Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/6b0344-8229-4d25-b498-8ce7c4fc5e0b/1/5DGAktIcTh1Kc6bLpUZgh_8nmPE.roa
File: 5DGAktIcTh1Kc6bLpUZgh_8nmPE.roa (raw, json)
Hash identifier: 0MPzlmbWpxjTKdUEoCUH4RMr/3skCw20VyyVIbXKEVk=
Subject key identifier: E4:31:80:92:D2:1C:4E:1D:4A:73:A6:CB:A5:46:60:87:FF:27:98:F1
Certificate issuer: /CN=37e751a11c1a7888fa58dbfc32c8959bc946303e
Certificate serial: 0190122B1FC045DBAC43EC6E61241D068F75
Authority key identifier: 37:E7:51:A1:1C:1A:78:88:FA:58:DB:FC:32:C8:95:9B:C9:46:30:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N-dRoRwaeIj6WNv8MsiVm8lGMD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/6b0344-8229-4d25-b498-8ce7c4fc5e0b/1/5DGAktIcTh1Kc6bLpUZgh_8nmPE.roa
Signing time: Thu 13 Jun 2024 15:15:34 +0000
ROA not before: Thu 13 Jun 2024 15:15:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 2a10:9007::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 25 Jun 2024 14:09:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:12:2b:1f:c0:45:db:ac:43:ec:6e:61:24:1d:06:8f:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37e751a11c1a7888fa58dbfc32c8959bc946303e
Validity
Not Before: Jun 13 15:15:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e4318092d21c4e1d4a73a6cba5466087ff2798f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d4:5a:33:fc:d5:23:26:c6:04:ba:b8:92:71:
91:55:94:08:c6:e6:f7:44:3c:9f:cf:69:78:e3:de:
a9:32:5e:80:2c:08:a2:a6:d9:1d:b9:dc:a8:5e:03:
52:a9:1d:62:f9:5b:83:e7:0c:57:76:81:6a:ec:6b:
3f:ab:fb:fd:99:9d:54:ef:98:22:05:b7:68:80:8e:
08:cf:7b:ed:ac:05:49:1a:26:4b:e8:cf:2b:95:6e:
3c:2e:4d:da:52:5c:e2:cc:1f:50:a2:dc:72:c3:e8:
b6:99:78:78:46:af:17:5c:ce:cc:23:b2:52:d6:c3:
4a:17:fc:fb:09:6e:6f:25:81:4e:a2:9b:43:64:f1:
3a:d7:51:fc:b5:0e:ce:52:72:07:56:74:b1:da:ea:
f9:f2:3f:3e:d9:5d:31:0f:5b:24:3b:b6:f3:a4:ee:
75:b8:d7:9f:11:81:a3:ff:d8:5c:3e:f6:01:aa:04:
38:9f:ad:7e:68:e4:d9:2e:2e:60:2d:26:e6:fd:dc:
25:4d:d5:3f:10:5c:ac:6d:d7:0d:a5:58:31:be:6b:
67:15:d7:16:71:d4:b6:29:e2:b6:77:10:15:56:39:
69:19:f3:53:bd:d8:8b:c5:d6:a6:f2:3a:82:33:bb:
14:3b:5b:e9:81:d7:5b:83:8b:08:2e:b7:93:69:94:
6f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:31:80:92:D2:1C:4E:1D:4A:73:A6:CB:A5:46:60:87:FF:27:98:F1
X509v3 Authority Key Identifier:
keyid:37:E7:51:A1:1C:1A:78:88:FA:58:DB:FC:32:C8:95:9B:C9:46:30:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N-dRoRwaeIj6WNv8MsiVm8lGMD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6b0344-8229-4d25-b498-8ce7c4fc5e0b/1/5DGAktIcTh1Kc6bLpUZgh_8nmPE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6b0344-8229-4d25-b498-8ce7c4fc5e0b/1/N-dRoRwaeIj6WNv8MsiVm8lGMD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:9007::/32
Signature Algorithm: sha256WithRSAEncryption
68:a9:c8:03:89:fb:5d:36:4b:06:e2:b3:88:f1:28:6d:de:0a:
27:e6:69:1c:4b:ed:ec:65:a1:a3:b1:0c:ab:98:cc:34:10:70:
eb:10:9a:fd:20:1f:77:0d:6d:cd:a7:cd:de:0e:48:1e:4b:34:
ee:0b:42:db:be:77:fa:35:f6:bf:b8:34:bc:d3:30:51:30:81:
b8:da:b2:49:b9:0a:be:cc:f0:ca:e3:50:b4:2d:b9:fc:d6:e1:
7a:3c:0c:38:ba:c3:fa:3b:dd:46:9d:ed:87:d6:03:ab:69:b9:
bb:0c:53:d1:97:c5:54:57:6c:56:30:29:bb:76:e0:76:bf:2b:
dc:9f:bc:67:d3:9e:81:c4:04:0d:d3:08:8b:8c:ab:02:84:d1:
71:ba:ff:09:48:cc:06:61:20:62:b5:7e:17:c9:d8:93:5f:35:
3c:d2:cd:45:90:34:e6:2e:27:ce:97:c2:3e:c8:c9:38:6f:17:
68:e5:49:47:b1:d0:5c:eb:a9:27:1e:25:03:6c:8f:74:a2:34:
77:2f:c5:53:59:3f:32:e7:3d:6d:67:e6:a5:a9:62:0d:b6:af:
82:05:9c:9f:cb:c0:66:d2:17:ce:71:b9:85:6d:b6:1b:fb:84:
0e:65:c0:44:a6:0b:05:8b:e1:a6:81:f9:3a:8e:7b:f9:7b:12:
85:a5:14:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 25 20:25:52 2024 by rpki-client on console-ams.rpki-client.org