Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/tAY3FLe35yFTeq0_bc69xleaWTM.roa
File: tAY3FLe35yFTeq0_bc69xleaWTM.roa (raw, json)
Hash identifier: U0ZSsoKbFP9FUGsjzvic9wcMIwPBTliYBUpT6TZJH/Q=
Subject key identifier: B4:06:37:14:B7:B7:E7:21:53:7A:AD:3F:6D:CE:BD:C6:57:9A:59:33
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018FB5C4C706A0BAA2F653A60F7062256FAF
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/tAY3FLe35yFTeq0_bc69xleaWTM.roa
Signing time: Sun 26 May 2024 16:38:43 +0000
ROA not before: Sun 26 May 2024 16:38:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214953
IP address blocks: 2a06:de07:de00::/48 maxlen: 48
2a06:de07:de01::/48 maxlen: 48
2a06:de07:de07::/48 maxlen: 48
2a10:2f01:403::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 27 May 2024 10:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b5:c4:c7:06:a0:ba:a2:f6:53:a6:0f:70:62:25:6f:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 26 16:38:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b4063714b7b7e721537aad3f6dcebdc6579a5933
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:15:69:b2:fa:a9:ec:f8:15:3a:5b:67:4e:a1:
61:0a:7d:d2:bc:c7:b8:e3:a8:2a:b0:1b:37:50:5d:
b8:1a:70:07:81:4d:8c:b1:c1:30:77:e4:91:c0:89:
41:42:6c:9f:d8:1c:6d:17:ee:d4:69:78:92:34:ce:
e4:6c:bf:63:02:62:37:d8:b9:76:98:fa:05:d8:b9:
e7:df:0e:45:8e:94:cd:0a:4f:54:65:8c:8c:9a:a5:
0c:50:ba:3e:b3:69:eb:02:c9:cf:44:21:dc:d7:8d:
f2:93:b7:9d:8b:38:03:a1:c8:cc:8b:40:a0:44:81:
52:71:a9:98:6e:81:1f:57:b4:fc:bc:bb:41:e7:f4:
43:e5:b3:e4:f2:7e:e0:73:b0:f2:a6:43:0e:7e:69:
b2:8c:a1:76:54:b4:ec:ed:91:bc:bd:e9:6b:a5:a1:
54:78:7e:f6:7a:ba:81:b9:11:96:db:29:f7:23:02:
7f:88:18:dd:d3:93:d7:7c:17:94:39:14:e7:d9:fb:
d3:76:b9:cf:1f:10:81:fe:8b:d4:69:17:e8:1c:f5:
a4:a1:f7:f2:3c:32:e4:10:0a:69:25:73:49:6e:31:
f9:46:9d:2f:9e:9f:36:85:e3:65:90:aa:d4:9a:15:
d9:9f:b5:68:6c:59:f8:63:c0:a1:e0:2b:47:b4:62:
d4:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:06:37:14:B7:B7:E7:21:53:7A:AD:3F:6D:CE:BD:C6:57:9A:59:33
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/tAY3FLe35yFTeq0_bc69xleaWTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:de07:de00::/47
2a06:de07:de07::/48
2a10:2f01:403::/48
Signature Algorithm: sha256WithRSAEncryption
8c:e6:73:8a:f0:4a:66:63:3f:32:1d:5f:74:3b:4d:63:fb:42:
4a:50:a1:0c:10:e5:80:2c:37:37:f1:b4:63:cc:73:dd:b3:31:
87:37:5d:02:60:1b:01:bf:14:1c:15:48:8e:5f:0c:0d:28:80:
2e:7b:b1:11:73:ac:3e:31:02:08:80:39:2c:b0:5a:c5:d4:5c:
ee:75:84:1e:91:d8:1f:a9:a7:31:44:48:19:87:77:37:56:12:
15:fd:e6:98:db:52:49:58:c6:e1:b6:01:74:e6:c9:84:30:7e:
1c:ba:2a:13:3e:e1:35:f5:1a:62:95:6f:1c:46:a4:75:43:1c:
b9:a4:30:93:bb:66:4f:6e:af:e7:3e:3f:07:c4:9b:b6:8f:fa:
3d:44:1b:40:ba:56:39:28:39:21:c9:98:cb:ed:0a:fd:96:b8:
31:c4:47:ea:af:1d:1a:43:bb:5a:77:41:b7:e5:e9:bb:64:90:
0c:cd:46:06:bf:20:b2:19:88:b1:1e:ad:a8:d0:76:2d:10:8a:
5b:f1:0f:fe:89:7c:ad:d2:f0:80:50:f7:88:d5:56:4a:92:e8:
ec:b3:f1:c3:86:ac:45:84:2d:fe:b8:23:6c:a8:be:0a:f7:6b:
5c:7f:e1:4e:46:a7:e2:99:1a:65:f6:51:b1:a3:ff:e8:dd:d6:
61:59:9d:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:33 2024 by rpki-client on console-ams.rpki-client.org