Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/sRJMd9JHyKqDpyEiCcVshsUJuiM.roa
File: sRJMd9JHyKqDpyEiCcVshsUJuiM.roa (raw, json)
Hash identifier: rMwqr2c59k5sYki89Tw7PGrxnV99VZFit+UPYWt6Sw0=
Subject key identifier: B1:12:4C:77:D2:47:C8:AA:83:A7:21:22:09:C5:6C:86:C5:09:BA:23
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018A7468B28C44081896149D4CBB764745F7
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/sRJMd9JHyKqDpyEiCcVshsUJuiM.roa
Signing time: Fri 08 Sep 2023 10:48:52 +0000
ROA not before: Fri 08 Sep 2023 10:48:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216364
IP address blocks: 2a10:2f00:199::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:74:68:b2:8c:44:08:18:96:14:9d:4c:bb:76:47:45:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Sep 8 10:48:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1124c77d247c8aa83a7212209c56c86c509ba23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b7:46:a9:1e:e7:1c:d4:c4:f9:83:8c:8c:d3:
96:12:5b:5c:ce:bf:a4:47:05:9d:10:f4:6f:90:bb:
7e:b6:92:dd:96:83:85:50:a0:6a:2d:7f:15:41:a4:
58:56:ae:d2:f0:78:31:2b:e3:14:33:b2:35:77:29:
11:7f:52:07:f0:89:9c:ab:79:73:a1:1b:7c:39:fc:
e9:25:e2:fd:98:29:60:96:db:71:7a:ef:dd:5c:ce:
f9:d7:38:1c:58:86:70:07:d4:51:34:2f:e7:92:92:
fd:cf:9f:b2:fe:1d:1f:28:9b:63:ba:58:cb:3a:19:
b0:c1:db:57:df:c6:67:87:01:92:91:0c:cf:d7:cf:
bf:5e:e0:c2:11:4c:53:de:b4:89:94:37:ca:8b:be:
a1:53:f1:f7:a2:b8:2e:9b:50:af:36:e7:f5:89:6c:
44:e4:4c:39:76:91:5e:39:8e:15:ee:9f:19:25:0e:
b2:cd:e8:b1:2c:2e:90:7e:f9:1c:7f:f1:bb:ca:c6:
6d:73:88:f8:f3:a4:a9:69:83:82:c5:93:e3:9c:11:
cc:a0:de:31:a6:ac:74:10:c2:c1:b9:c3:0a:c9:ad:
33:12:ba:72:ab:4d:18:bb:71:e6:61:4b:67:9d:6f:
59:25:c9:b3:b4:4e:f6:ef:1f:e1:a2:5c:b6:2a:b1:
22:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:12:4C:77:D2:47:C8:AA:83:A7:21:22:09:C5:6C:86:C5:09:BA:23
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/sRJMd9JHyKqDpyEiCcVshsUJuiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f00:199::/48
Signature Algorithm: sha256WithRSAEncryption
49:1d:34:13:33:f4:67:d3:57:fd:1e:7c:34:33:3e:f6:4b:7e:
14:b1:f6:b5:3d:3c:b1:8d:8a:4c:1a:7c:12:c5:d6:e4:22:f0:
ce:6c:39:6c:9e:79:97:85:8d:54:d9:4f:77:48:fd:73:2d:91:
80:f0:0d:f8:d9:88:c4:16:75:18:f9:82:80:be:0b:2a:85:c6:
6a:7a:f7:b7:18:ea:90:79:d2:54:8b:bf:24:a8:51:4e:0e:7d:
d0:1a:d8:a8:7d:1b:15:f1:09:e7:c9:ff:e7:5d:24:10:a2:27:
be:e2:6a:6b:ba:ae:a0:fa:61:c7:27:7f:06:93:70:04:08:53:
09:51:cb:36:93:58:04:f2:6d:3f:11:7d:58:b9:ca:0b:35:33:
27:11:36:f4:19:e0:ea:55:bd:27:4f:71:87:36:f2:7e:8f:2e:
26:67:59:d5:e3:a8:8a:5b:23:08:ba:56:e0:75:80:50:4e:88:
f4:32:68:0e:4f:cb:d9:4d:ee:06:83:e0:b7:a1:f9:41:83:b6:
48:ad:24:bc:39:74:c9:ee:9d:83:03:55:6a:56:83:82:d3:18:
95:08:9a:d3:87:13:66:25:61:09:ff:8a:23:68:e7:4e:55:5c:
47:fb:ce:74:39:ea:58:5e:19:4d:d3:ab:7a:3c:d4:80:8e:95:
3d:7c:17:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:33 2024 by rpki-client on console-fra.rpki-client.org