Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/YmZrhEJxuK9B-ou5WRfpUIS7NEQ.roa
File: YmZrhEJxuK9B-ou5WRfpUIS7NEQ.roa (raw, json)
Hash identifier: eISw79VR26E5o4C1i7krNRs2082jgxys4w7PLFFj6rE=
Subject key identifier: 62:66:6B:84:42:71:B8:AF:41:FA:8B:B9:59:17:E9:50:84:BB:34:44
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 0188E823BEF20BF8999A3449E508252C1F5F
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/YmZrhEJxuK9B-ou5WRfpUIS7NEQ.roa
Signing time: Fri 23 Jun 2023 12:03:56 +0000
ROA not before: Fri 23 Jun 2023 12:03:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198180
IP address blocks: 2a10:4646:370::/44 maxlen: 44
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e8:23:be:f2:0b:f8:99:9a:34:49:e5:08:25:2c:1f:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Jun 23 12:03:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62666b844271b8af41fa8bb95917e95084bb3444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:08:7d:0f:49:c2:f3:57:bf:90:ff:15:0e:78:
96:92:9b:26:d0:d2:b2:be:33:bf:a8:78:15:78:26:
9f:3b:a2:17:45:9c:c2:2d:8b:c5:a3:4c:eb:14:a5:
75:7b:ed:25:17:51:0c:c0:37:aa:d9:b3:ad:bd:72:
1b:2f:c1:d1:44:58:a2:da:a2:d0:88:c5:0e:da:c7:
52:a6:6e:65:01:6a:5e:1f:ad:b5:85:68:61:f0:dd:
84:3a:37:8b:d5:50:3a:66:d3:76:bc:ce:40:6d:92:
b9:6a:66:28:fb:25:de:04:20:08:81:e1:b7:11:0e:
ae:29:0e:06:25:9f:1b:b9:a3:50:f1:1d:08:55:9e:
29:cb:80:c5:78:d9:80:27:2e:f5:ee:10:f5:b7:e2:
d2:bf:6c:54:b2:c4:e4:ce:1a:f8:ad:a9:15:e6:9b:
98:db:26:89:ca:97:1c:50:67:f3:71:c9:13:62:60:
1d:cc:14:9a:cf:7e:0a:a4:51:c2:ab:15:57:7f:ad:
15:37:9f:d5:67:dd:dc:0f:8e:47:a0:98:3c:09:56:
e9:d4:84:03:83:fd:11:5e:e5:0c:b4:c3:9a:5a:19:
c0:67:7b:b0:c3:e6:76:42:21:a3:a5:ae:40:2d:51:
71:cb:ac:9a:12:b0:50:29:e3:e2:4b:ae:76:c0:29:
2a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:66:6B:84:42:71:B8:AF:41:FA:8B:B9:59:17:E9:50:84:BB:34:44
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/YmZrhEJxuK9B-ou5WRfpUIS7NEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:370::/44
Signature Algorithm: sha256WithRSAEncryption
34:e8:8a:8a:46:25:84:da:97:8d:66:b0:be:4f:97:e5:68:68:
27:bb:0f:c7:e8:17:b7:91:c7:98:68:02:e8:c9:cd:d7:43:50:
01:a1:7e:ff:38:63:7c:49:a6:f4:f2:7a:ca:3b:0a:fb:37:58:
f2:97:33:eb:9c:7c:04:06:f8:53:70:33:00:db:e9:10:83:6f:
40:ed:37:54:93:49:35:46:95:36:82:48:2a:06:d6:02:cc:16:
21:94:06:bf:92:27:c5:07:e9:9f:5e:dd:d5:3a:65:74:8e:9a:
b4:bc:9e:44:e2:86:ca:19:3c:14:23:e0:5c:ac:e4:44:dd:b0:
f3:48:c0:19:a0:28:48:b9:e1:71:3c:66:57:37:7f:59:8e:78:
f5:47:bf:9f:bd:18:63:c4:2b:f7:04:a6:68:2c:0b:85:a0:92:
bd:88:a8:02:c2:ae:f9:a0:44:b2:5a:ba:52:a8:30:10:08:0e:
54:98:ef:4b:c6:13:00:03:43:13:b9:97:30:63:57:f3:ac:b0:
0a:5e:ba:d3:fd:fd:26:b1:b1:a0:65:cb:30:50:f5:9e:f5:fb:
66:d5:09:d5:e0:4f:d6:90:1a:d2:e9:e1:7d:88:16:71:62:2d:
80:9a:10:8b:9d:12:51:b1:af:95:b2:ba:e0:2e:10:cc:f7:a7:
ce:68:4e:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:23:48 2024 by rpki-client on console-fra.rpki-client.org