Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/610NtwtAZ_q5wq-AivRDobtGs3I.roa
File: 610NtwtAZ_q5wq-AivRDobtGs3I.roa (raw, json)
Hash identifier: ALqc/CoLNR49T+rhV3JkLsu6Zp9+4Z1dBwF87Nmqo/s=
Subject key identifier: EB:5D:0D:B7:0B:40:67:FA:B9:C2:AF:80:8A:F4:43:A1:BB:46:B3:72
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 01868C4CE6749458531ED2AF4244D66E8B34
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/610NtwtAZ_q5wq-AivRDobtGs3I.roa
Signing time: Sun 26 Feb 2023 05:58:14 +0000
ROA not before: Sun 26 Feb 2023 05:58:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199762
IP address blocks: 2a0a:280:1200::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:8c:4c:e6:74:94:58:53:1e:d2:af:42:44:d6:6e:8b:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Feb 26 05:58:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb5d0db70b4067fab9c2af808af443a1bb46b372
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:be:bd:57:f6:0c:55:38:e1:f6:74:45:7f:53:
fc:e2:b3:c6:72:ff:bb:28:f5:4c:c2:d4:50:92:26:
32:32:72:f9:4e:bf:d7:47:a0:e6:e5:e4:6b:30:1d:
a2:dc:1e:d8:54:62:96:65:68:02:90:a7:21:a2:05:
57:14:03:a8:04:6a:5f:b2:42:ea:c2:fa:10:a6:bd:
cc:af:45:d6:9a:43:23:de:e4:99:b8:aa:df:08:a4:
40:37:9f:53:ff:37:83:8a:f5:fe:0d:0d:8e:cd:15:
f1:19:ee:91:e1:49:c5:07:c1:85:90:55:89:0f:f1:
8c:8b:29:ed:b7:c4:d4:b5:13:43:5c:c0:57:71:42:
38:69:4b:c5:51:87:d7:35:65:f4:0d:55:35:86:b5:
33:e4:54:44:ab:f7:0b:bb:69:9d:16:8f:76:e9:ce:
26:ce:73:c4:fa:41:e3:a5:e8:2b:52:dc:0b:9d:46:
2c:9d:42:01:33:5a:09:41:f2:53:d4:a2:96:e5:f3:
52:08:9f:29:16:a1:b7:e7:bd:8e:b4:47:d0:24:3a:
b2:e6:d6:65:81:a3:c6:16:d9:9f:91:b0:61:68:57:
ec:b7:03:f8:d3:5c:c7:e6:15:23:9f:61:dc:5c:e6:
2e:3d:49:aa:69:1e:1d:6d:47:34:9d:0e:e5:ee:1e:
f0:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:5D:0D:B7:0B:40:67:FA:B9:C2:AF:80:8A:F4:43:A1:BB:46:B3:72
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/610NtwtAZ_q5wq-AivRDobtGs3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:280:1200::/40
Signature Algorithm: sha256WithRSAEncryption
0d:21:23:65:8b:af:21:02:84:bf:4a:97:24:b8:ae:f0:bb:61:
6b:ff:9a:78:88:7d:29:71:eb:dd:21:37:ff:a6:ff:4d:ab:30:
54:7f:a4:ff:48:46:32:b4:ce:90:8d:70:b7:73:93:00:19:2b:
d8:c5:63:57:eb:9c:ec:7c:3e:fe:7e:41:4d:d8:90:f2:3b:61:
5a:60:a7:e1:9c:c0:2b:d6:a8:09:f4:82:55:54:e0:d1:7c:f9:
a6:56:8f:df:05:ec:b8:4f:27:c0:ab:0d:f6:38:43:91:51:ca:
a0:ce:c1:cb:91:68:5f:72:4f:00:dc:7a:96:35:16:37:a6:34:
df:90:a5:1f:73:12:b5:77:24:04:e1:0e:c6:6e:9a:01:7c:93:
8a:1c:c4:88:2d:1c:5e:b0:25:6c:8b:a6:9a:24:df:eb:18:eb:
eb:c5:ca:3c:32:4d:a3:b5:15:5f:86:7c:f5:63:2c:e6:bf:f4:
bd:72:72:cf:57:bb:63:06:d0:3b:51:95:42:8c:af:98:b4:0e:
e7:3b:fb:1d:90:0b:68:18:f2:32:9f:c9:30:df:2c:ea:f6:e9:
72:50:a8:6a:68:73:a8:09:fa:ed:ef:1d:b6:cc:b0:fa:6b:14:
59:dd:e7:0a:87:eb:87:6b:37:d5:7a:25:20:06:ab:bd:f8:d7:
40:80:9a:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:22 2024 by rpki-client on console-fra.rpki-client.org