Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/5ln3tGmRwe0tpOCmNuGUHqU2euQ.roa
File: 5ln3tGmRwe0tpOCmNuGUHqU2euQ.roa (raw, json)
Hash identifier: +p5xohWljx39umXfvy/HFM+hfHyDwQfothZh0bIIXeI=
Subject key identifier: E6:59:F7:B4:69:91:C1:ED:2D:A4:E0:A6:36:E1:94:1E:A5:36:7A:E4
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 01857227FC7CE4B7FADEE0228E90FA3D37A7
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/5ln3tGmRwe0tpOCmNuGUHqU2euQ.roa
Signing time: Mon 02 Jan 2023 11:05:01 +0000
ROA not before: Mon 02 Jan 2023 11:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211448
IP address blocks: 2a10:4646:190::/44 maxlen: 44
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:27:fc:7c:e4:b7:fa:de:e0:22:8e:90:fa:3d:37:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Jan 2 11:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e659f7b46991c1ed2da4e0a636e1941ea5367ae4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:36:72:78:32:18:8c:82:23:6a:80:55:46:da:
0d:ab:21:82:f4:d5:d6:c5:c3:76:d7:cb:b8:e1:7b:
c8:b8:35:a1:fa:8a:1d:a0:dd:02:7f:85:7f:a6:c5:
aa:1f:4c:cc:e8:05:29:5d:43:88:46:00:77:35:ba:
2c:af:93:4b:6a:9b:d9:9a:64:d9:a0:b6:0d:04:a4:
7d:4c:7c:5e:9a:20:f6:69:75:2f:21:fe:4c:53:fb:
7e:4d:54:cc:94:6a:bd:90:bd:b1:d1:65:96:41:a8:
48:66:d5:c6:56:49:ee:d8:ed:ea:4c:38:5e:57:a7:
b0:85:0d:de:d5:6c:d7:ce:56:1c:f6:59:46:02:df:
68:91:35:55:55:a4:d5:76:b4:c2:1d:89:b3:36:0a:
3e:3d:ab:8a:e5:63:30:14:5d:28:d0:76:8c:86:cc:
24:cf:1c:17:81:f5:31:6e:36:df:e5:36:64:b3:24:
8b:b0:09:ec:8c:20:a2:00:aa:ee:45:0c:9a:06:fe:
61:53:17:fd:a9:f8:11:e6:43:1c:34:bf:bb:23:70:
9b:cf:91:64:f8:bd:bd:f3:2f:47:57:a1:ee:40:5b:
19:bc:c0:21:25:ef:dd:71:5a:44:3a:ec:1f:00:8c:
8d:42:d7:0d:1f:68:c8:37:ea:16:f7:fa:7e:cb:8c:
3b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:59:F7:B4:69:91:C1:ED:2D:A4:E0:A6:36:E1:94:1E:A5:36:7A:E4
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/5ln3tGmRwe0tpOCmNuGUHqU2euQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:190::/44
Signature Algorithm: sha256WithRSAEncryption
c4:ed:31:12:1e:3d:93:cd:0b:ca:d3:3d:8e:bc:85:04:cc:2b:
ce:3a:5c:77:2a:da:f0:46:79:32:ae:4c:b4:71:03:e3:a8:e6:
6b:a8:c1:03:ee:fa:e0:79:69:48:f6:1e:3e:dc:ec:24:c4:74:
51:13:0e:70:d1:5b:62:67:56:41:f7:3b:94:33:6c:6d:aa:f4:
5a:56:8b:d0:64:e8:94:3e:23:5a:bb:f5:27:e3:a3:58:29:dc:
0e:f8:38:29:98:bc:6d:f9:db:a5:36:79:04:8a:fd:55:f0:ad:
33:c7:57:79:d1:20:15:10:ac:66:1c:0c:68:c3:aa:94:64:92:
61:73:21:6a:7d:ba:f1:b3:8b:1d:79:a5:ad:41:c3:90:0b:11:
da:69:21:6f:27:4e:ca:7c:39:b4:1f:df:0b:00:01:a0:3f:ba:
c9:b0:50:17:07:32:98:5f:05:42:89:58:94:57:0b:8a:fb:c8:
47:bc:8f:49:5a:16:f9:21:77:29:64:70:d2:83:d1:73:f3:50:
70:81:44:f2:b9:e5:58:cc:97:6a:d0:63:92:6a:13:d4:a2:00:
c8:8d:94:e6:19:21:d9:0a:43:4b:2b:61:42:7b:dd:9d:5d:87:
b8:db:01:8e:cf:e8:fd:cc:96:c8:6e:d3:dd:30:22:7e:26:a2:
e3:a6:c8:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:43 2024 by rpki-client on console-ams.rpki-client.org