Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/prWM6gWTlfvWVEn41yG2pRy5kj8.roa
File: prWM6gWTlfvWVEn41yG2pRy5kj8.roa (raw, json)
Hash identifier: 5eWg55gBZVrwjWy7DYjmDMHYF36lySgG7hJtJ/Sgzcw=
Subject key identifier: A6:B5:8C:EA:05:93:95:FB:D6:54:49:F8:D7:21:B6:A5:1C:B9:92:3F
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7AA50682174E0E179C7FC261B5EE8
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/prWM6gWTlfvWVEn41yG2pRy5kj8.roa
Signing time: Mon 02 Jan 2023 05:15:08 +0000
ROA not before: Mon 02 Jan 2023 05:15:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202613
IP address blocks: 2a10:cc41:100::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:aa:50:68:21:74:e0:e1:79:c7:fc:26:1b:5e:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6b58cea059395fbd65449f8d721b6a51cb9923f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:16:52:af:fb:c9:a0:60:30:b8:cf:53:c7:60:
06:8e:9c:68:5c:e2:d0:b5:af:20:f5:64:d7:97:c6:
81:39:2d:ab:7e:e6:bd:af:69:b2:1f:c1:2b:01:bb:
0b:de:22:25:49:d0:c7:f4:e9:ca:1c:27:6d:05:d9:
26:6f:f8:16:88:5a:6c:80:34:8a:eb:a6:45:ea:dd:
46:ce:1e:da:11:89:00:b0:f6:0a:f2:c3:76:a4:4d:
08:98:c2:1a:4e:84:9e:b4:ff:ad:64:ee:ee:15:f1:
cb:7a:48:61:c5:6e:d1:ca:5a:68:1d:17:ca:c1:bd:
9e:ed:75:d5:ad:6f:cf:01:80:55:de:e4:51:c3:25:
01:65:40:b3:65:92:8a:f0:9c:54:12:14:a4:58:70:
86:b7:0f:05:42:1f:42:d1:89:7e:83:b1:05:3b:61:
1a:fa:95:31:eb:7e:58:bb:32:3a:b8:2f:7a:89:43:
34:8e:16:17:5c:ef:4f:af:e6:43:bf:f9:bd:2a:e4:
d6:b7:84:ab:b1:60:bf:b7:17:59:56:72:a0:a9:79:
dc:5f:3e:4c:3c:db:2d:0a:8f:2f:8c:7f:ba:73:bd:
87:74:0c:25:6d:4e:ba:10:e1:00:dd:5a:8b:4f:5a:
0b:4c:f9:96:2c:1a:b0:cf:db:29:0d:53:86:34:bc:
c0:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:B5:8C:EA:05:93:95:FB:D6:54:49:F8:D7:21:B6:A5:1C:B9:92:3F
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/prWM6gWTlfvWVEn41yG2pRy5kj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cc41:100::/44
Signature Algorithm: sha256WithRSAEncryption
1b:4c:9d:92:04:24:42:05:72:54:1e:2a:3e:9c:b3:70:25:e3:
51:f3:46:e2:0a:fe:53:d6:e8:fb:63:ae:3a:63:e2:31:c1:eb:
ae:89:54:45:cb:65:2f:fa:91:da:b1:23:99:f5:3a:ca:80:e2:
97:38:96:27:e5:8e:4f:27:a6:fa:f1:9b:b4:69:bc:f6:9a:a0:
03:04:d4:ae:51:c6:4c:4d:ed:59:44:f3:a2:17:b8:5e:26:6a:
80:56:f0:b0:55:49:31:34:42:2f:33:82:34:03:63:0f:19:c1:
ae:b8:f0:33:a2:19:ac:d1:c4:5b:50:11:31:0d:24:d0:ee:00:
f1:87:71:01:60:ef:a8:6e:a9:df:98:90:9c:02:f9:cd:72:6e:
6f:c6:a5:46:33:da:f0:ac:d4:03:d8:59:40:75:a3:17:a2:8a:
02:9b:af:98:7c:84:ec:06:e6:16:e2:b4:6a:39:14:13:38:67:
a9:69:71:4c:c4:61:c2:ed:d3:3f:bf:b3:a2:87:a9:4c:f2:9a:
5c:ad:75:47:f7:5d:b0:60:91:ec:a0:22:79:bc:b6:94:ac:ae:
98:49:cc:9b:07:44:12:f0:04:2c:61:37:38:2d:e8:6a:72:51:
43:16:03:ee:0f:40:c3:d4:fd:98:af:1a:52:ef:89:95:e8:ce:
80:64:1b:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 4 17:41:58 2023 by rpki-client on console-ams.rpki-client.org