Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/sMdU090MThDTekDRDX8y7JhucVk.roa
File: sMdU090MThDTekDRDX8y7JhucVk.roa (raw, json)
Hash identifier: 2ZDOu7cQ2L7MFduJZ9Z99Dqpb4hECTuzwPWtf3Gtz34=
Subject key identifier: B0:C7:54:D3:DD:0C:4E:10:D3:7A:40:D1:0D:7F:32:EC:98:6E:71:59
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 0186CD018117A514F8B68FC2C4E1EB147313
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/sMdU090MThDTekDRDX8y7JhucVk.roa
Signing time: Fri 10 Mar 2023 19:31:13 +0000
ROA not before: Fri 10 Mar 2023 19:31:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60668
IP address blocks: 2a10:4646:2c0::/44 maxlen: 44
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cd:01:81:17:a5:14:f8:b6:8f:c2:c4:e1:eb:14:73:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Mar 10 19:31:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0c754d3dd0c4e10d37a40d10d7f32ec986e7159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f2:9f:3b:a0:07:1a:ce:ff:93:f1:cf:df:e0:
25:2e:07:06:44:34:54:70:68:ac:09:70:dc:7b:08:
93:b9:b9:1f:5d:91:cc:45:68:49:1e:c5:4f:cd:c5:
ba:81:4e:cf:e0:03:08:96:26:28:b1:7b:ee:91:43:
5d:f0:49:7f:d0:c5:3f:7b:8c:d3:a0:4b:89:e6:8e:
74:2e:cc:28:7d:75:97:22:4b:c3:30:cf:3c:7b:6f:
29:53:3c:2a:1c:37:6f:d1:80:d3:12:fa:04:2d:96:
58:69:15:a5:8e:bf:f0:07:c4:b4:24:65:b4:9c:5f:
68:1e:e3:1b:df:f2:48:30:aa:71:eb:10:bf:1d:50:
1a:e7:76:2f:0a:ad:52:b4:ae:5b:0a:49:8b:55:93:
28:3b:96:dc:95:40:6d:a8:7b:ac:fc:54:b1:b1:e2:
21:1d:c4:12:23:92:e0:46:d5:f2:91:af:2a:ef:96:
ba:9a:1e:de:0f:74:de:7b:73:5f:88:7d:a9:0d:05:
43:00:21:2d:77:1e:f8:d9:7d:fe:60:82:87:98:63:
c9:41:60:4b:43:aa:3b:9c:4a:cc:89:c3:f5:40:01:
cf:94:ad:61:57:35:1e:fb:58:b2:4c:aa:02:23:e6:
ab:b5:4e:1a:9e:4c:26:2c:dd:e7:db:50:9d:47:2f:
1d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:C7:54:D3:DD:0C:4E:10:D3:7A:40:D1:0D:7F:32:EC:98:6E:71:59
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/sMdU090MThDTekDRDX8y7JhucVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:2c0::/44
Signature Algorithm: sha256WithRSAEncryption
38:bb:fa:f6:3a:27:70:91:64:c9:3a:06:35:d7:f0:33:97:66:
7a:f1:59:34:5b:89:ed:db:00:26:2c:fd:ea:df:1a:ad:57:f1:
71:01:9c:1b:91:a6:0c:ea:f8:e9:f6:b2:df:34:59:39:4a:61:
ad:ec:d1:58:30:97:b3:ee:0b:7c:8c:23:45:1c:98:df:4b:b9:
d6:74:2c:44:38:1f:77:ba:5a:5b:5e:b4:dc:97:93:c5:17:df:
d2:c7:53:66:04:fb:58:9c:3e:b5:c5:a1:31:4e:6d:6f:e3:aa:
40:da:be:38:f9:88:0d:d9:51:52:ef:a3:2d:a2:ee:fd:47:aa:
72:79:27:85:11:cc:34:ef:98:8e:ca:f7:11:16:92:dc:1a:b9:
63:63:ee:4e:af:74:ba:49:3e:c3:d5:61:af:f6:7d:db:79:bb:
78:0e:a1:ac:b9:71:83:75:30:10:76:d6:bd:e4:d9:11:eb:8a:
7b:05:96:8b:d7:99:8b:64:58:9e:d6:59:5f:cb:c8:90:85:b9:
41:18:e4:9d:02:c0:a3:f8:18:d0:7c:a3:ac:82:89:3c:48:1d:
07:f3:9c:f1:a1:db:cb:31:eb:17:06:1f:c1:c1:18:46:f3:88:
a4:5f:c7:db:08:d2:34:d4:e8:52:5a:2b:03:ca:82:df:bf:88:
4a:af:3c:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:05 2024 by rpki-client on console-fra.rpki-client.org