Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/q2CHISN9_SnMjTcCT4RjPUMopyk.roa
File: q2CHISN9_SnMjTcCT4RjPUMopyk.roa (raw, json)
Hash identifier: 5k7gSFr3MdIs7781rQz0jrza3OvxzVBYSprzZPqfpvs=
Subject key identifier: AB:60:87:21:23:7D:FD:29:CC:8D:37:02:4F:84:63:3D:43:28:A7:29
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E77A3A0BAAEA5FF084EFDD7759587A
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/q2CHISN9_SnMjTcCT4RjPUMopyk.roa
Signing time: Mon 02 Jan 2023 05:14:56 +0000
ROA not before: Mon 02 Jan 2023 05:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 38173
IP address blocks: 2a0e:b107:1520::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:7a:3a:0b:aa:ea:5f:f0:84:ef:dd:77:59:58:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab608721237dfd29cc8d37024f84633d4328a729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:41:7f:a2:32:ba:21:2a:62:e8:b0:29:df:18:
37:50:cc:79:68:b8:1c:c4:cb:6b:7f:83:7b:c2:af:
c0:08:00:d5:43:33:04:2b:c9:72:63:73:d3:4e:e7:
c2:06:16:8c:ae:59:37:fc:07:3a:40:ea:30:46:a8:
ef:92:f6:97:42:96:c9:e0:5e:69:e4:5d:70:e1:4d:
1c:0e:6f:b1:fd:05:2d:ab:20:f3:48:91:34:ea:72:
02:1a:fd:41:11:e1:d8:67:53:7b:55:7d:92:61:43:
95:ac:fd:11:8b:64:20:6c:1b:82:06:2a:db:0a:80:
5d:e0:18:86:30:bf:c3:1a:78:c0:6e:03:03:05:38:
ce:81:b1:9f:49:80:f7:7b:5d:9f:f2:49:fb:cd:07:
ba:58:d4:2d:ac:fc:81:33:2c:a0:1f:c6:b2:4d:3a:
1f:a0:ae:6c:02:96:05:5e:e7:eb:c6:f2:af:e3:76:
54:6b:d7:3b:1e:50:6a:29:05:63:10:b8:ff:66:8c:
8c:2e:30:1f:d1:a9:57:31:a0:b6:eb:92:49:9a:e2:
32:0d:d8:a6:e1:8e:69:d9:0b:b7:bf:31:c0:cf:ca:
74:70:90:e4:05:9d:0e:d0:21:b6:9f:db:be:e4:2a:
6d:6b:74:33:ca:b7:70:40:aa:ef:86:62:b5:a0:33:
57:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:60:87:21:23:7D:FD:29:CC:8D:37:02:4F:84:63:3D:43:28:A7:29
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/q2CHISN9_SnMjTcCT4RjPUMopyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1520::/48
Signature Algorithm: sha256WithRSAEncryption
75:1a:1c:2a:f1:ec:9d:af:dd:20:61:c1:fd:09:86:b2:9a:99:
dc:6c:33:ab:e6:89:4a:14:48:94:76:73:a3:ff:f7:4b:d4:42:
c5:75:99:a8:36:e7:a4:a2:06:cd:10:38:33:a0:dc:f8:1a:98:
87:54:5e:50:b8:ff:a9:84:e5:f9:0d:a1:f7:8c:4e:92:10:e5:
31:3c:ec:ab:5d:25:a2:9c:82:7c:96:44:62:32:3b:f5:14:a6:
6b:3e:dd:8b:6e:2e:05:7d:b2:9b:e0:19:a5:ca:04:f4:88:7e:
88:ae:31:64:c1:2e:ed:f8:51:57:c2:1c:1f:88:a9:b2:3a:5e:
77:28:d2:de:01:92:25:8b:07:1a:42:d2:d6:8d:7f:ce:ca:96:
6c:8b:af:f2:cf:36:08:39:22:c1:ff:a2:4b:a2:3d:2a:77:a6:
aa:f6:d2:9a:08:b3:e3:bd:49:36:cd:a0:90:47:c1:71:fe:fb:
4e:ef:d7:b0:2c:17:cf:1d:0c:1c:a9:5f:51:bc:ae:c9:6d:2a:
a0:c7:5e:bc:f3:17:cb:30:f9:ea:e6:7c:a4:b8:7e:33:7d:6f:
da:1f:27:4d:9d:df:74:e0:26:1f:86:13:9a:30:4d:ab:f5:0b:
f6:b8:27:ff:03:f3:01:06:57:08:a5:4d:7d:53:51:e4:f7:06:
36:63:0c:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:03 2023 by rpki-client on console-ams.rpki-client.org