Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/PquzKW2nHM8y0HWEsEoEHDq-A5w.roa
File: PquzKW2nHM8y0HWEsEoEHDq-A5w.roa (raw, json)
Hash identifier: mRkq418D3kTT0Lg09qtVDBJjg/TLRCU8O0xy8URIAQM=
Subject key identifier: 3E:AB:B3:29:6D:A7:1C:CF:32:D0:75:84:B0:4A:04:1C:3A:BE:03:9C
Certificate issuer: /CN=bbe026ef26920909d931ea4dac9d9390486b4153
Certificate serial: 01856F4B5D27705E608117B502E7DB2C5838
Authority key identifier: BB:E0:26:EF:26:92:09:09:D9:31:EA:4D:AC:9D:93:90:48:6B:41:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u-Am7yaSCQnZMepNrJ2TkEhrQVM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/PquzKW2nHM8y0HWEsEoEHDq-A5w.roa
Signing time: Sun 01 Jan 2023 21:44:48 +0000
ROA not before: Sun 01 Jan 2023 21:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1680
IP address blocks: 2a10:640::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:5d:27:70:5e:60:81:17:b5:02:e7:db:2c:58:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbe026ef26920909d931ea4dac9d9390486b4153
Validity
Not Before: Jan 1 21:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3eabb3296da71ccf32d07584b04a041c3abe039c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c9:99:14:9b:bf:8a:48:37:ad:0d:57:10:5c:
80:16:ae:18:1b:00:01:de:67:bf:28:bc:86:20:41:
57:bb:8c:fa:d4:7a:d3:9e:db:2b:43:d6:0b:ff:6b:
ec:ab:50:10:47:3b:72:8c:de:23:66:17:b4:6e:7c:
df:6a:e7:89:b8:10:96:49:45:00:bb:40:76:7e:2b:
97:58:ac:f8:24:de:3d:65:42:f2:d8:88:29:35:c8:
c2:70:c4:6d:6d:ac:ee:6f:9c:e4:16:9b:b2:56:4a:
08:df:d9:ec:fb:d9:99:56:c6:cc:52:17:7e:c2:76:
a6:48:68:3e:25:09:b7:96:81:53:4d:72:3c:a2:b5:
4a:a8:ed:1d:8d:44:cc:bf:fc:f8:ef:04:4e:33:e7:
fd:9a:8f:6a:32:c5:03:25:8f:15:fe:b8:d2:b4:73:
da:2d:3e:ca:72:c0:1b:ec:dd:62:17:b0:58:64:f6:
c6:12:5c:4b:22:ca:c3:51:e3:5b:be:ad:46:4e:c2:
ad:1e:d3:aa:92:4f:87:31:ec:c7:82:fe:56:a8:e3:
66:a2:32:2a:3c:d0:f1:60:10:71:6a:0a:56:bd:21:
b5:e8:ef:1f:dd:ff:a8:6b:8d:8f:e4:d3:ce:d8:46:
ef:15:51:27:d7:c1:07:e3:ee:0c:c1:09:96:ac:43:
eb:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:AB:B3:29:6D:A7:1C:CF:32:D0:75:84:B0:4A:04:1C:3A:BE:03:9C
X509v3 Authority Key Identifier:
keyid:BB:E0:26:EF:26:92:09:09:D9:31:EA:4D:AC:9D:93:90:48:6B:41:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u-Am7yaSCQnZMepNrJ2TkEhrQVM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/PquzKW2nHM8y0HWEsEoEHDq-A5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/u-Am7yaSCQnZMepNrJ2TkEhrQVM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:640::/32
Signature Algorithm: sha256WithRSAEncryption
