Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zSJ5whkHzhZQrX5BJh3nc8uPapc.roa
File: zSJ5whkHzhZQrX5BJh3nc8uPapc.roa (raw, json)
Hash identifier: s8zgjxhvpvIeTJ2ZTPXp3ALni8+a+Cacv+m30ZTTauI=
Subject key identifier: CD:22:79:C2:19:07:CE:16:50:AD:7E:41:26:1D:E7:73:CB:8F:6A:97
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185E48AD886D34522B3331B052BE68F1121
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zSJ5whkHzhZQrX5BJh3nc8uPapc.roa
Signing time: Tue 24 Jan 2023 16:09:42 +0000
ROA not before: Tue 24 Jan 2023 16:09:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205152
IP address blocks: 2a0e:b107:e0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e4:8a:d8:86:d3:45:22:b3:33:1b:05:2b:e6:8f:11:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 24 16:09:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd2279c21907ce1650ad7e41261de773cb8f6a97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5c:aa:56:38:c7:c8:8e:0a:eb:5b:b4:cd:31:
7e:83:ff:dc:d0:5a:9a:64:ad:40:a1:03:78:cf:07:
0f:bc:c9:17:36:92:c5:2d:56:a4:4e:a9:5c:7c:17:
fd:70:6d:13:91:a0:5a:67:6c:d7:27:ab:7a:dd:27:
40:c8:16:db:d3:d8:47:bb:7d:da:ad:e3:91:70:9d:
97:69:57:c4:53:a4:58:31:06:44:da:da:a5:6d:c3:
df:f9:3e:8a:f3:4c:39:5e:89:3e:ee:a3:98:e5:08:
52:1a:aa:b9:96:89:a7:a3:51:37:ff:65:f7:11:a5:
c3:80:c2:d2:79:3c:84:df:76:40:20:2f:6d:ce:c3:
87:89:ec:b2:ef:00:7f:2d:59:c1:80:ab:3f:bb:36:
1f:d1:4f:98:47:82:75:d8:bf:61:4f:91:46:4f:f4:
6e:8c:15:ab:5b:36:2c:6a:4b:71:15:cb:6f:0a:51:
c7:5f:41:da:09:c7:a2:10:f8:55:f5:f0:24:de:7f:
50:dc:36:25:21:af:6d:29:de:58:ae:39:3a:eb:ec:
48:41:a1:ca:52:cb:19:b4:13:7d:86:d0:55:0b:2d:
a1:7b:16:6b:13:f2:02:1e:a8:36:89:f3:71:db:4c:
d9:21:97:75:42:7b:d2:d1:94:51:40:70:df:44:a1:
0b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:22:79:C2:19:07:CE:16:50:AD:7E:41:26:1D:E7:73:CB:8F:6A:97
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zSJ5whkHzhZQrX5BJh3nc8uPapc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:e0::/44
Signature Algorithm: sha256WithRSAEncryption
8a:87:1f:b7:bf:d7:63:13:68:a3:bb:54:41:6e:0c:37:28:69:
ca:91:29:f5:70:1d:2d:9a:e4:c2:f5:a8:95:8a:7b:e9:b5:7d:
1c:02:2a:96:92:44:5c:ed:df:4a:e1:dd:7f:95:84:30:d7:88:
82:13:4c:94:70:74:f7:26:f4:34:81:fe:42:ea:06:0d:d1:8d:
7d:d8:d6:91:04:1a:82:dc:01:e7:7c:c1:19:f6:be:22:82:c3:
e9:0f:dc:88:c1:ad:44:61:dd:6e:9a:a5:f9:2b:aa:f7:c2:b5:
b7:1b:0a:2d:34:59:e6:47:1e:e7:39:98:a6:38:3b:5b:29:75:
c1:98:77:d2:af:bf:ae:5d:24:a3:8d:4f:20:28:d4:5d:e7:06:
9d:59:5b:7b:86:eb:fa:87:fb:8a:24:47:af:50:2f:cc:cf:72:
b9:53:45:31:f5:e9:07:9c:4d:96:a3:07:57:f6:25:f0:f2:17:
a4:da:b6:37:c7:ae:01:89:b8:cd:71:56:38:63:c1:9d:2e:7a:
2b:7e:cc:8a:08:30:30:d6:cd:99:67:c3:34:a8:2d:d3:24:28:
39:f7:f8:78:91:8b:e2:ff:a3:8e:4b:91:27:5c:bd:6b:68:d0:
dc:94:bc:5e:2d:2f:a1:81:f9:ef:04:f9:17:76:12:ec:74:43:
d6:8a:42:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:52 2024 by rpki-client on console-ams.rpki-client.org