Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/CagOHHioarhJZsg-EtOqNJ00Gzk.roa
File: CagOHHioarhJZsg-EtOqNJ00Gzk.roa (raw, json)
Hash identifier: WwpFH3EbA2Zv9/OXr24AyUaKksgyrbBUurVXHxd2y6M=
Subject key identifier: 09:A8:0E:1C:78:A8:6A:B8:49:66:C8:3E:12:D3:AA:34:9D:34:1B:39
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 01857227F73C74750E69BA72919CF8B27A50
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/CagOHHioarhJZsg-EtOqNJ00Gzk.roa
Signing time: Mon 02 Jan 2023 11:04:59 +0000
ROA not before: Mon 02 Jan 2023 11:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52073
IP address blocks: 2a10:4646:120::/44 maxlen: 44
Validation: Failed, certificate revoked on Thu 05 Oct 2023 07:36:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:27:f7:3c:74:75:0e:69:ba:72:91:9c:f8:b2:7a:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Jan 2 11:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=09a80e1c78a86ab84966c83e12d3aa349d341b39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c0:e7:f6:c2:67:62:6e:cd:83:6d:29:55:f6:
aa:d8:7f:df:e7:27:60:30:40:cf:18:45:6d:3e:fd:
42:4b:42:aa:e0:28:14:8f:f1:9a:82:c2:33:55:b1:
98:3a:94:34:55:61:68:8c:cd:b4:5e:e9:be:f4:3d:
7f:43:3c:c1:31:ca:c4:cd:9f:d0:5e:6b:9f:c3:9b:
fa:f7:c8:75:89:68:f0:77:07:19:8e:38:8d:6e:21:
ad:b4:e1:90:11:ab:1f:0d:c8:5a:e1:39:a2:7d:71:
74:a0:32:22:64:73:45:4c:27:e5:b6:e5:0b:41:08:
89:99:0b:3e:5b:3a:21:9b:b2:f6:63:d2:71:1f:4f:
54:41:07:41:d2:51:3f:07:e5:4d:ff:9b:92:4e:3d:
32:fe:b6:4a:2f:bd:dd:78:6b:30:43:8c:c5:e4:67:
55:95:9d:01:72:bb:3d:ee:03:0b:c6:5a:e1:68:58:
5c:82:a8:2e:c9:73:d7:d2:bc:e3:53:d8:99:52:6a:
b1:a0:d6:9c:34:65:b5:41:b8:95:e8:e5:da:d4:f0:
4f:ef:94:11:d1:58:e6:94:43:a1:7a:29:ad:c0:08:
64:cb:cd:22:c5:26:7a:8c:87:f6:12:99:c9:5a:9e:
02:65:04:da:26:71:55:1c:c1:7d:6c:ab:79:bc:a2:
58:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:A8:0E:1C:78:A8:6A:B8:49:66:C8:3E:12:D3:AA:34:9D:34:1B:39
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/CagOHHioarhJZsg-EtOqNJ00Gzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:120::/44
Signature Algorithm: sha256WithRSAEncryption
cf:22:68:c9:dc:e8:23:c7:8b:a6:a0:e0:08:74:6f:cd:dd:56:
4d:d8:ef:56:9a:e5:2f:4b:95:8d:ff:9e:17:c7:61:b2:65:84:
9b:87:39:d0:5a:21:5f:57:9a:c8:c4:15:94:62:39:f4:86:f4:
1f:42:56:0d:a3:6f:c1:bf:90:8f:5f:72:f9:df:d4:8f:47:8a:
22:30:b3:aa:1c:9a:f6:1e:34:45:73:4a:72:23:43:6b:87:c3:
39:1d:c9:00:b3:43:52:18:5a:7c:c8:c7:11:86:4c:54:57:e4:
27:31:08:5a:2d:06:9d:e6:2c:6c:e7:83:e5:c8:4b:03:62:47:
f9:e6:b5:87:8a:9c:cd:0e:15:04:5b:0f:38:11:38:c5:11:92:
41:f0:e6:14:6e:a3:e3:92:86:c6:75:a0:84:b9:52:b0:df:12:
d6:d7:aa:da:74:75:f5:d0:98:9c:49:74:e4:f4:90:4a:f5:33:
d9:e9:01:54:c0:67:33:07:47:e8:86:9b:ae:cc:cd:0c:11:97:
dd:da:7c:57:bf:63:81:13:3e:95:1b:81:ef:ef:9d:66:42:25:
aa:61:dd:72:cb:82:2a:96:b8:da:4a:83:13:0d:13:c1:b9:ec:
72:9a:0b:b9:b8:f8:45:51:49:bd:73:a0:b0:b9:47:06:41:2c:
04:28:74:49
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVyJ/c8dHUOabpykZz4snpQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNmQyODE3NDkxZGQyY2QwNjc4MDY4ZTM1YTllZmM2ODY2
N2RmMDIwHhcNMjMwMTAyMTEwNDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOWE4MGUxYzc4YTg2YWI4NDk2NmM4M2UxMmQzYWEzNDlkMzQxYjM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxsDn9sJnYm7Ng20pVfaq2H/f5ydg
MEDPGEVtPv1CS0Kq4CgUj/GagsIzVbGYOpQ0VWFojM20Xum+9D1/QzzBMcrEzZ/Q
Xmufw5v698h1iWjwdwcZjjiNbiGttOGQEasfDcha4TmifXF0oDIiZHNFTCfltuUL
QQiJmQs+Wzohm7L2Y9JxH09UQQdB0lE/B+VN/5uSTj0y/rZKL73deGswQ4zF5GdV
lZ0Bcrs97gMLxlrhaFhcgqguyXPX0rzjU9iZUmqxoNacNGW1QbiV6OXa1PBP75QR
0VjmlEOheimtwAhky80ixSZ6jIf2EpnJWp4CZQTaJnFVHMF9bKt5vKJYqwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFAmoDhx4qGq4SWbIPhLTqjSdNBs5MB8GA1UdIwQY
MBaAFEptKBdJHdLNBngGjjWp78aGZ98CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU20wb0Ywa2QwczBHZUFhT05hbnZ4b1puM3dJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC85NDg4YzctODQ5Yy00ZmYxLWFiNGMt
YWU5MjgzZTc5NjRlLzEvQ2FnT0hIaW9hcmhKWnNnLUV0T3FOSjAwR3prLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC85NDg4YzctODQ5Yy00ZmYxLWFiNGMtYWU5MjgzZTc5NjRl
LzEvU20wb0Ywa2QwczBHZUFhT05hbnZ4b1puM3dJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhBGRgEg
MA0GCSqGSIb3DQEBCwUAA4IBAQDPImjJ3Ogjx4umoOAIdG/N3VZN2O9WmuUvS5WN
/54Xx2GyZYSbhznQWiFfV5rIxBWUYjn0hvQfQlYNo2/Bv5CPX3L539SPR4oiMLOq
HJr2HjRFc0pyI0Nrh8M5HckAs0NSGFp8yMcRhkxUV+QnMQhaLQad5ixs54PlyEsD
Ykf55rWHipzNDhUEWw84ETjFEZJB8OYUbqPjkobGdaCEuVKw3xLW16radHX10Jic
SXTk9JBK9TPZ6QFUwGczB0fohpuuzM0MEZfd2nxXv2OBEz6VG4Hv751mQiWqYd1y
y4IqlrjaSoMTDRPBuexymgu5uPhFUUm9c6CwuUcGQSwEKHRJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:05 2024 by rpki-client on console-fra.rpki-client.org