Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/xrP8nx84UkAtH9VCpd32A5iEnr4.roa
File: xrP8nx84UkAtH9VCpd32A5iEnr4.roa (raw, json)
Hash identifier: etfKP9vLl/2DJJdJ2qRRbwSy47A+duRyRfJgeJpjSG4=
Subject key identifier: C6:B3:FC:9F:1F:38:52:40:2D:1F:D5:42:A5:DD:F6:03:98:84:9E:BE
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 0189AC17CB70FB9AEDDE6A2B369E8C286810
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/xrP8nx84UkAtH9VCpd32A5iEnr4.roa
Signing time: Mon 31 Jul 2023 13:16:27 +0000
ROA not before: Mon 31 Jul 2023 13:16:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212504
IP address blocks: 2a10:4646:140::/44 maxlen: 44
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ac:17:cb:70:fb:9a:ed:de:6a:2b:36:9e:8c:28:68:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Jul 31 13:16:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c6b3fc9f1f3852402d1fd542a5ddf60398849ebe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5b:b6:0d:79:b4:a9:5c:cc:48:ca:a5:cb:6f:
ab:fa:d6:21:62:65:58:44:dc:a3:42:a8:75:50:8f:
57:23:bb:77:60:41:f5:70:fc:2f:6e:18:5b:84:34:
ce:16:9e:68:33:b1:01:59:ba:e0:5e:06:d6:17:2a:
6a:19:dc:88:37:cb:f7:4f:a9:06:6a:17:f2:d9:de:
12:c2:70:b4:75:f4:15:86:b2:b7:1e:68:a8:19:eb:
18:5a:31:a3:42:ab:aa:f5:24:58:2c:56:16:d1:d0:
a6:58:e6:5a:4a:82:8a:5a:ef:a1:12:29:0f:86:f6:
50:30:b4:bc:20:73:87:f6:9c:83:81:c5:e3:3d:fe:
5b:76:2f:11:10:3a:30:59:8f:10:24:bf:7e:f6:aa:
83:01:c7:79:2b:13:33:2b:aa:af:22:f5:3e:8c:ea:
e8:8e:ab:4b:28:fb:f0:70:17:9b:97:41:0f:41:12:
28:cf:e3:ee:30:75:1b:77:b7:78:c1:62:4d:65:24:
9f:08:a4:6c:17:d7:4b:55:2a:1a:f5:60:1c:e7:e7:
7e:68:ad:b5:09:83:d5:86:d0:78:8f:3b:69:d5:6f:
41:7e:e1:b4:1a:3c:1b:1b:71:ea:71:a8:f6:73:7b:
e3:2e:e8:b8:c8:b2:2c:cb:e1:70:30:fc:60:84:64:
5a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:B3:FC:9F:1F:38:52:40:2D:1F:D5:42:A5:DD:F6:03:98:84:9E:BE
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/xrP8nx84UkAtH9VCpd32A5iEnr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:140::/44
Signature Algorithm: sha256WithRSAEncryption
1c:34:39:9c:24:b1:fe:de:8f:d0:db:60:18:18:84:8b:f6:ff:
cf:d1:f0:70:ee:66:4b:64:52:5d:a7:d3:67:b3:9e:cd:11:36:
5d:bd:24:d3:a7:d7:72:62:64:69:6e:33:ae:a3:a6:2a:96:00:
7b:73:e2:9d:00:ec:6b:71:56:8a:77:c6:e6:05:d3:56:ba:61:
52:a7:ea:80:04:f2:61:a9:e7:9d:86:07:d2:bd:71:63:dd:8d:
9d:47:5d:79:7f:4b:ec:27:55:57:0b:73:67:a6:e8:5a:78:35:
10:dc:a5:8e:8e:1d:94:c8:e1:18:8d:a8:ec:05:40:43:fd:3c:
b5:b2:83:63:4c:a9:a4:13:6b:21:52:f5:6a:e1:a5:e0:ad:11:
c6:a9:85:3e:0e:1d:af:95:18:85:85:e0:65:bd:be:a2:c0:d1:
d9:46:7d:7d:ce:24:17:f8:a1:48:23:bf:a9:fb:6c:48:89:e8:
13:d6:de:b1:0f:05:44:10:f4:43:c1:cb:eb:dc:5a:ab:08:da:
28:df:6d:8f:6e:5e:9e:29:b6:b1:04:09:4d:86:d4:45:99:36:
be:33:3e:65:4d:99:78:58:e1:eb:ae:2e:80:b4:8b:45:0f:6a:
0e:a0:39:1d:3c:13:28:58:d3:57:2c:da:77:df:e7:74:44:15:
11:95:e5:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:43 2024 by rpki-client on console-ams.rpki-client.org