Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/e2258d-8bc5-44ed-8073-ae999ed7c5d4/1/t1vM0LQXHq_BTIFNcK6cPj6wJLM.roa
File: t1vM0LQXHq_BTIFNcK6cPj6wJLM.roa (raw, json)
Hash identifier: 2dcmtaZ6+Hq7nDfRKX3h6rpv/1q6rocDWw0TMf0szwQ=
Subject key identifier: B7:5B:CC:D0:B4:17:1E:AF:C1:4C:81:4D:70:AE:9C:3E:3E:B0:24:B3
Certificate issuer: /CN=9b97c22d0b338a8a45aa1345b0917ba0dc973390
Certificate serial: 01856FC28B2F4C8D876F8A40C30418061B6F
Authority key identifier: 9B:97:C2:2D:0B:33:8A:8A:45:AA:13:45:B0:91:7B:A0:DC:97:33:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m5fCLQsziopFqhNFsJF7oNyXM5A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/e2258d-8bc5-44ed-8073-ae999ed7c5d4/1/t1vM0LQXHq_BTIFNcK6cPj6wJLM.roa
Signing time: Sun 01 Jan 2023 23:54:58 +0000
ROA not before: Sun 01 Jan 2023 23:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47869
IP address blocks: 2a10:1440::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:8b:2f:4c:8d:87:6f:8a:40:c3:04:18:06:1b:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b97c22d0b338a8a45aa1345b0917ba0dc973390
Validity
Not Before: Jan 1 23:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b75bccd0b4171eafc14c814d70ae9c3e3eb024b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:78:d6:f5:89:9d:1d:7d:1d:aa:05:74:08:f4:
a2:12:49:8b:f1:8d:a1:92:a6:9c:76:47:0e:c0:92:
e6:16:50:6d:10:72:3c:3d:12:d2:d0:e1:f3:7e:8c:
30:21:4b:e6:d7:a1:cf:90:99:a1:93:4e:f5:61:df:
4e:fc:89:1b:31:59:c4:ba:b3:dc:8a:09:dd:da:5a:
8f:57:24:1f:5a:72:4f:7e:11:cf:ab:b1:89:ac:b0:
74:bd:3d:29:0e:30:6a:95:53:48:71:39:43:78:44:
59:84:bb:45:81:18:ac:4d:03:49:74:5f:1b:11:2f:
ea:79:d2:0a:e1:17:40:88:96:80:2d:27:70:cd:ed:
e1:7d:77:cd:d3:8a:9f:68:b2:83:2d:3a:cc:d2:fe:
f2:78:8b:38:ca:24:64:01:88:38:30:81:ee:fd:db:
0b:8c:e7:40:45:61:9d:fe:85:ee:26:90:45:55:b4:
84:b7:48:b7:ed:45:53:0d:d2:2b:3b:ff:1e:5c:91:
2c:8b:5d:3f:6c:6e:f6:ec:b9:5e:02:79:43:e0:4c:
aa:87:17:6d:33:5d:22:60:24:01:24:32:17:c8:b1:
36:12:e4:07:57:f0:07:d5:e2:4d:d3:c7:98:33:34:
f4:e1:ae:ed:d5:55:48:b0:3b:3f:b3:9a:55:02:26:
29:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:5B:CC:D0:B4:17:1E:AF:C1:4C:81:4D:70:AE:9C:3E:3E:B0:24:B3
X509v3 Authority Key Identifier:
keyid:9B:97:C2:2D:0B:33:8A:8A:45:AA:13:45:B0:91:7B:A0:DC:97:33:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m5fCLQsziopFqhNFsJF7oNyXM5A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/e2258d-8bc5-44ed-8073-ae999ed7c5d4/1/t1vM0LQXHq_BTIFNcK6cPj6wJLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/e2258d-8bc5-44ed-8073-ae999ed7c5d4/1/m5fCLQsziopFqhNFsJF7oNyXM5A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:1440::/29
Signature Algorithm: sha256WithRSAEncryption
af:0a:a3:f3:d7:31:29:8f:25:aa:15:29:10:bc:f1:8a:7c:e0:
dd:d8:1f:49:dd:c8:cb:21:8d:26:81:b7:e7:f4:f4:49:7e:bb:
11:dd:9f:3b:da:ec:bf:b1:e0:ea:3b:95:33:e4:24:2f:91:07:
b0:e0:5b:36:19:46:22:81:70:e9:a1:c5:fd:cb:e2:7d:7e:49:
86:e1:18:68:ac:3f:10:c7:9a:35:f9:49:e8:c6:35:96:5d:24:
cd:60:44:c4:9a:aa:00:15:a6:24:a4:56:ac:a0:d2:4c:12:74:
0e:23:58:c4:eb:38:8f:e5:f9:16:c9:13:8d:9a:44:f5:a9:9a:
19:32:b7:51:10:7e:b2:a7:bd:ed:a8:df:92:87:a6:40:57:e1:
c4:d6:fa:db:5a:3a:e2:48:90:2b:e0:75:51:99:19:f2:f8:fe:
23:1c:8c:ba:c2:89:89:e2:1a:31:e9:da:a0:57:b1:e1:ce:af:
7d:33:ae:ea:5d:b9:8d:de:bc:43:57:3b:09:74:0b:c6:98:d3:
ae:ad:8f:59:d0:19:44:45:14:a5:a2:2e:57:d4:d7:44:67:ba:
58:92:02:72:fb:4c:ef:41:e3:89:ff:ba:28:17:61:b0:16:c9:
94:51:44:03:37:73:e9:da:35:c6:e1:c9:9a:e9:af:d1:ef:9d:
a8:55:7f:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:09:23 2024 by rpki-client on console-fra.rpki-client.org