Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/J6EkYWq2gpcD8OpuQNqWeDAan-c.roa
File: J6EkYWq2gpcD8OpuQNqWeDAan-c.roa (raw, json)
Hash identifier: 4zMRmRdb1W4kZjQblZeWEwGPoT7U2ceUrme4KBidkgg=
Subject key identifier: 27:A1:24:61:6A:B6:82:97:03:F0:EA:6E:40:DA:96:78:30:1A:9F:E7
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 01857227FB81EB936B743D9BC636590E1A88
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/J6EkYWq2gpcD8OpuQNqWeDAan-c.roa
Signing time: Mon 02 Jan 2023 11:05:00 +0000
ROA not before: Mon 02 Jan 2023 11:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210816
IP address blocks: 2a10:4646:c0::/44 maxlen: 44
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:27:fb:81:eb:93:6b:74:3d:9b:c6:36:59:0e:1a:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Jan 2 11:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=27a124616ab6829703f0ea6e40da9678301a9fe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:6d:27:71:3e:5a:28:bf:ba:a7:ad:3a:c4:7a:
1f:02:df:77:ff:f4:ac:29:1c:0f:09:20:2f:c6:9c:
9c:b1:29:0e:10:9a:6c:88:f1:a8:f2:9b:04:50:23:
75:82:f0:e0:4c:84:a0:a4:33:d9:ef:09:bf:db:c1:
d7:6f:61:3d:fd:df:6b:43:10:46:b4:fb:6f:04:9a:
46:e1:be:77:1b:e7:b6:08:16:fc:11:c8:d5:d2:8a:
ab:9b:35:32:25:f5:5e:da:b6:d6:3b:24:b6:9c:4c:
27:11:29:ab:a8:f7:dd:58:e7:ae:87:27:46:0b:ab:
ce:46:a3:96:8a:26:38:24:97:97:14:f0:2e:43:d3:
d4:9e:a1:d4:ad:bb:3f:f4:e9:c3:49:b7:ae:93:1a:
5a:5c:51:4d:6b:06:b8:6c:48:7e:cf:a5:66:e2:ca:
35:9d:8f:fa:aa:56:0b:95:d8:94:e0:eb:73:df:26:
10:96:92:b2:8b:5b:94:29:d3:69:91:8f:ed:c0:94:
0b:80:2f:6c:f7:b0:78:c5:be:82:8a:19:ac:bd:23:
01:22:69:ee:ce:cb:26:65:0e:e6:cf:5e:1b:e3:5d:
48:d7:ba:67:9a:43:f8:1c:28:e7:6b:20:c5:5f:8a:
1b:f7:52:2d:b6:67:c9:c5:d0:1c:00:50:ed:0a:3a:
8b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:A1:24:61:6A:B6:82:97:03:F0:EA:6E:40:DA:96:78:30:1A:9F:E7
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/J6EkYWq2gpcD8OpuQNqWeDAan-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:c0::/44
Signature Algorithm: sha256WithRSAEncryption
43:8c:e1:7b:60:3e:e0:ab:dc:f4:b0:83:b8:b2:83:8f:10:e1:
eb:ac:f8:65:c3:85:06:d4:d1:24:70:09:fb:ed:6c:4d:58:2c:
d4:8b:59:51:1b:91:b5:7a:e9:18:52:0e:3b:90:f8:4d:5f:e0:
48:65:a6:fe:4d:e9:1f:72:e4:11:f8:88:7c:f9:a2:1d:20:dd:
6e:65:4c:62:dc:6a:b2:61:11:25:6e:f0:fd:a7:71:d4:2b:0a:
17:17:d3:1e:dd:3d:71:83:ff:27:2b:cb:cd:cd:89:3f:70:a4:
67:3e:6d:dc:12:dc:67:74:f3:80:30:59:ee:dc:92:fd:2f:0e:
67:e9:17:a2:cb:c4:c6:c3:c5:a3:47:e7:ab:67:cc:83:e6:5d:
1a:1c:49:ac:70:e6:22:0a:f2:58:bd:2c:f3:e0:ed:c2:23:65:
9f:58:36:fe:b2:02:46:08:44:32:3e:0a:83:cc:d5:71:87:66:
00:a7:ca:0e:ee:d4:90:0c:c4:e3:84:cc:27:aa:61:f8:23:5d:
6d:69:1b:ba:6a:11:28:3a:3a:08:14:92:14:22:c2:8d:7f:7c:
d4:f5:58:68:63:e3:c9:59:a7:65:3e:4d:51:00:20:43:85:32:
b2:95:bd:08:38:b0:9b:c3:03:8a:d4:6c:e9:21:b0:12:ee:3d:
8a:48:70:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:23:48 2024 by rpki-client on console-fra.rpki-client.org