Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/e5556c-cfea-4972-aaf8-17a1dcdcc6e0/1/cpvBUWmx72MzXQVkJyj54KjlWfM.roa
File: cpvBUWmx72MzXQVkJyj54KjlWfM.roa (raw, json)
Hash identifier: ECxe/Z0m0Dt4fNTyP0fY2NupQTz8mlbhsG7ngp8QIF8=
Subject key identifier: 72:9B:C1:51:69:B1:EF:63:33:5D:05:64:27:28:F9:E0:A8:E5:59:F3
Certificate issuer: /CN=74b42a6de4e01fc31250d1bbe322281046ee61aa
Certificate serial: 01856F4296420A22463FF05843C35955F038
Authority key identifier: 74:B4:2A:6D:E4:E0:1F:C3:12:50:D1:BB:E3:22:28:10:46:EE:61:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLQqbeTgH8MSUNG74yIoEEbuYao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/e5556c-cfea-4972-aaf8-17a1dcdcc6e0/1/cpvBUWmx72MzXQVkJyj54KjlWfM.roa
Signing time: Sun 01 Jan 2023 21:35:12 +0000
ROA not before: Sun 01 Jan 2023 21:35:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50399
IP address blocks: 2a10:dac0:100::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:96:42:0a:22:46:3f:f0:58:43:c3:59:55:f0:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b42a6de4e01fc31250d1bbe322281046ee61aa
Validity
Not Before: Jan 1 21:35:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=729bc15169b1ef63335d05642728f9e0a8e559f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ed:80:c0:34:6d:98:b3:72:de:67:7d:59:bd:
63:20:24:c3:ba:82:00:0e:9d:ce:3c:da:68:44:cb:
9f:a2:13:b6:bc:ed:b3:d4:ce:35:4b:7c:bb:0d:4f:
22:ad:84:ba:32:d7:4e:24:c2:f5:44:f8:5a:52:38:
eb:c1:b3:a2:d6:99:78:5d:86:65:cf:7b:3f:ce:c3:
3f:92:ec:7f:76:dc:ed:52:a2:2c:76:41:20:51:78:
42:a1:98:75:f0:38:00:52:42:f9:78:85:2f:ae:b0:
a6:bb:a1:93:f1:f0:86:f2:19:2d:55:e4:f7:97:c5:
4d:28:d7:e0:b3:f6:07:e0:db:55:61:f7:36:65:df:
5d:07:05:0b:b7:29:35:57:33:0e:5d:82:ff:23:c5:
5b:35:db:36:d3:ce:46:f6:c1:3d:57:22:d8:3f:f3:
51:e4:4c:11:83:c7:e2:5d:a5:b5:c6:63:88:40:9c:
87:d1:0f:c3:17:07:49:bf:9a:2e:d6:76:7b:8e:f4:
f0:4e:6e:19:1c:c9:2a:fe:18:bd:6c:73:4a:c0:71:
34:38:74:ff:60:97:d0:2f:79:43:12:1b:d9:f9:50:
04:60:27:64:45:46:0d:bc:fe:15:3e:21:65:65:d4:
b9:26:b4:a1:ab:3a:29:fa:c8:bf:23:24:6d:c0:b5:
87:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:9B:C1:51:69:B1:EF:63:33:5D:05:64:27:28:F9:E0:A8:E5:59:F3
X509v3 Authority Key Identifier:
keyid:74:B4:2A:6D:E4:E0:1F:C3:12:50:D1:BB:E3:22:28:10:46:EE:61:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLQqbeTgH8MSUNG74yIoEEbuYao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/e5556c-cfea-4972-aaf8-17a1dcdcc6e0/1/cpvBUWmx72MzXQVkJyj54KjlWfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/e5556c-cfea-4972-aaf8-17a1dcdcc6e0/1/dLQqbeTgH8MSUNG74yIoEEbuYao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:dac0:100::/48
Signature Algorithm: sha256WithRSAEncryption
a8:bf:96:dd:29:9d:d5:49:a7:e8:d0:75:b5:23:bb:e5:bd:91:
cb:b7:3a:3f:0b:e8:c9:4d:e0:88:47:3e:1d:68:bb:34:e0:8f:
18:28:d7:db:e3:56:9d:13:95:23:1c:24:81:54:5e:84:35:c8:
57:41:03:5c:94:87:53:5e:95:de:57:78:55:10:72:d7:43:29:
4f:b9:94:9f:37:f3:ce:84:0d:a9:18:97:96:3b:b9:2c:9c:f0:
99:34:5a:d0:56:c1:0e:df:4d:7c:4c:0c:9f:86:27:5f:ab:13:
56:8a:7a:0b:60:50:a0:e6:1b:9b:fe:86:ae:b9:97:d0:e2:35:
44:a0:03:9d:73:e9:00:d1:41:75:e5:ec:82:83:84:c7:b5:e4:
d4:46:a2:5d:91:10:42:73:54:d7:40:0d:bc:36:6d:0e:1a:78:
86:d0:cc:4c:78:01:72:05:65:18:bb:94:0b:ce:fe:c0:fc:a5:
91:e4:44:53:6c:6e:5e:86:20:49:26:14:4f:a3:d2:c6:e0:05:
3b:ff:82:fa:cc:67:ea:0d:6d:52:98:98:b7:d5:35:35:0e:df:
b2:2a:db:95:8d:68:b7:85:20:9e:ff:51:b2:6b:b8:d6:4f:66:
74:32:e0:f2:81:6b:21:95:c5:e8:ed:e1:de:db:44:c0:3e:ef:
71:1c:78:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:08 2024 by rpki-client on console-ams.rpki-client.org