Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/59703f-f003-4845-983a-93e918d10ec5/1/TSE8rlcfgsV-aTfdgz7ZCEZwrV4.roa
File: TSE8rlcfgsV-aTfdgz7ZCEZwrV4.roa (raw, json)
Hash identifier: +VnasVP9qRO+zsOfFjU/j3t6lD0/l044JvnhR9rZPHI=
Subject key identifier: 4D:21:3C:AE:57:1F:82:C5:7E:69:37:DD:83:3E:D9:08:46:70:AD:5E
Certificate issuer: /CN=c2746ccb7e73a9cc30ef04edd7cf16cc1d946894
Certificate serial: 018D4D2669ECF5DF6B9D228B96F867A8DD89
Authority key identifier: C2:74:6C:CB:7E:73:A9:CC:30:EF:04:ED:D7:CF:16:CC:1D:94:68:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wnRsy35zqcww7wTt188WzB2UaJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/59703f-f003-4845-983a-93e918d10ec5/1/TSE8rlcfgsV-aTfdgz7ZCEZwrV4.roa
Signing time: Sat 27 Jan 2024 22:59:39 +0000
ROA not before: Sat 27 Jan 2024 22:59:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25145
IP address blocks: 2a10:7cc0::/29 maxlen: 29
2a11:940::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 05 Feb 2024 11:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:4d:26:69:ec:f5:df:6b:9d:22:8b:96:f8:67:a8:dd:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2746ccb7e73a9cc30ef04edd7cf16cc1d946894
Validity
Not Before: Jan 27 22:59:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4d213cae571f82c57e6937dd833ed9084670ad5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:bd:0c:aa:a2:20:ed:14:10:95:39:3d:39:12:
d5:85:11:5f:1f:11:a3:a8:f0:a9:3c:a2:bb:28:9a:
cc:a7:63:9b:8e:c8:e0:c8:d6:32:ff:49:82:7e:f5:
0f:25:15:29:1f:11:23:a4:dd:5a:5a:cf:6c:f6:97:
8f:b0:de:e2:37:c5:0f:0e:b4:54:3d:dc:ff:ec:a0:
e3:87:e5:9e:cb:f0:96:8e:23:28:1c:e9:f9:75:dc:
9a:bd:2a:aa:7c:45:ad:72:69:d6:af:40:c1:47:7a:
01:38:46:c6:aa:2e:59:60:d1:5c:f9:e7:2e:67:c4:
99:85:3e:a2:be:d7:2c:0a:86:7a:3a:82:8c:67:5d:
57:7d:df:93:8d:eb:b7:76:77:2d:f6:38:3b:35:86:
4c:63:e0:95:38:1e:12:c1:27:db:79:c7:bc:60:ef:
1d:bc:e2:b9:d5:ff:c1:43:f6:c5:a5:07:95:eb:c7:
3a:0e:97:b0:cd:78:22:71:51:51:f0:97:3e:98:2a:
bb:ba:5f:e1:75:4e:b6:cf:cf:5b:e9:8e:74:7d:81:
6f:b9:22:b8:84:05:00:39:68:7e:08:b0:4a:55:55:
fd:60:85:c9:2c:15:09:ac:8b:28:67:2e:d6:63:d5:
fd:c4:6f:0f:af:63:48:61:d8:f5:ea:b0:6c:c7:62:
72:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:21:3C:AE:57:1F:82:C5:7E:69:37:DD:83:3E:D9:08:46:70:AD:5E
X509v3 Authority Key Identifier:
keyid:C2:74:6C:CB:7E:73:A9:CC:30:EF:04:ED:D7:CF:16:CC:1D:94:68:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wnRsy35zqcww7wTt188WzB2UaJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/59703f-f003-4845-983a-93e918d10ec5/1/TSE8rlcfgsV-aTfdgz7ZCEZwrV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/59703f-f003-4845-983a-93e918d10ec5/1/wnRsy35zqcww7wTt188WzB2UaJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:7cc0::/29
2a11:940::/29
Signature Algorithm: sha256WithRSAEncryption
4c:de:42:02:56:3a:a4:8b:17:9b:50:26:39:1a:63:e2:f4:3e:
de:6c:52:f2:ba:ff:85:0c:93:8d:d4:b4:58:3f:52:19:15:0f:
89:70:03:53:a4:6a:f7:8a:de:23:3e:5c:31:5a:bf:70:76:d0:
d3:93:80:0a:f9:a1:12:d1:3e:2c:4d:31:b8:71:66:a5:34:cf:
25:81:40:15:a9:7c:37:c3:b5:72:ba:59:ca:b3:e9:d2:09:85:
cd:b8:e8:df:94:3e:6e:f9:ca:69:aa:d6:15:23:09:09:b7:bf:
99:47:7b:92:f8:6e:4f:fc:e9:63:c8:09:d4:fb:84:c9:92:10:
50:5e:0f:81:5f:b8:77:a4:ba:50:4b:27:6e:fa:80:3c:1c:a9:
67:a9:56:55:be:c9:d6:19:55:da:54:b4:a3:18:5a:d2:92:25:
1a:3e:55:e0:6f:e7:37:11:4a:6c:f7:c6:f4:d9:b0:63:50:94:
2d:a2:79:d3:ab:42:8e:01:87:f5:81:9b:67:bd:e5:72:f8:f4:
37:a5:8d:04:2a:b2:0a:99:d1:01:53:30:be:9d:11:8c:8e:18:
01:5e:6b:77:d5:8d:96:01:21:1a:17:fa:6e:01:c3:2f:33:e3:
b9:9c:af:65:2a:1d:41:b5:08:7c:41:06:d4:b5:fe:c2:ff:ab:
89:86:40:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:28 2024 by rpki-client on console-fra.rpki-client.org