Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/2526H4YQ5IpiYDEXKu7Ic-jajGE.roa
File: 2526H4YQ5IpiYDEXKu7Ic-jajGE.roa (raw, json)
Hash identifier: isQbcpx8Nyrtc89cm7cMz7uKqhgde/WApPf9hCY2VVo=
Subject key identifier: DB:9D:BA:1F:86:10:E4:8A:62:60:31:17:2A:EE:C8:73:E8:DA:8C:61
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018CD8905D0CDBD67F8B09BBAC84400BB755
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/2526H4YQ5IpiYDEXKu7Ic-jajGE.roa
Signing time: Fri 05 Jan 2024 07:39:48 +0000
ROA not before: Fri 05 Jan 2024 07:39:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200950
IP address blocks: 2a10:cc45:120::/44 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 May 2024 10:21:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d8:90:5d:0c:db:d6:7f:8b:09:bb:ac:84:40:0b:b7:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 5 07:39:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=db9dba1f8610e48a626031172aeec873e8da8c61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f2:27:61:c7:d2:1a:bc:93:60:fb:7a:ce:8e:
dc:c2:45:d1:17:50:ed:d7:9b:14:89:d6:c8:a9:e2:
70:8e:54:5c:53:78:8e:2d:1a:47:b8:f7:d7:6d:d4:
3b:d9:b0:97:79:80:ad:45:c3:71:25:54:47:55:f5:
2f:81:91:e3:82:5b:d3:67:8e:c7:fa:c9:e7:0f:7c:
e8:45:38:47:cc:5a:c5:f3:60:58:16:33:57:1d:38:
87:2e:ba:73:92:b6:04:f1:eb:67:51:d9:64:8f:0b:
13:8d:9e:a6:d1:ac:d5:99:37:44:1c:fd:7d:d6:6d:
01:de:02:89:c3:32:75:f2:99:4b:6e:64:e7:5a:cc:
ce:88:cb:66:6a:e7:dd:ea:06:03:4b:91:44:17:3a:
4f:c8:91:1c:93:d2:4a:88:ab:d2:48:28:23:a7:2e:
13:86:e1:bb:67:86:d8:1f:70:5f:3c:f9:e6:64:7a:
c4:ad:fc:35:ea:0d:e6:5c:27:12:fe:78:7b:e9:f0:
5c:61:8c:64:0b:00:61:eb:c0:ad:5b:0b:14:7a:83:
41:7a:4a:c9:af:0d:da:57:f4:9b:b3:a4:1e:9a:65:
83:b8:a2:35:76:fa:75:fc:65:7c:b0:f6:11:48:6d:
88:ad:40:d7:b4:96:99:a6:c7:eb:23:00:7a:8c:91:
68:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:9D:BA:1F:86:10:E4:8A:62:60:31:17:2A:EE:C8:73:E8:DA:8C:61
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/2526H4YQ5IpiYDEXKu7Ic-jajGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cc45:120::/44
Signature Algorithm: sha256WithRSAEncryption
8c:6b:29:b6:62:26:bb:a8:94:86:82:3c:1c:30:7d:33:4b:56:
02:73:42:fd:63:bf:92:9d:c6:50:a6:7b:5a:62:ba:f2:96:23:
1a:32:61:db:f1:89:33:02:b4:16:40:8f:38:ef:7c:0f:ee:1e:
f9:3c:54:43:96:a0:b9:0e:31:3c:85:be:69:61:19:f0:c2:e7:
1f:8a:05:79:73:40:9d:bc:5e:03:ea:f7:bc:c7:db:1f:5f:88:
e7:84:fb:a7:7e:75:d4:c6:70:4b:c7:57:cf:4a:61:53:a8:02:
a9:14:d7:1a:76:c0:d9:f4:97:71:77:7b:87:79:de:f0:32:41:
22:be:2d:eb:7a:43:9e:ed:bb:f7:a2:fa:36:a4:32:c0:b2:eb:
a9:19:f1:57:55:b1:8d:a6:d3:ec:53:3c:02:c6:dd:0e:9d:19:
91:ef:10:4a:00:4b:88:1d:fd:d2:70:4b:42:16:59:85:ae:62:
6e:85:7d:3d:5d:3e:3e:a7:2e:51:52:68:86:b1:7e:47:a7:31:
e1:67:a9:41:ed:42:70:2f:b0:5f:95:30:ee:0c:d3:c1:32:d8:
a8:ed:47:30:03:0b:da:16:aa:c4:cb:88:f0:04:21:fc:08:4d:
b5:f2:58:31:e1:50:12:09:fd:19:95:ad:eb:7d:09:b8:50:1b:
55:a2:1b:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 12:38:38 2024 by rpki-client on console-ams.rpki-client.org