Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/3kSsyTNY96U2tJ8PRS81UNJLOMs.roa
File: 3kSsyTNY96U2tJ8PRS81UNJLOMs.roa (raw, json)
Hash identifier: fN/bt9qzeLozPkvJcg7aEfSnw4v6JoPZ5DDRKrf8puo=
Subject key identifier: DE:44:AC:C9:33:58:F7:A5:36:B4:9F:0F:45:2F:35:50:D2:4B:38:CB
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 018B68C189C0F8A53E04D2D3FC0A6D8CAA0A
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/3kSsyTNY96U2tJ8PRS81UNJLOMs.roa
Signing time: Wed 25 Oct 2023 21:33:16 +0000
ROA not before: Wed 25 Oct 2023 21:33:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216147
IP address blocks: 2a10:4646:3d0::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:68:c1:89:c0:f8:a5:3e:04:d2:d3:fc:0a:6d:8c:aa:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Oct 25 21:33:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de44acc93358f7a536b49f0f452f3550d24b38cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:16:7e:16:47:39:17:76:96:13:ec:d7:2e:f3:
e3:66:f0:c3:ec:fc:e2:ce:49:f2:53:26:b8:d4:03:
f7:41:38:4c:c7:d3:f5:60:44:cf:8f:c5:09:61:65:
51:8d:ad:8d:91:34:6f:4b:b1:07:c5:b6:e6:67:a0:
61:91:5b:e6:c8:5f:ab:71:81:ed:2a:98:18:b5:2a:
dc:d4:f0:1f:a4:f4:d3:46:6b:40:6e:ce:be:08:95:
8c:d5:d9:79:8e:7d:ce:fa:c2:3d:dc:7a:b7:8b:e4:
3a:fd:4c:70:84:27:14:24:6c:3f:5d:aa:44:f0:fa:
f1:9a:9d:cd:db:88:c6:9a:58:08:2e:15:cf:21:eb:
10:2d:b2:70:5c:c0:c8:32:27:59:b7:ed:a6:be:e2:
9c:a7:75:55:06:b4:a9:c6:b0:26:39:b4:76:58:bf:
5f:b2:29:5e:43:f1:7d:b3:4b:5d:08:ef:a3:9d:88:
44:de:4b:54:f6:d9:90:fc:05:8d:17:f9:d0:8e:88:
a0:ee:23:cf:c5:5b:66:ba:eb:c3:75:47:d7:91:5d:
c0:25:9e:b1:3f:4f:18:f1:e7:7c:67:60:57:75:df:
07:a6:5d:9f:b7:32:cc:24:03:a6:63:29:03:61:55:
ca:33:e9:85:22:af:39:e1:26:c9:43:e9:08:a4:e0:
b9:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:44:AC:C9:33:58:F7:A5:36:B4:9F:0F:45:2F:35:50:D2:4B:38:CB
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/3kSsyTNY96U2tJ8PRS81UNJLOMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:3d0::/48
Signature Algorithm: sha256WithRSAEncryption
cf:f8:b7:ed:09:a1:c7:86:a1:13:7d:af:bd:3f:b6:9c:a2:f9:
48:df:57:ff:76:48:7e:f6:f8:e1:37:d6:bf:4d:ab:8f:39:cf:
3c:1e:af:cd:62:99:7c:a8:8b:d6:42:31:b6:b5:16:2e:8d:7c:
97:8d:cb:72:75:0d:96:3e:f2:62:35:05:b6:a2:2b:84:d1:4b:
04:31:91:db:ba:1b:9a:5b:8c:05:8b:6f:ff:de:dc:aa:e3:47:
86:cd:e9:a7:70:d6:a5:26:57:13:b0:88:c7:57:10:83:27:9b:
f7:94:e0:26:2b:36:90:3d:aa:2f:7c:63:a5:fb:58:e0:b2:83:
05:09:b4:b7:a6:b6:c1:52:42:9a:11:fc:b3:e7:73:b6:26:df:
ae:4f:c2:34:e9:04:89:cc:b6:fb:d9:9b:0a:e3:04:88:94:cc:
c7:03:77:d6:cc:17:63:ea:c1:bc:ee:97:f1:1f:2e:8e:f1:6a:
50:7d:db:d3:b6:3d:85:be:56:93:01:6c:20:8e:80:1a:77:aa:
c5:84:ad:18:f6:bb:58:04:93:28:cb:d4:8d:5a:a2:56:03:fb:
f6:a8:e0:f1:4b:d3:74:65:5c:f8:da:75:14:c2:99:9e:d2:a2:
bb:92:7a:7b:72:0a:38:72:04:aa:d4:59:a3:9b:46:49:d6:9f:
48:3f:db:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:05 2024 by rpki-client on console-fra.rpki-client.org