Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/pnMR20S7dU8sm4Jn2CU1E49YiMo.roa
File: pnMR20S7dU8sm4Jn2CU1E49YiMo.roa (raw, json)
Hash identifier: 8iK/AhPpca3Y7br1hCWZatJSLR31FaYLcCVOu8iS00E=
Subject key identifier: A6:73:11:DB:44:BB:75:4F:2C:9B:82:67:D8:25:35:13:8F:58:88:CA
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0187F5734871AFB94EAEED0FD4A5CEABD3AE
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/pnMR20S7dU8sm4Jn2CU1E49YiMo.roa
Signing time: Sun 07 May 2023 09:03:05 +0000
ROA not before: Sun 07 May 2023 09:03:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203472
IP address blocks: 2a0e:b107:2710::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:f5:73:48:71:af:b9:4e:ae:ed:0f:d4:a5:ce:ab:d3:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 7 09:03:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a67311db44bb754f2c9b8267d82535138f5888ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:6b:b9:70:ad:9e:1f:97:d0:85:4c:8a:6d:8b:
68:5e:09:f3:cd:7e:01:3b:ed:94:1c:16:be:04:12:
dd:df:a3:de:ae:09:6c:68:f7:45:15:f8:10:3d:b7:
59:d7:8f:c3:dc:be:39:8f:cb:e5:1f:2a:f7:07:ce:
fc:b8:8e:3e:91:f4:d4:1c:cc:7e:1b:75:97:a3:9f:
d6:b1:29:33:b1:cd:e6:20:f7:c4:fa:5f:f6:a9:ee:
08:4b:b7:a4:66:e5:59:17:69:0d:13:9b:a4:16:eb:
d8:c2:21:16:9c:b0:58:57:d3:fe:26:33:64:17:33:
44:e6:5a:86:46:6d:d3:fd:d9:b5:4d:04:7c:7b:6c:
7a:c5:07:d1:32:40:ef:68:13:f9:65:f6:50:7e:58:
f7:b5:6b:81:63:d5:f0:bc:0d:ef:13:d2:5c:61:8f:
e9:50:b5:86:87:62:35:c1:85:28:c3:b2:64:d8:a1:
ed:97:ff:d4:c3:bd:18:90:5b:c2:8e:0f:28:9c:ca:
00:b1:43:70:94:46:1a:9a:17:a7:b5:be:fa:7e:6b:
71:3d:8c:d9:ff:55:ec:b3:b7:01:40:76:0c:bb:ac:
61:1c:11:14:b1:59:a2:e0:07:b4:67:10:f9:f3:97:
5c:5a:0b:8b:35:83:eb:33:ef:ed:6d:74:56:60:5d:
e5:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:73:11:DB:44:BB:75:4F:2C:9B:82:67:D8:25:35:13:8F:58:88:CA
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/pnMR20S7dU8sm4Jn2CU1E49YiMo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:2710::/44
Signature Algorithm: sha256WithRSAEncryption
a5:76:b1:44:c3:84:48:44:89:22:7d:75:b6:48:f5:30:b3:58:
6e:54:e8:b2:c4:43:a6:c9:0b:9b:eb:cd:d2:8a:17:c3:2a:20:
0b:bb:86:32:1c:1f:77:0e:f7:4a:29:9f:8f:5a:82:07:63:97:
32:28:68:30:9c:f9:94:34:9f:da:5d:e2:a8:d1:81:11:c1:e1:
45:f8:fe:96:c7:a5:6f:38:a6:71:21:e0:cb:ee:4f:31:f8:ea:
5e:48:3a:eb:f0:7f:26:3c:1f:de:a8:ce:24:29:87:4d:0f:1a:
73:c1:49:d5:d1:ac:90:d7:e5:12:c0:fc:b7:84:e6:c8:29:b0:
a3:0f:5c:10:d0:c6:94:7b:87:7a:be:6b:73:02:cf:ce:00:7f:
f2:94:e3:ab:b3:56:20:3d:ec:24:5f:6f:83:1f:c9:91:44:dd:
28:c5:3e:db:54:1b:fe:9b:9d:2b:f6:5f:e3:e0:d4:4f:a4:81:
a2:37:ff:69:80:18:91:22:b0:8b:91:2e:23:ae:b4:0a:5a:5a:
b4:5a:35:44:ad:35:53:e2:13:d0:4d:07:fe:a4:6e:65:1c:6e:
25:2f:92:a7:ad:40:11:8d:f4:0d:50:dc:40:41:0e:4c:ff:9a:
6a:9c:a0:1a:64:13:21:ed:4c:7f:f4:18:38:82:f9:ec:a9:a9:
48:cf:c7:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:38 2024 by rpki-client on console-fra.rpki-client.org