Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/p_Ew-28SgBPC_kmiFnYIgLMXqgQ.roa
File: p_Ew-28SgBPC_kmiFnYIgLMXqgQ.roa (raw, json)
Hash identifier: xf1leZyOsUEtycKYWNNwK8SvxFP1vypuyaEM4ttyJDU=
Subject key identifier: A7:F1:30:FB:6F:12:80:13:C2:FE:49:A2:16:76:08:80:B3:17:AA:04
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0191180FAB229C63F60B088D43825189C2ED
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/p_Ew-28SgBPC_kmiFnYIgLMXqgQ.roa
Signing time: Sat 03 Aug 2024 11:46:05 +0000
ROA not before: Sat 03 Aug 2024 11:46:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214645
IP address blocks: 2a0e:97c0:3b0::/48 maxlen: 48
2a0e:97c0:3b1::/48 maxlen: 48
2a0e:97c0:3b2::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 05 Aug 2024 14:15:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:18:0f:ab:22:9c:63:f6:0b:08:8d:43:82:51:89:c2:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Aug 3 11:46:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a7f130fb6f128013c2fe49a216760880b317aa04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:94:49:a0:f4:a6:63:5c:c1:8f:0f:c5:9b:66:
dc:5d:73:52:78:92:ed:ba:23:04:2d:01:34:d2:15:
db:27:c7:fd:62:58:4b:78:09:af:ec:1a:13:83:90:
e1:06:fa:95:c5:ca:39:81:d7:99:78:3c:34:fd:72:
1a:62:f3:56:f6:7a:21:e7:a3:bb:3a:40:bb:9f:df:
38:a6:15:cf:1d:7c:46:64:df:4d:0f:46:88:f7:59:
ad:48:86:b6:e0:16:05:f2:75:b8:26:10:6d:46:64:
3e:03:58:26:3e:ef:78:c9:3a:90:c4:08:4c:b3:7d:
ce:03:7a:ef:b6:84:16:33:bf:4d:d4:82:82:c7:4f:
4e:23:e4:3a:72:65:1f:c3:0b:b5:e6:e3:be:9f:f7:
b5:dc:e1:8d:50:8a:a3:0b:79:e7:04:ec:50:c9:2a:
c6:22:59:d5:f4:43:d4:ce:5e:f2:e1:d4:4c:fe:5e:
27:23:23:cd:37:7e:5e:5a:48:ad:97:37:af:aa:9a:
d3:6e:99:23:1d:e4:55:f5:25:c6:f6:ac:c4:3a:23:
8b:e4:1c:c4:6b:ca:21:cd:c6:de:85:83:2a:a4:88:
91:a9:46:93:fc:87:e7:f0:e2:e8:69:14:00:2c:66:
33:4e:96:1d:01:77:51:73:66:30:fb:1e:ab:ce:9a:
e5:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:F1:30:FB:6F:12:80:13:C2:FE:49:A2:16:76:08:80:B3:17:AA:04
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/p_Ew-28SgBPC_kmiFnYIgLMXqgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:3b0::-2a0e:97c0:3b2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
6d:27:48:c4:c6:57:3b:d3:ce:3a:88:ac:1d:64:38:04:59:d3:
4d:26:0b:81:ea:45:4c:32:ef:9b:9f:8f:d0:27:c9:37:34:18:
57:f7:3a:ec:f6:c8:82:3f:c7:77:a7:b9:e1:eb:38:1b:68:a8:
a4:33:29:26:10:66:8b:3d:ac:12:df:97:18:12:bb:0a:29:fc:
2b:bb:e1:5a:70:ec:4a:92:1e:2e:1c:a8:28:f0:5c:05:b1:4a:
9f:47:7f:c0:66:97:fc:9b:39:63:75:4f:ac:46:db:60:e4:1f:
3e:09:88:e3:8d:c2:c0:61:32:a3:32:2e:0d:97:4e:ed:c9:d1:
1d:c5:90:09:65:5e:62:2f:c8:3a:f6:ba:bc:cd:70:d9:a6:6c:
20:a5:a4:48:8f:af:32:44:9c:22:77:9b:cd:74:46:a4:f6:ff:
a6:23:0d:15:ed:02:ab:f0:2b:0a:06:75:1d:09:a5:23:a1:c1:
08:d6:b2:33:2e:68:b7:ce:66:05:21:c9:77:60:df:c2:f1:e2:
11:58:64:6a:52:75:70:1e:a2:e4:26:ff:fb:18:1d:01:b1:c7:
77:02:07:33:34:35:50:20:35:d4:c2:1d:37:94:3a:d8:44:60:
46:7e:e7:ae:a6:9e:87:ce:15:13:5b:cf:49:38:f6:0e:41:76:
37:67:56:5a
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Aug 5 17:11:46 2024 by rpki-client on console-fra.rpki-client.org