Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/df7d6a-4592-400b-ade4-0ec5235d4e9f/1/0GQIrqabXLLA8nCA5N81WSrlhMo.roa
File: 0GQIrqabXLLA8nCA5N81WSrlhMo.roa (raw, json)
Hash identifier: QisMqejc08hlQFr/Rb045Pn0HmEeVYOLkBLUQE61+ec=
Subject key identifier: D0:64:08:AE:A6:9B:5C:B2:C0:F2:70:80:E4:DF:35:59:2A:E5:84:CA
Certificate issuer: /CN=21df245ead9980d2b39533782f65d7566d0462d1
Certificate serial: 018AB68050B762D2064AAE37537502145A00
Authority key identifier: 21:DF:24:5E:AD:99:80:D2:B3:95:33:78:2F:65:D7:56:6D:04:62:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Id8kXq2ZgNKzlTN4L2XXVm0EYtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/df7d6a-4592-400b-ade4-0ec5235d4e9f/1/0GQIrqabXLLA8nCA5N81WSrlhMo.roa
Signing time: Thu 21 Sep 2023 06:49:37 +0000
ROA not before: Thu 21 Sep 2023 06:49:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211368
IP address blocks: 2a10:f2c0:400::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b6:80:50:b7:62:d2:06:4a:ae:37:53:75:02:14:5a:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21df245ead9980d2b39533782f65d7566d0462d1
Validity
Not Before: Sep 21 06:49:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d06408aea69b5cb2c0f27080e4df35592ae584ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ab:c2:fa:79:47:0c:28:a1:a2:5c:a4:99:48:
89:01:11:af:9c:13:30:9a:de:4c:a4:06:85:d5:4e:
46:ef:09:cc:bc:43:bf:8c:d1:16:14:07:7f:bc:10:
56:61:0b:f1:de:21:f1:33:43:5c:fc:4c:34:11:27:
38:44:35:6e:e8:74:dc:9f:c7:0f:41:39:ca:8d:07:
cf:08:5a:65:cb:42:22:a7:71:34:1a:94:5f:1c:a5:
b0:26:c4:1b:be:27:d9:09:bc:d7:3c:41:ff:7a:2b:
05:7d:82:be:52:cc:9f:0d:9a:d5:4c:01:d4:0c:b9:
9b:50:41:31:1b:10:e7:5f:56:5d:c2:80:93:15:8b:
5c:46:6d:ce:18:a2:86:16:60:a0:da:c1:d0:72:a8:
46:f2:74:2f:51:14:2c:2f:50:99:30:c0:1c:eb:a7:
78:f2:98:8a:24:eb:ba:0c:98:ed:99:a9:85:4d:9d:
52:2c:fa:8f:8d:e8:68:8e:05:89:e2:d9:f5:6e:e6:
32:34:ed:88:1b:ea:e3:2d:7a:77:4a:9b:3b:4c:59:
3c:4e:ec:81:e1:f8:94:0c:cc:a3:ee:0f:28:75:3a:
01:17:b7:29:a3:a8:1e:5e:54:49:c3:c0:76:dd:2f:
82:a1:21:62:84:34:cf:ef:ea:66:fb:06:c2:67:ed:
2d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:64:08:AE:A6:9B:5C:B2:C0:F2:70:80:E4:DF:35:59:2A:E5:84:CA
X509v3 Authority Key Identifier:
keyid:21:DF:24:5E:AD:99:80:D2:B3:95:33:78:2F:65:D7:56:6D:04:62:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Id8kXq2ZgNKzlTN4L2XXVm0EYtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/df7d6a-4592-400b-ade4-0ec5235d4e9f/1/0GQIrqabXLLA8nCA5N81WSrlhMo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/df7d6a-4592-400b-ade4-0ec5235d4e9f/1/Id8kXq2ZgNKzlTN4L2XXVm0EYtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:f2c0:400::/48
Signature Algorithm: sha256WithRSAEncryption
82:7c:ae:d8:43:2f:71:4b:b4:04:f5:8e:76:ab:94:4a:ea:ad:
53:56:ac:08:c9:e7:d4:c3:52:9d:36:e6:90:ce:79:21:f2:9a:
68:92:e9:c3:93:41:ea:cc:e9:7a:58:77:65:ee:01:99:27:48:
b6:a9:6a:93:d7:d1:35:93:6a:76:b2:b8:29:08:0d:cb:04:36:
d4:bc:d1:f7:ac:04:25:17:1a:e1:a5:b0:d7:1d:89:54:d2:91:
7d:60:9b:92:dc:dd:26:89:ca:13:7a:fe:0f:43:1e:8f:20:db:
44:50:12:83:33:0c:2a:71:85:ec:3b:fd:b8:7a:3c:6b:a9:52:
fc:13:2f:a2:a8:f7:56:43:81:dc:75:2d:93:27:8d:69:6b:ed:
cf:75:6a:18:d9:94:b6:f3:f8:63:bf:a3:3a:e9:8d:cb:4e:ca:
3b:16:08:29:75:6b:fe:8a:5d:08:b0:3a:08:49:81:54:a8:b4:
9f:05:6e:49:02:d2:e4:aa:a0:07:c8:e1:2f:28:93:fd:25:71:
22:be:8d:a2:ed:83:51:08:cf:bb:0d:5b:5c:5e:a4:50:97:35:
6f:33:fb:98:7a:85:8c:98:9c:7a:5f:e8:a5:4b:40:42:63:36:
0c:fe:5d:02:66:66:bd:33:67:e1:d8:4d:96:bf:61:ba:f7:75:
02:3d:10:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:28 2024 by rpki-client on console-fra.rpki-client.org