Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/BlTI5Ob2o-qsX1RZiphBIPSOT5Y.roa
File: BlTI5Ob2o-qsX1RZiphBIPSOT5Y.roa (raw, json)
Hash identifier: HTnHAmaqU45ZZmXDDw3miR1O4icyTYe6stX13jc5BKY=
Subject key identifier: 06:54:C8:E4:E6:F6:A3:EA:AC:5F:54:59:8A:98:41:20:F4:8E:4F:96
Certificate issuer: /CN=ed30a131718560a34ab3493884e858ec431f6ad1
Certificate serial: 018BBE30489AFBA01A6851AFF482B8C48A4E
Authority key identifier: ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/BlTI5Ob2o-qsX1RZiphBIPSOT5Y.roa
Signing time: Sat 11 Nov 2023 11:41:57 +0000
ROA not before: Sat 11 Nov 2023 11:41:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47285
IP address blocks: 2a10:ab00::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:be:30:48:9a:fb:a0:1a:68:51:af:f4:82:b8:c4:8a:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed30a131718560a34ab3493884e858ec431f6ad1
Validity
Not Before: Nov 11 11:41:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0654c8e4e6f6a3eaac5f54598a984120f48e4f96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d0:b6:63:3e:8f:22:47:62:db:bf:e3:3a:8e:
4f:c1:57:f6:6c:83:28:f2:2c:ea:b4:3a:6f:66:ac:
99:60:42:4c:b5:7d:df:89:10:70:01:6f:b3:27:82:
9e:9b:93:48:b8:3d:a7:99:5b:ca:24:da:2c:ae:a6:
69:84:af:19:d8:38:5b:2b:e7:08:8c:27:df:ee:c9:
17:63:34:88:e7:10:a6:fe:09:b3:3a:78:33:54:5c:
a7:08:e9:f0:74:36:b5:4a:90:88:7c:5b:91:13:3f:
87:47:2c:e4:e2:44:85:76:25:f7:a3:73:bf:53:71:
99:91:b4:19:70:9b:79:ce:9c:3e:37:3c:d9:26:d0:
3f:1d:01:aa:51:f7:e8:21:9e:4e:21:6f:ee:4f:66:
9a:62:5d:13:15:ec:8d:fa:3e:36:46:f6:f5:fb:44:
7b:d6:20:ac:91:05:42:94:25:88:29:07:59:98:5a:
56:64:b7:e5:22:20:15:db:a9:6d:84:41:ae:58:41:
1e:1a:6c:19:9e:bd:21:03:a9:ac:ef:94:25:13:36:
ec:38:cf:af:3a:56:f8:fc:cd:fa:bd:3c:7c:00:35:
bd:83:2b:2f:36:ef:2b:06:f1:0b:6c:16:2a:14:8f:
05:a5:c5:cc:6f:e4:17:4f:fd:aa:62:d8:7e:cc:a1:
a0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:54:C8:E4:E6:F6:A3:EA:AC:5F:54:59:8A:98:41:20:F4:8E:4F:96
X509v3 Authority Key Identifier:
keyid:ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/BlTI5Ob2o-qsX1RZiphBIPSOT5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:ab00::/29
Signature Algorithm: sha256WithRSAEncryption
35:d8:bd:6c:94:52:e4:fe:16:3f:8a:3f:98:23:8b:40:72:2c:
03:33:da:42:bc:45:0a:2e:bf:3b:4e:c4:8c:d5:28:41:0a:7c:
c7:68:00:48:98:fd:5b:55:59:6c:2e:b1:81:9c:f2:ae:21:20:
87:ce:92:c3:c3:c6:92:4b:22:33:14:de:77:96:f0:3c:04:60:
93:26:e7:b3:b4:51:bb:7b:05:5d:04:dd:9a:01:dc:c0:b2:e0:
97:63:d4:93:8a:34:20:02:be:db:05:ef:18:bd:c0:f6:32:f6:
a0:f9:51:e3:55:bf:50:55:39:fd:cd:09:67:e0:0d:b7:95:1f:
87:59:a9:58:06:7e:a7:d4:1d:2b:10:a8:65:13:8e:c3:e7:48:
3b:de:a1:5c:14:5b:f9:61:15:b6:d1:39:a4:8d:5c:1b:13:e6:
2b:bf:1c:09:8a:21:47:25:0c:b4:cf:88:a6:5c:5f:ff:b8:c8:
64:eb:ea:be:8b:a7:d7:4d:e1:83:da:33:bc:3f:04:84:84:b4:
7d:a9:8a:7b:12:a5:3a:63:d2:c8:cb:71:0a:21:47:19:ae:c7:
a3:75:0f:dc:af:52:7d:5e:b9:f6:2e:59:14:ef:be:82:65:cd:
87:13:5c:13:fa:bf:19:5f:05:da:a8:70:d2:c8:67:df:a8:fc:
dd:cd:73:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:10 2024 by rpki-client on console-ams.rpki-client.org