:6a:5f:c2:b8:c0:08:14:1e:2c:1d:0f:3e:
7d:42:39:f1:52:d4:d6:5f:fb:76:16:a3:b7:4e:d5:
d7:59:0d:e8:92:63:e3:67:e0:a2:97:c3:4c:8b:09:
8f:ea:a5:0f:5a:7a:9c:04:ee:f0:3c:45:7e:dd:dd:
ae:5d:2c:ca:3b:c8:0b:27:38:6f:5a:8b:49:31:ad:
0d:88:14:51:80:5a:8e:cb:d8:3b:c8:c1:82:98:53:
d5:41:0d:52:e9:9b:78:39:2e:8c:cd:46:b1:89:93:
67:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:B8:D3:6C:57:F2:26:95:99:3B:01:CD:83:4F:21:9B:5A:C8:2D:6F
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/oLjTbFfyJpWZOwHNg08hm1rILW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:de01:400::/38
2a0c:3b87:ff00::/40
2a0e:97c0:736::/48
2a0e:97c0:73f::/48
2a0e:97c0:750::/48
2a0e:97c0:76f::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:1000::/38
2a0e:b107:5d0::/44
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
Signature Algorithm: sha256WithRSAEncryption
7b:bd:47:4c:35:d5:87:88:b5:6e:4d:88:f7:4b:67:18:da:95:
97:16:26:cb:d2:ea:1e:1b:ff:e6:8b:b8:0b:ba:bb:f1:c2:66:
97:13:7a:8d:d3:12:3f:a7:fd:73:0f:35:79:c6:e0:ac:55:75:
7f:3b:d6:08:af:0c:04:c8:14:df:72:50:2a:25:6c:84:17:2f:
85:e9:bc:5f:0f:83:02:e2:fb:41:1d:a3:2a:7e:66:f2:51:0f:
c7:05:ce:2d:15:49:db:d9:b6:d3:69:66:cf:72:39:78:ed:62:
8d:9f:ef:4a:91:0a:07:9f:70:e4:f2:d7:70:63:3a:6d:3e:56:
34:bd:54:4b:69:dc:8c:e5:a4:6c:4a:ef:e5:bd:aa:3b:33:20:
ab:90:15:7c:6d:17:2e:5c:01:19:28:67:de:1b:c1:97:e2:4a:
e5:2b:65:c9:b9:50:6e:eb:6f:0d:0b:14:03:68:00:85:51:f5:
d9:95:2e:c0:ea:1b:2d:58:4c:71:4d:94:4a:c0:e6:f6:db:86:
e8:40:6f:c8:d1:02:72:9a:27:d9:0e:e1:03:30:c0:e2:f6:3a:
99:98:ce:e4:3f:68:f0:f1:7b:44:f5:4d:ed:fe:08:f9:43:74:
bf:36:ee:c5:96:12:e3:9c:e6:d3:43:3f:f8:2d:a9:3c:6d:26:
6c:27:f1:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:03 2023 by rpki-client on console-ams.rpki-client.org