Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/rL-sGvT-nvHFG42cooVJdSc8A5g.roa
File: rL-sGvT-nvHFG42cooVJdSc8A5g.roa (raw, json)
Hash identifier: gYBJe1534gjSZ5jJgirt6IhdN/qXHkyGWSKaR7YbVfA=
Subject key identifier: AC:BF:AC:1A:F4:FE:9E:F1:C5:1B:8D:9C:A2:85:49:75:27:3C:03:98
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 01862E38F4449DCD0322AEB192015A6A9F42
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/rL-sGvT-nvHFG42cooVJdSc8A5g.roa
Signing time: Tue 07 Feb 2023 23:32:09 +0000
ROA not before: Tue 07 Feb 2023 23:32:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207708
IP address blocks: 2a10:4646:160::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2e:38:f4:44:9d:cd:03:22:ae:b1:92:01:5a:6a:9f:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Feb 7 23:32:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=acbfac1af4fe9ef1c51b8d9ca2854975273c0398
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b8:e0:bf:2d:10:67:f3:8c:61:83:fa:3f:dc:
0c:b7:61:fe:79:e1:be:c0:06:6a:f8:08:fb:1b:50:
2f:08:e3:9e:92:e3:da:40:ee:ca:22:10:10:a7:34:
90:f3:55:22:d7:a0:95:3a:13:24:32:d5:a2:04:cb:
c7:15:a0:22:c8:dd:82:f6:dc:eb:6c:1e:3f:df:a4:
ff:8e:06:9d:ce:fb:73:e2:b1:50:27:85:3a:81:c6:
53:28:96:00:bc:0b:d8:b1:cb:33:9a:62:85:f1:a5:
ff:a5:2f:24:e7:ed:d6:be:08:fe:bb:f3:9a:e3:0d:
b9:17:5d:4e:ba:6d:03:fd:af:c8:7f:f6:8f:1e:d3:
eb:af:ed:f5:cd:6e:17:99:71:5d:23:66:e3:a4:df:
da:8c:8d:55:b8:0c:d1:89:2f:ed:49:f5:b3:69:14:
98:5b:59:3e:83:5f:12:49:51:a7:7a:0f:e9:e3:b2:
1d:7e:73:57:45:1f:4d:ee:61:8a:81:38:87:90:41:
47:26:52:09:35:1f:66:86:18:a6:f1:c6:c2:48:4d:
07:bf:86:d1:b3:af:4c:27:1a:64:fc:4f:73:4a:90:
59:04:5a:0f:20:ed:81:60:6d:70:d0:22:56:5c:3c:
68:4a:41:59:a2:97:7a:57:01:da:b7:61:70:80:d0:
c7:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:BF:AC:1A:F4:FE:9E:F1:C5:1B:8D:9C:A2:85:49:75:27:3C:03:98
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/rL-sGvT-nvHFG42cooVJdSc8A5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:160::/48
Signature Algorithm: sha256WithRSAEncryption
2f:fc:23:9e:7c:34:0f:04:80:fc:cf:5b:64:87:8e:c8:2b:54:
a6:db:92:0d:86:4f:47:2d:c3:3a:54:0b:70:72:79:68:78:51:
d3:99:b4:5c:34:4d:5d:c3:36:7a:4d:84:7b:8e:25:c0:48:40:
63:aa:eb:00:73:c9:66:05:36:d0:6b:8a:f6:bb:f5:78:4f:73:
db:f1:8d:0c:92:f4:d2:a3:7d:fc:eb:5e:fd:99:7d:75:dd:57:
4b:35:f2:8b:75:c9:42:7f:ba:f1:74:07:ec:e5:35:ad:00:40:
e2:b8:71:51:d5:0b:65:e1:bc:b8:ba:1a:83:5e:cd:5b:0c:7b:
6a:25:54:1e:d8:60:f4:75:5d:6b:e1:92:ee:bc:1d:9a:b1:68:
72:20:56:c8:28:10:ec:36:57:b4:3d:27:2c:eb:88:28:7b:9a:
d4:0b:75:2e:35:cc:05:a9:df:a3:d3:dc:46:f3:16:39:e1:a5:
55:6e:64:31:78:b5:57:2d:30:41:27:de:32:97:0a:b9:67:0a:
47:25:a7:3f:8f:dd:6e:4a:0c:7d:b7:22:8a:fc:32:0b:2c:b1:
56:4f:b9:23:04:af:5e:90:1b:e9:99:1c:f5:57:64:07:5a:5e:
d4:7f:fa:a4:04:c8:66:68:20:78:d6:b3:0f:32:60:5a:57:62:
86:d2:ba:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:43 2024 by rpki-client on console-ams.rpki-client.org