Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/rgHNO3hgYUckuZ5a1LaqgTTva7I.roa
File: rgHNO3hgYUckuZ5a1LaqgTTva7I.roa (raw, json)
Hash identifier: fH6ihEGQh4gXGShfjZ0OWiY8wkGChqYEEtoht2rp20A=
Subject key identifier: AE:01:CD:3B:78:60:61:47:24:B9:9E:5A:D4:B6:AA:81:34:EF:6B:B2
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 018B91400DB0C04765A355FFA00CF4D02071
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/rgHNO3hgYUckuZ5a1LaqgTTva7I.roa
Signing time: Thu 02 Nov 2023 18:16:15 +0000
ROA not before: Thu 02 Nov 2023 18:16:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216075
IP address blocks: 2a10:4646:200::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:91:40:0d:b0:c0:47:65:a3:55:ff:a0:0c:f4:d0:20:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Nov 2 18:16:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae01cd3b7860614724b99e5ad4b6aa8134ef6bb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:56:27:54:2f:7f:3e:2c:b7:4e:16:bb:b8:68:
fb:92:00:b1:95:9d:3f:ec:9b:25:3d:6e:6b:79:fe:
4c:72:32:0a:4b:28:fe:a1:f0:a3:e3:3c:c9:37:06:
dd:dd:68:0d:9a:f1:2c:b1:14:46:79:54:33:ca:9f:
26:5d:a3:d1:ef:fe:d1:c4:f1:3a:1a:8e:40:73:bb:
98:f4:8d:9e:46:61:aa:22:ff:4c:db:02:3e:b3:0c:
36:d8:4e:2d:34:08:3f:02:62:00:aa:64:1b:3e:6c:
6e:9e:d7:df:ac:5e:88:e0:d4:7b:54:49:45:11:86:
38:64:d5:85:d8:bf:1d:4d:10:c5:bc:cf:fd:ed:18:
07:5e:69:11:f2:fd:63:ea:92:4a:1f:c6:3d:ce:70:
4b:f0:a6:25:16:10:78:d6:9b:75:aa:df:84:d7:8b:
ba:0f:6f:bd:40:22:df:3d:9e:f2:0d:57:70:d1:e7:
38:ca:1a:61:ab:b3:f2:24:7e:04:68:6a:fb:f1:03:
d8:28:2d:7a:16:6f:9c:b6:d3:0b:13:ed:11:d5:7e:
a5:60:93:79:32:0e:3e:b9:b7:82:e3:8a:e8:1d:95:
df:a4:4d:18:df:f0:07:ea:de:91:91:c9:39:08:62:
b7:10:af:62:53:f0:38:e6:1e:73:dc:31:1a:5b:7a:
19:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:01:CD:3B:78:60:61:47:24:B9:9E:5A:D4:B6:AA:81:34:EF:6B:B2
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/rgHNO3hgYUckuZ5a1LaqgTTva7I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:200::/44
Signature Algorithm: sha256WithRSAEncryption
3f:92:51:bc:de:f6:8d:9a:92:3e:0c:1d:3e:ff:26:74:a5:fe:
02:93:8e:ba:aa:6a:8e:bc:f5:40:a5:22:51:da:6b:e3:40:17:
b1:9b:55:b6:fd:a2:ec:dc:a2:09:52:0d:09:94:13:a5:b7:3e:
6a:de:2a:12:c8:01:c0:14:2a:2e:9f:94:0d:de:f0:cb:e9:b4:
32:f2:2e:af:e4:a5:37:38:1d:bd:6d:19:fa:ea:9e:59:a4:9d:
46:2a:bb:48:e9:76:09:31:69:90:7b:f5:1d:c4:34:bc:0c:39:
ef:e1:d0:af:1e:77:d7:90:7d:79:d3:4e:13:1b:05:05:e0:82:
a9:9b:df:01:d4:de:fd:cf:9a:31:2d:b1:00:f8:90:81:4e:98:
2e:5e:73:4b:e4:3a:77:b3:bf:d5:ed:8d:90:43:25:fb:06:a2:
23:d1:e6:3e:d9:34:f1:ed:f1:60:a9:b0:2c:0d:68:fa:f3:1e:
9f:2e:56:40:bc:58:2e:1c:5d:6b:9c:6c:d2:76:bd:8f:c5:2d:
19:7f:a9:e8:f0:47:b8:78:cb:e3:5e:d5:cf:ba:88:66:4e:01:
99:50:39:d9:61:57:3a:9b:18:8d:57:94:b9:7f:c8:e5:85:01:
6d:6e:74:d6:85:b2:d8:af:b5:d8:3b:fe:9c:57:1f:68:da:21:
0c:ea:5f:d9
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYuRQA2wwEdlo1X/oAz00CBxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNmQyODE3NDkxZGQyY2QwNjc4MDY4ZTM1YTllZmM2ODY2
N2RmMDIwHhcNMjMxMTAyMTgxNjE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZTAxY2QzYjc4NjA2MTQ3MjRiOTllNWFkNGI2YWE4MTM0ZWY2YmIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1YnVC9/Piy3Tha7uGj7kgCxlZ0/
7JslPW5ref5McjIKSyj+ofCj4zzJNwbd3WgNmvEssRRGeVQzyp8mXaPR7/7RxPE6
Go5Ac7uY9I2eRmGqIv9M2wI+sww22E4tNAg/AmIAqmQbPmxuntffrF6I4NR7VElF
EYY4ZNWF2L8dTRDFvM/97RgHXmkR8v1j6pJKH8Y9znBL8KYlFhB41pt1qt+E14u6
D2+9QCLfPZ7yDVdw0ec4yhphq7PyJH4EaGr78QPYKC16Fm+cttMLE+0R1X6lYJN5
Mg4+ubeC44roHZXfpE0Y3/AH6t6Rkck5CGK3EK9iU/A45h5z3DEaW3oZDwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFK4BzTt4YGFHJLmeWtS2qoE072uyMB8GA1UdIwQY
MBaAFEptKBdJHdLNBngGjjWp78aGZ98CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU20wb0Ywa2QwczBHZUFhT05hbnZ4b1puM3dJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC85NDg4YzctODQ5Yy00ZmYxLWFiNGMt
YWU5MjgzZTc5NjRlLzEvcmdITk8zaGdZVWNrdVo1YTFMYXFnVFR2YTdJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC85NDg4YzctODQ5Yy00ZmYxLWFiNGMtYWU5MjgzZTc5NjRl
LzEvU20wb0Ywa2QwczBHZUFhT05hbnZ4b1puM3dJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhBGRgIA
MA0GCSqGSIb3DQEBCwUAA4IBAQA/klG83vaNmpI+DB0+/yZ0pf4Ck466qmqOvPVA
pSJR2mvjQBexm1W2/aLs3KIJUg0JlBOltz5q3ioSyAHAFCoun5QN3vDL6bQy8i6v
5KU3OB29bRn66p5ZpJ1GKrtI6XYJMWmQe/UdxDS8DDnv4dCvHnfXkH15004TGwUF
4IKpm98B1N79z5oxLbEA+JCBTpguXnNL5Dp3s7/V7Y2QQyX7BqIj0eY+2TTx7fFg
qbAsDWj68x6fLlZAvFguHF1rnGzSdr2PxS0Zf6no8Ee4eMvjXtXPuohmTgGZUDnZ
YVc6mxiNV5S5f8jlhQFtbnTWhbLYr7XYO/6cVx9o2iEM6l/Z
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:05 2024 by rpki-client on console-fra.rpki-client.org