Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/p5Z2WI1oNRCaFmnpITW_L9twFIo.roa
File: p5Z2WI1oNRCaFmnpITW_L9twFIo.roa (raw, json)
Hash identifier: Imlgnu04qGfQ/NmGIftaWJGFiqDtAzD0tEMK8vmTHGU=
Subject key identifier: A7:96:76:58:8D:68:35:10:9A:16:69:E9:21:35:BF:2F:DB:70:14:8A
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01871C840A2594C622A4643564DC508890B3
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/p5Z2WI1oNRCaFmnpITW_L9twFIo.roa
Signing time: Sun 26 Mar 2023 06:03:47 +0000
ROA not before: Sun 26 Mar 2023 06:03:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1
IP address blocks: 2a10:cc40:140::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:1c:84:0a:25:94:c6:22:a4:64:35:64:dc:50:88:90:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 26 06:03:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a79676588d6835109a1669e92135bf2fdb70148a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:30:35:ba:fd:e9:ec:2d:c6:f0:d2:a8:31:16:
27:ea:27:3f:6f:12:e6:da:d3:14:22:e6:89:ab:2b:
9c:c2:2a:46:98:1c:5f:cf:8d:d4:2f:13:46:d8:52:
ef:60:48:4d:d3:3a:fd:e8:14:8e:42:0f:f6:66:c1:
11:f1:e2:ae:51:b2:39:13:c9:33:31:16:7c:e0:33:
d7:ff:1b:1f:e3:3f:a3:cc:c4:3b:bf:6b:1a:bd:54:
5a:0c:cf:f5:39:1d:6c:f8:27:73:c0:91:68:4b:30:
83:47:63:36:1a:85:5b:79:23:c5:48:1a:a9:56:9d:
57:a1:c6:74:bb:85:9f:e1:d7:be:ff:33:f5:e3:f3:
fc:a6:fe:d3:88:ef:cf:4c:75:0b:11:fb:a2:44:b8:
e0:0e:a1:34:47:d9:14:61:44:74:ec:78:7a:93:ec:
49:e0:16:e4:1c:97:d6:16:7b:d9:64:0b:44:ee:5c:
1a:30:eb:f6:53:35:f1:c7:7c:18:55:ad:8e:ee:2c:
81:9f:73:cf:ce:7f:32:31:ce:f2:bf:ed:ed:9c:c8:
38:ce:de:27:7c:4d:94:40:df:0a:ca:6a:bb:74:90:
5b:bf:bb:46:6b:78:43:29:eb:b0:ab:8a:72:73:ee:
45:f7:34:ec:85:36:0c:bd:4b:30:18:15:e1:f4:44:
a1:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:96:76:58:8D:68:35:10:9A:16:69:E9:21:35:BF:2F:DB:70:14:8A
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/p5Z2WI1oNRCaFmnpITW_L9twFIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cc40:140::/44
Signature Algorithm: sha256WithRSAEncryption
87:34:28:7f:d8:04:42:b2:dc:b6:ba:fc:90:9f:73:d0:81:b9:
c6:a3:32:cb:72:b5:5a:2f:a1:b6:52:7c:57:47:f3:4d:df:f8:
1f:d0:a5:f2:1c:83:fd:d5:ba:b0:ce:d2:2e:cc:57:b5:a8:a1:
ec:44:3a:86:b2:44:1b:69:5c:aa:46:83:22:83:0f:09:98:b5:
f9:27:0d:dd:1d:66:76:48:38:b7:22:4a:e0:a5:97:2e:c7:75:
36:23:ad:16:d6:9b:3c:cf:af:15:d4:f3:24:f7:d7:4d:8d:a6:
d9:1e:60:b4:20:3f:43:fa:33:18:1a:82:0c:5c:2e:c9:55:b8:
55:7e:6f:2f:96:06:4d:43:ce:7f:63:f9:56:02:95:26:71:90:
ba:cc:58:2c:01:43:05:4a:f6:ac:1c:17:03:d5:2a:58:15:ae:
7d:cc:bd:dd:a5:e1:79:0d:bd:3e:fa:79:f6:95:d1:a2:40:bb:
f9:ad:e1:6b:19:83:2d:4d:72:dd:88:f6:e4:1f:95:24:4c:42:
7f:02:0e:0f:0f:20:2d:ea:77:f8:a9:71:57:a7:c9:2d:fb:1a:
76:f3:9d:df:7b:74:09:52:f2:3e:2e:a2:ef:c2:44:9e:32:b7:
25:a1:7c:d6:73:a6:67:2c:2e:b5:61:e2:79:8b:b8:c9:bc:1d:
2d:a6:82:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-fra.rpki-client.org