Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/vGUiM5ReIz5MPaRWDQWgEP6k8ak.roa
File: vGUiM5ReIz5MPaRWDQWgEP6k8ak.roa (raw, json)
Hash identifier: kAAhW0rw+nF/5zrxqKvfat/Z3sgMUBkX3evCwScASXQ=
Subject key identifier: BC:65:22:33:94:5E:23:3E:4C:3D:A4:56:0D:05:A0:10:FE:A4:F1:A9
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018631CC7A61513E5E4B1C1A23E619606B2D
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/vGUiM5ReIz5MPaRWDQWgEP6k8ak.roa
Signing time: Wed 08 Feb 2023 16:12:09 +0000
ROA not before: Wed 08 Feb 2023 16:12:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199962
IP address blocks: 2a0e:97c0:860::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:31:cc:7a:61:51:3e:5e:4b:1c:1a:23:e6:19:60:6b:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 8 16:12:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc652233945e233e4c3da4560d05a010fea4f1a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:19:09:27:ca:f4:74:8f:56:ce:e2:b0:f9:8d:
ec:97:30:0e:81:d1:0c:42:d6:f3:72:82:0f:1e:d8:
d9:b1:02:01:77:da:da:32:5b:5a:12:77:c7:b1:d3:
00:20:48:73:92:77:88:55:5b:42:07:02:72:79:30:
26:6e:dc:2c:0c:63:c4:2d:e4:3c:ad:09:3f:3b:c5:
64:91:cf:f5:ab:4c:17:0d:cd:d2:cb:e6:77:4e:b8:
17:26:53:25:01:17:01:a3:72:a4:d9:2d:dc:5e:34:
38:58:3b:c4:52:ba:07:b7:ca:78:33:69:00:ec:a5:
c1:53:12:f5:a1:71:ef:f6:98:5c:77:88:c6:5f:d9:
d6:ae:78:23:ac:d6:48:43:ce:fd:a1:61:ef:09:0c:
b8:61:08:19:f7:4c:b7:ec:72:91:40:dd:17:08:91:
e5:3d:ad:f8:05:e3:ee:85:71:6b:b0:47:75:0a:94:
e1:c0:e7:38:9f:0a:3e:7a:3a:10:7d:cd:cf:91:77:
2c:af:b9:ec:b8:84:ac:f2:db:01:38:a1:71:f2:3a:
d4:39:13:e8:29:3c:c3:b5:ea:bc:ff:fd:59:7e:1f:
0c:62:1d:bb:d1:d6:8c:2b:de:b6:d4:56:05:d1:ee:
d3:fb:9c:86:c7:8c:65:0e:9e:32:17:57:ee:d1:07:
c3:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:65:22:33:94:5E:23:3E:4C:3D:A4:56:0D:05:A0:10:FE:A4:F1:A9
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/vGUiM5ReIz5MPaRWDQWgEP6k8ak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:860::/44
Signature Algorithm: sha256WithRSAEncryption
75:d3:d2:2b:4a:0d:8d:1e:d3:0b:f0:f8:b6:a0:f2:60:26:f7:
25:f8:26:31:a4:8b:81:ed:08:d8:74:55:29:6c:82:a2:7c:5e:
09:2f:05:b6:9c:ed:23:b7:87:69:ee:14:62:cf:92:6c:19:15:
68:62:f1:1f:f5:8e:cc:ab:ea:60:4d:3e:51:21:e9:90:0f:37:
65:7d:95:01:e9:5e:82:5e:5f:79:07:14:ee:99:91:ba:64:31:
ab:ba:d3:34:34:bd:cc:fb:08:57:9d:69:01:a3:f9:7d:2c:3b:
40:7e:38:c9:20:6a:4b:ff:e0:ee:a4:79:b2:2c:33:50:1f:e5:
bd:0e:b1:33:33:99:fd:45:19:b3:ba:4e:82:99:db:fc:f6:c6:
c0:04:d9:4c:25:25:ae:a4:6b:8d:17:72:c5:31:b8:7d:a3:5a:
78:68:75:f1:a3:01:73:76:54:0c:1b:db:c9:2a:fd:cc:b1:57:
2b:07:84:64:5e:d4:fc:16:a2:ce:57:27:c2:8d:51:e3:06:ac:
42:f2:bf:50:79:de:65:a8:3f:35:c5:61:59:85:c0:e6:2a:92:
37:33:55:bd:6a:b1:b2:bc:83:89:1a:7d:fd:d3:1c:8d:4f:35:
53:0b:2d:36:36:d9:56:07:de:ed:8b:64:55:98:53:cf:be:22:
70:bf:47:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:52 2024 by rpki-client on console-ams.rpki-client.org