Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/9sL8CvqZ5b9XVqdUJslQr37aNLw.roa
File: 9sL8CvqZ5b9XVqdUJslQr37aNLw.roa (raw, json)
Hash identifier: wZkcmkDXl76WqbUnV6qCH4G3GwNxP2z0zQJY+ACUiJA=
Subject key identifier: F6:C2:FC:0A:FA:99:E5:BF:57:56:A7:54:26:C9:50:AF:7E:DA:34:BC
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 01857227FE8C8C88ED6F6BA0914BF4E8E937
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/9sL8CvqZ5b9XVqdUJslQr37aNLw.roa
Signing time: Mon 02 Jan 2023 11:05:01 +0000
ROA not before: Mon 02 Jan 2023 11:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212065
IP address blocks: 2a10:4646:14::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 08 Mar 2023 17:21:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:27:fe:8c:8c:88:ed:6f:6b:a0:91:4b:f4:e8:e9:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Jan 2 11:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6c2fc0afa99e5bf5756a75426c950af7eda34bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:8e:3c:62:1e:0c:2f:1d:25:a2:30:9e:51:1f:
7f:d5:15:f1:85:4a:74:43:81:22:9d:27:ee:22:c3:
3e:4e:fc:d3:0b:92:ba:8e:6b:1a:21:10:7c:9c:a6:
02:f4:70:46:f8:ba:9b:26:c5:8f:59:ad:89:74:fd:
5b:6e:22:d3:d1:87:35:75:94:95:73:17:ce:f8:62:
17:31:d6:36:07:d3:43:f0:18:df:83:74:8f:bf:44:
0b:b8:52:4d:62:69:65:a5:44:a6:2e:2f:e9:b9:f3:
26:3d:70:98:89:c1:38:2e:28:6a:3f:f5:31:39:3e:
0d:11:74:db:c8:42:2a:60:fa:cb:a1:ea:b4:fb:73:
40:9b:7a:af:55:7d:13:77:b3:6a:49:d9:98:5a:1d:
5a:8c:6f:e2:33:60:b3:16:e9:06:de:56:e6:f9:7d:
6d:d5:b8:e2:e7:13:60:eb:0e:10:f9:1d:60:d9:61:
b5:c8:bf:4c:62:ea:7f:8b:52:72:98:b0:80:39:62:
7d:23:ca:bc:dc:a7:e0:96:d1:37:3e:44:60:cc:24:
bb:6f:39:0f:67:33:35:de:0f:1d:b8:86:a0:38:1e:
40:9d:68:02:83:5a:94:0e:55:78:1d:5d:23:0a:b7:
06:a5:ab:6c:c4:fa:76:1b:29:44:ca:d4:4f:ee:4d:
2e:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:C2:FC:0A:FA:99:E5:BF:57:56:A7:54:26:C9:50:AF:7E:DA:34:BC
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/9sL8CvqZ5b9XVqdUJslQr37aNLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:14::/48
Signature Algorithm: sha256WithRSAEncryption
93:3d:f0:78:bc:ce:71:58:31:03:7d:23:d5:3f:f7:49:2e:2a:
9f:e7:90:c0:4a:f2:32:de:ef:dd:1a:c8:04:87:4d:9b:b4:4a:
0e:6a:4d:1d:4b:5c:c5:64:da:71:41:c5:d7:84:18:e3:30:60:
76:96:ff:cb:ee:f1:1f:1c:4d:3c:a3:62:7b:2d:d7:82:1b:a6:
bb:2e:97:30:68:3c:59:aa:10:3d:03:4a:41:98:ee:59:bc:bb:
60:cd:90:dd:a3:ae:2f:86:43:43:75:61:58:a2:21:d7:ac:29:
77:d7:7d:a9:0a:80:cc:d7:03:c3:fd:1f:94:2d:ec:09:05:d0:
d7:38:ea:ad:14:e6:fd:1d:7f:29:be:13:28:f9:66:04:f7:66:
4b:c0:a0:f5:14:bd:b9:18:04:1e:ee:2f:e0:68:0b:6f:54:68:
17:45:07:65:c4:00:32:11:01:cd:27:fd:18:ab:56:8a:ab:b6:
81:01:ca:0a:c9:55:df:c3:2a:6c:b7:a8:a9:ce:46:c8:8d:af:
2d:1d:95:4d:80:67:02:15:91:3a:66:9d:60:e8:b8:4d:82:f4:
48:04:a6:ca:cd:d7:08:94:51:c0:ad:7a:8e:16:56:23:bd:bf:
35:75:f2:e1:f2:20:b5:7b:ca:f4:35:98:a0:8b:10:42:64:5e:
d1:92:eb:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:43 2024 by rpki-client on console-ams.rpki-client.org