Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/sIpG_DOOjQ8_H5jiqJxs6130jWM.roa
File: sIpG_DOOjQ8_H5jiqJxs6130jWM.roa (raw, json)
Hash identifier: jO4evIF7mwhQmMKZj34rv9XlUF1bYienL8xdujTvXzo=
Subject key identifier: B0:8A:46:FC:33:8E:8D:0F:3F:1F:98:E2:A8:9C:6C:EB:5D:F4:8D:63
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7B1DA5F36040AA03BB9892AF59486
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/sIpG_DOOjQ8_H5jiqJxs6130jWM.roa
Signing time: Mon 02 Jan 2023 05:15:10 +0000
ROA not before: Mon 02 Jan 2023 05:15:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203521
IP address blocks: 2a0e:b107:1b80::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:b1:da:5f:36:04:0a:a0:3b:b9:89:2a:f5:94:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b08a46fc338e8d0f3f1f98e2a89c6ceb5df48d63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:58:41:5f:78:2b:86:48:71:47:b0:08:6f:0f:
c8:47:2c:ad:54:bb:6c:ca:ba:0f:7a:04:06:ad:e6:
30:c2:9a:86:5a:ae:82:b1:d5:cd:12:d9:5e:bb:54:
07:df:cb:68:e7:ae:ef:73:29:63:f0:68:37:f0:a0:
a5:12:33:44:92:2a:bd:cc:e5:5b:28:71:6a:71:b8:
cb:8e:cb:b9:cd:b5:3f:36:97:35:87:c9:62:38:eb:
2d:2e:fe:55:6e:34:9f:d6:2d:23:6a:8c:aa:2a:45:
6b:96:a0:11:ec:2f:5e:8e:2f:a4:ad:78:84:b0:2c:
79:af:30:bf:4e:5f:a9:db:25:84:55:af:78:6c:88:
b5:d4:5c:18:6f:42:d5:e1:f2:07:20:30:16:f8:55:
a4:27:01:18:ec:89:e8:22:71:5c:d1:fc:a4:66:f3:
cd:12:89:8e:ac:af:5a:ce:11:48:c1:93:a0:e4:24:
7a:4d:43:b8:0b:ce:ef:80:ad:68:20:01:5b:dd:f3:
1a:5b:09:f0:f7:09:37:93:cc:5e:77:d7:e7:9c:8d:
84:af:97:16:58:bd:62:99:18:4f:37:c5:e8:be:da:
99:f6:33:85:fe:c5:ae:2c:7b:03:9e:7d:fb:4d:70:
17:f3:70:9b:48:c2:43:b5:b5:40:39:fe:38:38:35:
f3:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:8A:46:FC:33:8E:8D:0F:3F:1F:98:E2:A8:9C:6C:EB:5D:F4:8D:63
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/sIpG_DOOjQ8_H5jiqJxs6130jWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1b80::/44
Signature Algorithm: sha256WithRSAEncryption
b5:37:aa:5f:c5:85:e7:c8:2f:cd:28:8c:52:f2:88:a6:11:4e:
ed:48:26:45:e3:79:80:46:7a:01:be:fb:24:e5:9c:f3:72:c9:
f9:13:b9:d8:f9:64:d8:65:10:6b:76:b3:50:3e:09:26:33:50:
f7:88:12:4c:70:76:28:ac:71:cb:7e:38:57:05:bf:f9:5f:55:
2f:87:1c:15:46:1d:f3:ef:aa:1a:90:61:2e:e4:81:ec:18:05:
b2:ea:f9:32:ec:64:40:bd:e1:f4:44:df:33:91:fe:82:0d:d7:
99:73:40:83:b8:68:8d:39:06:b6:51:2d:d2:4c:0d:6b:a8:a0:
6d:9f:12:3a:55:84:6b:84:87:8c:2f:29:27:b0:6d:5c:a4:6c:
af:61:f5:06:5f:54:6f:04:51:07:32:fb:34:cf:36:18:2f:cd:
e3:e4:6c:65:c2:22:97:37:74:b0:4d:95:fa:8d:6e:95:7a:69:
6b:19:2f:d6:3a:c1:53:bc:3e:0e:76:3e:26:b2:d1:f2:77:8a:
08:7b:39:8d:93:41:cf:1d:b1:d6:b6:31:11:ac:cf:eb:80:7e:
96:b6:06:98:56:dd:28:c3:21:b9:e4:04:ea:19:98:21:ee:2f:
17:97:33:71:20:ad:41:40:63:99:77:54:3c:55:e2:77:d3:05:
79:8d:d8:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:20 2023 by rpki-client on console-fra.rpki-client.org