Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/q7yoXhZsP5uCJTuGn6whAdv8jWY.roa
File: q7yoXhZsP5uCJTuGn6whAdv8jWY.roa (raw, json)
Hash identifier: nlqL0pHab+IpSoyXFSYukLzHkie5gLQf08Y6P1bjGmM=
Subject key identifier: AB:BC:A8:5E:16:6C:3F:9B:82:25:3B:86:9F:AC:21:01:DB:FC:8D:66
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7D12EA306064C4C4A667D2761EF13
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/q7yoXhZsP5uCJTuGn6whAdv8jWY.roa
Signing time: Mon 02 Jan 2023 05:15:18 +0000
ROA not before: Mon 02 Jan 2023 05:15:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207852
IP address blocks: 2a0e:b107:270::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:d1:2e:a3:06:06:4c:4c:4a:66:7d:27:61:ef:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=abbca85e166c3f9b82253b869fac2101dbfc8d66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:7e:05:70:f2:93:fe:68:ac:4b:48:20:13:a4:
93:04:f2:4b:9a:f5:94:34:ca:b1:7b:b0:59:eb:e9:
7c:c5:8a:c7:a3:11:cc:19:dd:76:da:5d:df:bc:ee:
a2:06:13:69:0f:46:b5:7a:d2:38:c1:5c:e1:63:48:
f7:cd:86:13:37:c4:5d:d4:0e:c8:86:e1:1f:85:ba:
7c:1a:0a:61:63:23:d0:a5:2c:9c:3f:3e:9d:30:73:
1a:c0:40:10:cd:be:48:3e:a4:c6:c7:a1:83:6c:56:
e2:c2:ac:bb:9a:ff:a3:e6:98:2d:e5:2b:9b:93:eb:
83:37:03:d9:5e:90:a8:a1:e0:3d:11:8e:98:c0:87:
e8:73:8a:e4:63:2a:fa:e6:11:6d:b2:b3:21:5d:28:
a8:48:28:a7:69:2d:e7:7a:21:6b:c9:e9:fe:78:7e:
ed:5c:ec:97:0c:76:ba:87:e9:54:06:0f:b6:86:74:
2b:68:86:86:07:e2:cd:1e:dc:fa:5e:09:66:7f:b4:
07:c6:be:df:99:b5:42:5c:0a:7b:a6:43:90:4e:18:
d4:81:6f:43:42:dd:99:a7:df:5a:0d:1c:8f:b1:cf:
ea:eb:8b:ad:c6:36:95:12:48:1b:ff:67:32:5a:42:
d8:56:4f:96:53:04:ec:14:48:84:90:f5:0b:9f:11:
7c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:BC:A8:5E:16:6C:3F:9B:82:25:3B:86:9F:AC:21:01:DB:FC:8D:66
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/q7yoXhZsP5uCJTuGn6whAdv8jWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:270::/48
Signature Algorithm: sha256WithRSAEncryption
4a:f8:dd:cb:a5:31:b6:2a:67:31:e9:dd:bb:ac:fa:ac:4e:18:
23:74:c5:c9:04:f4:33:25:69:24:1f:78:02:cb:5d:58:cf:ad:
b5:42:a9:f3:d6:ec:27:fd:f9:8a:c8:5c:45:a7:0f:5a:ba:34:
59:c0:88:f2:34:ad:be:97:dd:88:d4:c3:ac:4b:a1:77:ed:f3:
67:f8:33:6f:90:a8:35:e2:d3:54:d7:9c:9b:2d:55:87:d5:44:
bf:d4:f7:2d:06:18:38:51:01:5d:87:71:c9:0e:46:cb:f9:b9:
8f:81:da:27:cd:18:b0:36:b5:07:60:42:7b:85:8b:46:a5:52:
39:d0:fb:6d:5c:6e:13:df:4c:2c:26:af:a0:ac:05:4e:62:fd:
5c:d3:47:3f:eb:36:83:26:39:9d:19:91:ce:6d:e4:09:bc:ed:
a5:7b:9e:44:dd:61:2a:a4:d6:2e:c6:d4:84:43:81:c4:93:79:
05:74:e3:66:99:23:d0:34:e4:33:10:ce:21:21:a4:91:0c:01:
d6:60:29:0c:e2:74:a4:77:c0:6f:33:e2:8c:91:e9:6f:2f:00:
7c:43:f8:b2:44:7b:d7:ae:c2:b5:59:94:f8:24:1a:48:ba:a8:
30:4f:13:a3:5f:26:c0:56:b4:01:bf:40:3e:24:2d:d2:c8:c5:
c5:95:a0:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:03 2023 by rpki-client on console-ams.rpki-client.org