Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/zVcV9Rle_ynaXPjv0z3TofJMpwU.roa
File: zVcV9Rle_ynaXPjv0z3TofJMpwU.roa (raw, json)
Hash identifier: 2/eCa5ii4PFCgLmicrq1oMNj8Qd4b6tF/f73SWSFM6w=
Subject key identifier: CD:57:15:F5:19:5E:FF:29:DA:5C:F8:EF:D3:3D:D3:A1:F2:4C:A7:05
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 01857227FAFA82CE265399BDF151F88B43ED
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/zVcV9Rle_ynaXPjv0z3TofJMpwU.roa
Signing time: Mon 02 Jan 2023 11:05:00 +0000
ROA not before: Mon 02 Jan 2023 11:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210810
IP address blocks: 2a10:4646:d0::/44 maxlen: 44
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:27:fa:fa:82:ce:26:53:99:bd:f1:51:f8:8b:43:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Jan 2 11:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd5715f5195eff29da5cf8efd33dd3a1f24ca705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:bf:f8:77:23:ba:2f:35:e4:a0:5d:e6:0e:18:
1a:89:14:58:99:8e:e8:98:ff:d5:51:6d:bf:a0:7e:
51:80:35:d3:23:ee:70:b6:f8:fb:b3:c2:5a:88:d6:
c7:c9:05:4b:bf:62:9b:89:26:2c:65:cd:df:54:96:
a8:76:a0:0b:2b:98:a1:20:62:4d:70:28:58:41:ab:
31:7b:e4:67:37:ad:fb:9c:b1:54:1b:ce:de:df:31:
af:59:d5:97:29:1a:1a:ef:c0:77:bb:9c:ec:ad:93:
32:7a:66:82:85:42:09:ca:ac:76:b8:56:a0:46:6e:
42:cf:1b:c5:29:e6:36:1b:bf:a4:0f:d6:e9:50:89:
fd:34:f3:d8:ad:e6:ed:a7:fa:31:47:c0:ab:67:5e:
c3:97:e8:ec:e9:c2:9e:03:1a:5f:99:25:9a:cb:b0:
73:ea:93:1a:4b:f4:61:e0:31:2a:7f:6a:8b:ca:4e:
66:48:f0:a8:4f:18:92:5f:e1:ae:0e:50:b3:09:5d:
27:7a:22:41:52:a3:87:bd:f6:01:22:60:f7:1c:97:
c5:64:ad:46:be:e6:0c:e1:a2:ac:c1:99:16:62:6f:
b6:06:af:7a:8f:42:e3:b4:32:a2:da:4c:52:1c:cd:
a5:07:b3:4e:10:f8:72:78:99:d8:a3:df:27:64:b4:
01:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:57:15:F5:19:5E:FF:29:DA:5C:F8:EF:D3:3D:D3:A1:F2:4C:A7:05
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/zVcV9Rle_ynaXPjv0z3TofJMpwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:d0::/44
Signature Algorithm: sha256WithRSAEncryption
8a:fe:55:5a:39:89:95:b3:f9:1c:8b:b1:8e:63:ac:8e:d2:d6:
fb:96:a7:74:98:63:17:3f:dd:8f:9e:c6:28:4c:fa:83:54:44:
a3:63:35:db:53:d9:60:49:a6:7c:09:57:02:3a:b5:56:8e:b2:
da:5a:97:0d:3a:cf:46:9d:a5:44:02:bf:22:5c:3a:2e:d1:a6:
81:dc:8b:51:93:74:50:43:48:cf:40:2f:4b:be:da:20:d6:ab:
8a:03:59:03:f0:b6:8e:00:de:f1:9e:94:85:fe:12:3a:97:01:
d2:e9:50:31:93:47:be:bb:79:c5:8b:c4:4a:01:3b:63:dc:e4:
2f:cb:5a:a8:5b:77:a2:24:f3:68:f2:b1:4c:8c:c4:9f:23:49:
91:fd:30:48:95:71:9b:8a:a1:d0:77:13:09:2f:66:ae:cf:77:
f5:c5:6e:05:26:f3:7e:bc:e1:b7:a6:e6:05:cb:69:e0:a7:b8:
03:26:9f:58:41:e4:bf:f0:5b:e7:8e:2d:42:36:00:5a:28:c8:
ef:e9:6f:65:63:4c:65:43:c5:79:c6:72:82:ef:d3:69:a9:f0:
44:36:c6:06:21:f8:f7:f9:48:bd:37:99:99:7b:7f:0a:fc:c9:
e6:81:61:69:e6:3a:55:0f:67:fb:76:5b:b0:83:89:ad:6c:89:
50:7f:7c:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:43 2024 by rpki-client on console-ams.rpki-client.org