Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/rgLWTzezl90Lgfsx6aF-lqwWjZE.roa
File: rgLWTzezl90Lgfsx6aF-lqwWjZE.roa (raw, json)
Hash identifier: StShNOc2shwJqAu1CSNL6pGn1bbhxNPTQgKq0R/O70g=
Subject key identifier: AE:02:D6:4F:37:B3:97:DD:0B:81:FB:31:E9:A1:7E:96:AC:16:8D:91
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7A6CD921E590EEA8E79ECB217819B
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/rgLWTzezl90Lgfsx6aF-lqwWjZE.roa
Signing time: Mon 02 Jan 2023 05:15:07 +0000
ROA not before: Mon 02 Jan 2023 05:15:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202184
IP address blocks: 2a0e:97c0:c20::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:a6:cd:92:1e:59:0e:ea:8e:79:ec:b2:17:81:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae02d64f37b397dd0b81fb31e9a17e96ac168d91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:7b:26:3f:4f:bc:87:a4:21:c5:1c:ce:55:73:
da:b0:ec:12:cf:98:82:2a:85:83:5c:38:fd:cc:ed:
25:f2:0a:7f:44:b3:9b:b5:2e:e0:47:33:50:2a:10:
57:d4:6d:00:b4:c3:97:90:6c:a4:21:8f:1b:f4:19:
14:36:a7:f5:ee:3a:df:99:a3:4c:d0:19:32:5c:af:
97:30:5e:ac:57:5d:5f:aa:1d:c5:4c:2d:de:1f:44:
73:1c:42:1d:75:fe:04:fb:25:35:8b:48:f9:1d:d0:
a7:bb:bd:13:c8:c9:d2:39:5f:e0:c3:7c:53:45:4e:
83:c1:cd:11:bc:54:1e:d2:51:a9:ab:4f:7c:9e:50:
0d:ea:46:1f:bb:0e:40:65:0c:1b:3e:7f:33:5a:44:
c9:0a:24:27:37:36:b6:25:e4:19:f0:5d:8d:eb:12:
b5:a9:d5:79:fa:6f:68:30:da:ef:15:62:66:3e:02:
4b:75:4d:7c:41:49:e2:28:f2:05:e8:07:f4:0f:46:
04:3c:92:3d:05:f8:8a:58:5c:e9:49:8c:99:a5:b4:
ef:5e:1e:06:6b:7e:c0:1d:9c:19:16:53:dc:40:4c:
77:81:fa:86:50:d7:b5:4d:b3:05:2c:c3:0e:eb:bb:
90:eb:89:51:21:21:15:b6:dd:c0:22:ba:81:54:64:
af:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:02:D6:4F:37:B3:97:DD:0B:81:FB:31:E9:A1:7E:96:AC:16:8D:91
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/rgLWTzezl90Lgfsx6aF-lqwWjZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:c20::/44
Signature Algorithm: sha256WithRSAEncryption
b9:23:f0:e7:28:bd:b3:4b:17:81:2e:80:7d:98:a0:11:5c:49:
fa:24:24:3d:36:8e:15:a1:85:74:53:fe:0f:b5:10:9f:ef:f2:
ea:58:e7:93:85:50:fc:33:fe:f8:34:c4:63:3f:b5:65:bb:0c:
cc:d3:df:c4:6d:6c:16:90:49:e9:91:52:08:69:61:3d:7f:95:
d9:84:7c:1d:76:85:91:e7:be:50:62:6e:ef:14:be:30:c3:00:
93:a8:21:40:f4:60:13:82:cf:44:8f:8a:59:1e:7e:7a:ed:0e:
74:c6:3b:2d:81:5b:40:df:ae:99:4b:c0:2c:8c:dc:cd:bb:1e:
75:54:a6:f5:9c:10:f2:4a:ae:50:d2:e9:ab:a6:2d:1a:6e:ea:
ab:22:e8:71:9f:fe:e6:e8:fc:01:5b:7b:44:d3:dc:ef:07:60:
64:7b:15:61:3f:82:63:a2:02:29:f9:ea:c9:35:d2:a6:e3:66:
2c:7b:c5:49:ee:07:0c:e8:1f:8a:e2:10:e5:46:81:60:5d:49:
74:5a:eb:78:14:70:d3:24:a8:dd:08:3b:ba:a0:b6:33:3d:16:
4b:44:4a:3f:36:80:f8:65:7d:77:c8:65:cc:55:19:e2:c7:3b:
c6:df:20:82:29:b6:db:5e:c4:e6:bc:56:cb:d1:ae:75:5b:5e:
27:54:5c:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:33 2024 by rpki-client on console-fra.rpki-client.org