Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/d7IoxDbjryJm0aHVsNeGmjrJ9p4.roa
File: d7IoxDbjryJm0aHVsNeGmjrJ9p4.roa (raw, json)
Hash identifier: HnP2alj/rqRtmBu6mvEWlLXcs476/TRS/3KIKN2FKSI=
Subject key identifier: 77:B2:28:C4:36:E3:AF:22:66:D1:A1:D5:B0:D7:86:9A:3A:C9:F6:9E
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 0185722801DF6DEB1A4C9D0CD7308C99FBB6
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/d7IoxDbjryJm0aHVsNeGmjrJ9p4.roa
Signing time: Mon 02 Jan 2023 11:05:02 +0000
ROA not before: Mon 02 Jan 2023 11:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399486
IP address blocks: 2a10:4646:240::/44 maxlen: 44
Validation: Failed, certificate revoked on Tue 31 Oct 2023 21:37:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:28:01:df:6d:eb:1a:4c:9d:0c:d7:30:8c:99:fb:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Jan 2 11:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77b228c436e3af2266d1a1d5b0d7869a3ac9f69e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:e8:47:d3:02:68:22:d7:74:a6:f5:a5:0d:78:
10:c3:e5:df:92:24:c4:97:6f:3a:94:ad:ca:20:e7:
d1:b0:22:87:ff:5f:5c:01:ad:fd:b9:15:11:57:e1:
a9:7a:bf:f9:a9:86:94:d1:ac:06:b7:91:fb:28:ae:
7e:d8:86:bf:16:28:56:cd:25:34:6d:2d:48:7a:07:
d9:05:9b:db:74:f9:a3:7f:3f:59:17:b9:0b:b7:35:
60:8e:3a:fe:20:20:02:7e:b2:ec:67:66:4d:8f:83:
36:87:36:71:5e:b6:af:75:34:b8:a3:67:71:94:72:
33:bb:61:c7:ee:01:fe:b1:f6:0a:4d:9b:02:a7:ee:
a2:dc:e8:96:33:55:45:22:33:04:48:80:98:24:1d:
8f:63:20:15:5a:2c:44:e6:3a:14:5d:14:3b:84:1f:
83:26:ad:15:b4:03:16:3d:28:7a:7e:5e:ca:70:41:
01:49:05:61:3d:1f:c7:cd:c3:b7:a8:79:91:d0:14:
87:7c:9c:d8:f7:d6:06:59:8f:1d:25:f1:2b:19:e4:
e8:2a:10:a7:f6:9b:5d:ce:fd:51:f3:27:51:3b:db:
db:e5:cc:f0:83:82:ee:1b:ac:95:ad:a2:45:da:12:
db:41:4d:78:36:6d:3e:b1:f9:6a:86:36:2f:a9:2d:
35:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:B2:28:C4:36:E3:AF:22:66:D1:A1:D5:B0:D7:86:9A:3A:C9:F6:9E
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/d7IoxDbjryJm0aHVsNeGmjrJ9p4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:240::/44
Signature Algorithm: sha256WithRSAEncryption
9e:4d:5f:bb:ac:36:56:fb:9e:07:30:7f:41:28:a8:3e:05:2c:
f5:fc:52:68:e6:69:70:0c:19:05:40:f1:0c:2b:b9:5c:7a:83:
2a:82:2b:74:40:0d:4e:85:9a:77:a5:8a:96:8a:32:ba:d8:d5:
61:dd:ef:e9:16:75:3d:8e:6a:db:eb:4e:0d:6d:e9:90:bf:80:
45:ce:96:ed:55:c0:75:9d:c2:72:35:af:76:38:2c:4a:8d:3b:
08:c3:fb:18:27:7e:4f:2d:74:37:2f:18:db:19:50:d8:54:d8:
35:4c:4c:c7:96:a6:c0:b3:bb:31:7d:a2:8e:55:6b:d0:4f:d1:
f5:4f:2e:21:96:2a:a2:b4:3b:b9:6f:a6:57:6b:d3:07:5a:3f:
50:79:53:a0:e2:b0:47:e3:65:f1:82:a3:30:a6:d7:dd:9f:60:
ef:16:09:a2:e8:f3:04:45:a4:66:b3:61:88:44:53:30:d7:c8:
33:8e:b5:66:30:d6:6f:20:66:f2:d8:9f:50:cb:29:62:ed:28:
13:60:ba:c7:5d:f9:da:39:9b:26:1f:ae:c0:03:9b:7d:0a:8b:
98:b7:ae:d5:b0:d0:3a:d1:3c:0d:89:b7:68:e0:74:09:2b:08:
78:2c:1e:8b:dd:98:45:7d:24:42:79:57:23:65:54:ee:e8:3e:
dd:c7:3c:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:43 2024 by rpki-client on console-ams.rpki-client.org