Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/SFwKk7bh2I-lRFZs2mWJrwyMobI.roa
File: SFwKk7bh2I-lRFZs2mWJrwyMobI.roa (raw, json)
Hash identifier: LhsVz0zMWj/AnjmjewJ1ZazFj1CsiIXd28KuxBrvgQw=
Subject key identifier: 48:5C:0A:93:B6:E1:D8:8F:A5:44:56:6C:DA:65:89:AF:0C:8C:A1:B2
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0190FFC1BCA6AB3A6ED06481FDB1E9468F4D
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/SFwKk7bh2I-lRFZs2mWJrwyMobI.roa
Signing time: Mon 29 Jul 2024 18:30:05 +0000
ROA not before: Mon 29 Jul 2024 18:30:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2a10:ccc5:2a10::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 24 Sep 2024 05:38:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ff:c1:bc:a6:ab:3a:6e:d0:64:81:fd:b1:e9:46:8f:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jul 29 18:30:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=485c0a93b6e1d88fa544566cda6589af0c8ca1b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:80:43:9a:be:62:bb:20:b5:dc:81:86:15:de:
47:ea:48:2f:ec:7e:38:9d:04:8b:24:1d:3e:80:5f:
17:b2:11:77:30:c7:80:ec:f3:ad:cb:15:f9:b3:a9:
6e:77:41:f1:08:46:22:ef:ca:5b:45:27:63:7d:b0:
b8:60:ed:9c:e2:35:da:cf:aa:96:f2:d9:92:c8:d5:
9b:01:7f:40:28:56:d5:86:f0:2c:79:c5:85:bc:30:
c7:ab:4e:4a:da:2b:a6:a7:8e:1f:0a:85:20:32:17:
fe:71:b4:5b:66:c7:0c:9f:3f:b8:e0:e8:a7:bc:15:
be:85:22:62:a6:73:7a:54:b6:97:7e:a7:a2:39:a5:
57:08:4a:9b:37:f4:8c:c6:83:97:e5:3f:da:b3:12:
2e:28:b4:50:24:6a:07:d7:22:59:d5:12:01:3f:3c:
4f:d5:97:be:58:6d:9b:fa:fc:f2:9b:e5:ae:93:02:
f8:ce:bb:04:19:e0:a9:55:ae:7c:de:b7:90:d5:a5:
96:74:e8:91:29:d3:10:34:3a:4b:7a:16:a9:7f:15:
89:8d:e0:9e:7a:98:82:ff:a6:5c:d8:65:5d:53:79:
a6:8e:a6:09:89:0f:5c:99:c4:3f:09:ec:58:89:03:
a4:13:b7:e9:3c:70:f4:bd:b6:5f:4b:8a:81:20:6b:
23:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:5C:0A:93:B6:E1:D8:8F:A5:44:56:6C:DA:65:89:AF:0C:8C:A1:B2
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/SFwKk7bh2I-lRFZs2mWJrwyMobI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:ccc5:2a10::/44
Signature Algorithm: sha256WithRSAEncryption
90:9e:f2:7d:48:19:29:f4:d3:e5:ee:67:24:1c:9a:86:2e:5b:
9c:44:74:ad:70:5d:a5:19:6a:b5:93:23:a6:d3:4a:29:38:f9:
40:58:ec:98:18:e6:b7:82:41:00:40:3b:27:3a:a3:f3:e0:f5:
5c:1e:50:3f:3a:5b:f2:3e:a1:d2:ff:b8:28:e5:61:ba:f0:21:
b9:5f:96:32:d1:cf:47:9d:cf:d8:46:2b:4b:b6:56:8a:ca:34:
c9:dc:6d:66:f7:b2:ae:87:a5:a8:54:aa:fa:9f:ca:b1:00:5b:
af:1e:c9:84:85:69:10:3c:69:1e:a9:c9:ef:7c:71:88:88:51:
d4:1c:eb:50:c5:10:85:e7:8c:78:66:8a:9e:8d:fb:9c:2a:82:
f4:33:0e:bd:9b:54:5a:24:00:c1:c2:01:24:5c:32:e2:41:f5:
4c:d5:26:66:9a:9d:d9:ff:80:2b:4e:27:50:0d:1d:b1:de:75:
2b:a5:31:37:ce:66:83:cb:83:44:da:5c:ce:eb:44:25:f9:79:
39:e7:48:f8:cf:98:56:9e:c2:f5:6b:e8:9b:5b:7f:c6:48:83:
b1:58:76:5b:3a:88:fb:07:34:a6:b8:35:9a:03:99:6f:c2:e3:
c9:d6:9b:dc:f7:d6:f7:da:c5:f3:26:60:3f:85:66:1e:51:46:
41:20:63:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 24 07:38:54 2024 by rpki-client on console-fra.rpki-client.org