38:a3:26:3b:ff:cc:72:9e:b5:b0:df:30:10:7c:a2:89:1f:19:
00:41:07:7f:79:34:91:e7:ae:33:ae:fa:ee:5f:9f:36:eb:1f:
fa:70:53:b0:03:1d:78:43:7c:9d:6a:f5:cf:e9:5a:38:83:44:
b6:14:0c:1e:c8:7c:43:63:8d:08:6e:ef:55:39:0a:5e:c6:d4:
39:19:fe:23:71:08:83:60:58:fd:11:c6:7e:cc:35:19:5f:44:
07:b3:59:7f:d6:8e:68:6a:88:85:e9:44:ff:40:1b:0f:ed:3d:
2f:b5:11:3f:9c:ee:d8:ca:1e:3f:f7:1f:d5:4a:df:25:46:2a:
b2:94:a2:01:5d:7a:4f:50:ac:09:50:55:10:74:ad:f3:86:3b:
fe:d4:0a:ab:98:e2:91:9b:00:39:2d:63:ab:ed:44:d9:f5:15:
02:12:80:2c:1b:af:ad:76:f4:99:3f:b7:8a:05:2c:de:09:9c:
3b:fa:73:e0:3b:c4:4c:75:c7:86:e9:bb:65:d5:57:c1:d1:79:
ff:78:d8:65:04:c6:d7:d0:6e:06:af:e4:92:37:dc:47:74:07:
b8:e6:b0:a6:2a:0f:a3:7b:85:06:7b:9d:b1:32:e5:5a:30:75:
db:93:29:e6:67:0e:9c:04:01:23:1c:95:c4:7d:13:0d:f3:23:
40:7e:09:4e
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVvS10ncF5ggRe1AufbLFg4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiZTAyNmVmMjY5MjA5MDlkOTMxZWE0ZGFjOWQ5MzkwNDg2
YjQxNTMwHhcNMjMwMTAxMjE0NDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZWFiYjMyOTZkYTcxY2NmMzJkMDc1ODRiMDRhMDQxYzNhYmUwMzljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoMmZFJu/ikg3rQ1XEFyAFq4YGwAB
3me/KLyGIEFXu4z61HrTntsrQ9YL/2vsq1AQRztyjN4jZhe0bnzfaueJuBCWSUUA
u0B2fiuXWKz4JN49ZULy2IgpNcjCcMRtbazub5zkFpuyVkoI39ns+9mZVsbMUhd+
wnamSGg+JQm3loFTTXI8orVKqO0djUTMv/z47wROM+f9mo9qMsUDJY8V/rjStHPa
LT7KcsAb7N1iF7BYZPbGElxLIsrDUeNbvq1GTsKtHtOqkk+HMezHgv5WqONmojIq
PNDxYBBxagpWvSG16O8f3f+oa42P5NPO2EbvFVEn18EH4+4MwQmWrEPrywIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFD6rsyltpxzPMtB1hLBKBBw6vgOcMB8GA1UdIwQY
MBaAFLvgJu8mkgkJ2THqTaydk5BIa0FTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdS1BbTd5YVNDUW5aTWVwTnJKMlRrRWhyUVZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9iNzNhZGQtZWEwZi00YzIyLTk4MGUt
MDU5YmFiMDE1Y2MzLzEvUHF1ektXMm5ITTh5MEhXRXNFb0VIRHEtQTV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC9iNzNhZGQtZWEwZi00YzIyLTk4MGUtMDU5YmFiMDE1Y2Mz
LzEvdS1BbTd5YVNDUW5aTWVwTnJKMlRrRWhyUVZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhAGQDAN
BgkqhkiG9w0BAQsFAAOCAQEAOKMmO//Mcp61sN8wEHyiiR8ZAEEHf3k0keeuM676
7l+fNusf+nBTsAMdeEN8nWr1z+laOINEthQMHsh8Q2ONCG7vVTkKXsbUORn+I3EI
g2BY/RHGfsw1GV9EB7NZf9aOaGqIhelE/0AbD+09L7URP5zu2MoeP/cf1UrfJUYq
spSiAV16T1CsCVBVEHSt84Y7/tQKq5jikZsAOS1jq+1E2fUVAhKALBuvrXb0mT+3
igUs3gmcO/pz4DvETHXHhum7ZdVXwdF5/3jYZQTG19BuBq/kkjfcR3QHuOawpioP
o3uFBnudsTLlWjB125Mp5mcOnAQBIxyVxH0TDfMjQH4JTg==
-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:41 2024 by rpki-client on console-ams.rpki-client.org