Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/S6I4bldeC5BxZ0Vbw_1W1zrEJKg.roa
File: S6I4bldeC5BxZ0Vbw_1W1zrEJKg.roa (raw, json)
Hash identifier: 5P58X0gN/4nOAjs+4y9lnjsEuOwZ8H45bbMuWztLe4I=
Subject key identifier: 4B:A2:38:6E:57:5E:0B:90:71:67:45:5B:C3:FD:56:D7:3A:C4:24:A8
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018FA427CEFE7B14D9FAA52EC65A23C6452D
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/S6I4bldeC5BxZ0Vbw_1W1zrEJKg.roa
Signing time: Thu 23 May 2024 06:33:43 +0000
ROA not before: Thu 23 May 2024 06:33:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202941
IP address blocks: 2a10:2f00:187::/48 maxlen: 48
2a10:ccc0:800::/48 maxlen: 48
2a10:ccc0:801::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 07:51:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a4:27:ce:fe:7b:14:d9:fa:a5:2e:c6:5a:23:c6:45:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 23 06:33:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4ba2386e575e0b907167455bc3fd56d73ac424a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a6:5a:d8:83:c2:61:06:ab:e2:66:a3:78:7e:
55:02:fa:f1:42:b7:df:17:1c:c9:f3:6f:99:c6:48:
56:6e:f0:5f:f5:d4:3d:ac:81:02:87:71:e6:71:51:
fe:59:5f:73:c8:d6:fa:90:18:cc:3b:af:8c:56:7b:
7f:07:3c:57:9a:c9:77:12:74:cb:af:f0:f7:87:c6:
f2:f0:89:c6:90:16:b7:97:5d:d9:dd:73:4e:8b:d3:
6b:99:c8:3d:0b:58:ab:90:f0:60:c6:06:f6:e3:a8:
2b:77:0a:6f:c4:0e:67:a6:c0:e4:f1:86:5b:41:b9:
98:67:fe:72:f0:7f:57:07:61:29:ac:04:52:03:55:
b2:6d:d7:99:0e:94:57:d0:cd:a9:bc:b9:5e:82:39:
f7:4d:9d:b8:57:6f:f2:8b:31:e9:97:1e:00:05:e4:
70:7c:72:24:30:86:82:11:8f:28:76:c8:57:fe:2a:
42:9e:c4:2f:fe:31:8b:ac:a8:34:16:f4:54:1f:18:
7b:0e:be:ae:98:55:5b:ab:be:9b:c6:5f:bf:3f:27:
2e:ad:b8:28:5d:62:c4:1f:bc:79:3d:d8:d9:a9:fa:
32:23:97:d2:88:e9:12:ce:de:c6:bc:68:75:d8:d9:
80:70:b7:93:0e:12:1f:62:14:f6:da:1e:6d:1d:42:
4c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:A2:38:6E:57:5E:0B:90:71:67:45:5B:C3:FD:56:D7:3A:C4:24:A8
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/S6I4bldeC5BxZ0Vbw_1W1zrEJKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f00:187::/48
2a10:ccc0:800::/47
Signature Algorithm: sha256WithRSAEncryption
59:7b:46:47:be:57:ff:9c:b3:9c:c8:17:45:88:b1:d5:32:a6:
df:b2:d0:88:ba:38:e8:f8:c5:00:63:dd:57:01:b4:a9:38:20:
31:f7:36:d2:3b:37:5e:3c:4c:63:b8:80:a8:d3:67:54:d0:05:
51:2f:55:45:dd:00:69:14:c3:14:b8:0a:47:09:97:b3:cc:e7:
b4:c1:aa:a9:11:ed:7b:15:e8:50:a7:80:a3:04:e5:8d:c1:4e:
5d:f4:08:a2:93:e6:14:93:58:06:4b:0c:bc:0a:5e:e7:16:f8:
a2:8e:54:c8:d9:19:38:82:1b:7a:72:89:31:f7:ea:13:50:c1:
05:d5:89:7c:0a:a5:c2:3d:b5:2b:89:64:25:59:05:9c:67:0b:
41:8a:87:e7:32:7f:5f:a0:93:3c:e9:c2:93:34:05:d8:4c:e1:
07:cc:f6:75:28:08:d2:14:05:99:b7:85:ca:d8:bf:24:65:88:
f7:21:96:5c:53:01:35:2b:9e:23:10:ca:9f:d0:e8:3e:be:08:
01:92:80:b8:a8:50:d4:b7:65:00:fa:d2:db:95:dc:ae:62:ac:
44:13:90:2d:17:54:5e:49:64:44:67:42:5c:e5:f0:24:b7:b6:
e6:06:86:66:dd:e0:01:e0:26:1d:96:ab:7b:f2:ce:70:ba:ff:
d9:71:c8:f2
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAY+kJ87+exTZ+qUuxlojxkUtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjQwNTIzMDYzMzQzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YmEyMzg2ZTU3NWUwYjkwNzE2NzQ1NWJjM2ZkNTZkNzNhYzQyNGE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2qZa2IPCYQar4majeH5VAvrxQrff
FxzJ82+ZxkhWbvBf9dQ9rIECh3HmcVH+WV9zyNb6kBjMO6+MVnt/BzxXmsl3EnTL
r/D3h8by8InGkBa3l13Z3XNOi9Nrmcg9C1irkPBgxgb246grdwpvxA5npsDk8YZb
QbmYZ/5y8H9XB2EprARSA1WybdeZDpRX0M2pvLlegjn3TZ24V2/yizHplx4ABeRw
fHIkMIaCEY8odshX/ipCnsQv/jGLrKg0FvRUHxh7Dr6umFVbq76bxl+/Pycurbgo
XWLEH7x5PdjZqfoyI5fSiOkSzt7GvGh12NmAcLeTDhIfYhT22h5tHUJMHwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFEuiOG5XXguQcWdFW8P9Vtc6xCSoMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvUzZJNGJsZGVDNUJ4WjBWYndfMVcxenJFSktnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKhAvAAGH
AwcBKhDMwAgAMA0GCSqGSIb3DQEBCwUAA4IBAQBZe0ZHvlf/nLOcyBdFiLHVMqbf
stCIujjo+MUAY91XAbSpOCAx9zbSOzdePExjuICo02dU0AVRL1VF3QBpFMMUuApH
CZezzOe0waqpEe17FehQp4CjBOWNwU5d9Aiik+YUk1gGSwy8Cl7nFviijlTI2Rk4
ght6cokx9+oTUMEF1Yl8CqXCPbUriWQlWQWcZwtBiofnMn9foJM86cKTNAXYTOEH
zPZ1KAjSFAWZt4XK2L8kZYj3IZZcUwE1K54jEMqf0Og+vggBkoC4qFDUt2UA+tLb
ldyuYqxEE5AtF1ReSWREZ0Jc5fAkt7bmBoZm3eAB4CYdlqt78s5wuv/Zccjy
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:03 2024 by rpki-client on console-ams.rpki-client.org