Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/URGYVdx1eNwx829BFzo8NQ3UgKI.roa
File: URGYVdx1eNwx829BFzo8NQ3UgKI.roa (raw, json)
Hash identifier: 4O/QXJTWmFLs0r7u05JRjfBczZE4x9/thBJWrOn4TO4=
Subject key identifier: 51:11:98:55:DC:75:78:DC:31:F3:6F:41:17:3A:3C:35:0D:D4:80:A2
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 0186E7AEA412A3E635C793CD9EBA499DBC3A
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/URGYVdx1eNwx829BFzo8NQ3UgKI.roa
Signing time: Wed 15 Mar 2023 23:50:27 +0000
ROA not before: Wed 15 Mar 2023 23:50:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205021
IP address blocks: 2a10:4646:1e0::/44 maxlen: 44
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e7:ae:a4:12:a3:e6:35:c7:93:cd:9e:ba:49:9d:bc:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Mar 15 23:50:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51119855dc7578dc31f36f41173a3c350dd480a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:3e:93:16:32:b9:86:18:0a:40:03:aa:be:76:
7d:61:02:74:c1:b5:02:6d:bf:08:7d:a1:2f:c3:b6:
21:59:9a:d0:fb:84:53:93:4e:3c:ff:00:89:e3:b3:
90:2f:ca:11:8d:90:e3:3b:a0:b3:ba:da:96:88:0b:
0f:af:7b:17:c8:e1:7d:e1:27:3d:18:c7:10:8a:b9:
f4:17:30:2c:84:c0:3a:47:15:db:10:67:28:f5:17:
e4:75:c4:5e:21:86:3d:ac:94:94:b9:2a:f6:f5:92:
44:bd:5c:43:79:48:8f:cd:f3:03:ad:48:b0:4b:7e:
6d:5a:bb:bc:67:d9:7f:05:98:43:68:66:6b:2a:dc:
d6:96:20:c8:3c:b5:79:df:9d:7f:a3:51:37:f0:8b:
50:9b:08:0e:15:f7:73:0b:f0:51:f3:4d:e5:2d:60:
53:66:58:93:7f:7d:cf:8c:78:93:9f:2b:75:4b:13:
90:4c:d5:aa:91:4a:c4:26:c0:0a:6f:c7:79:df:04:
38:e7:cb:e8:51:06:77:d1:da:d6:ad:45:fe:85:88:
a4:ce:41:ae:e9:8a:11:0e:7f:34:14:48:13:6f:dc:
73:8b:e6:29:0e:63:99:2a:f8:b6:95:5c:15:4c:97:
cc:f0:4d:a7:ec:34:c3:d1:fa:9d:fa:db:36:07:fc:
b9:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:11:98:55:DC:75:78:DC:31:F3:6F:41:17:3A:3C:35:0D:D4:80:A2
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/URGYVdx1eNwx829BFzo8NQ3UgKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:1e0::/44
Signature Algorithm: sha256WithRSAEncryption
67:47:53:aa:e4:2c:2b:12:e1:a9:c2:f2:59:51:c8:3f:0d:d7:
cc:b3:68:4e:81:65:38:38:41:1e:22:c1:13:97:9c:1a:46:4e:
be:cf:ad:83:32:eb:f6:50:9c:7d:1d:08:37:a1:5e:9d:53:97:
af:3f:7f:62:5a:49:91:79:1d:11:c4:1f:de:b9:d2:8d:00:9d:
c3:42:a8:ff:52:f4:a6:d1:c6:9b:5c:09:6b:12:d7:49:6e:6e:
56:53:10:19:61:4a:f8:df:dd:4f:32:54:55:c3:77:eb:bc:ce:
31:b3:e1:b5:89:25:e6:0f:dd:68:80:85:15:8b:18:b1:4a:ca:
8d:d7:5b:b9:65:06:42:f3:1e:f4:8a:76:21:a9:52:64:58:51:
26:1b:20:b2:46:7d:0e:c6:51:8c:e0:a0:6d:1c:19:cb:b5:bf:
cf:9a:27:8f:1d:29:d1:b3:4b:c3:44:d0:60:97:50:86:71:a6:
2c:bf:b7:f2:23:12:d2:de:5b:c6:07:3b:14:c8:5c:9d:14:22:
b7:41:ad:3a:02:13:c8:a0:9d:46:f5:8e:c2:81:f7:79:b8:ce:
04:02:14:e9:75:59:3b:34:25:ef:19:ce:eb:b7:0c:24:a4:6b:
ff:df:2f:a0:77:6a:a3:b3:6a:a6:5d:c4:fa:66:98:03:8d:da:
29:31:a4:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:05 2024 by rpki-client on console-fra.rpki-client.org