Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/dee578-f2c6-41c0-b728-ad163ab354c8/1/cr4egC8VvkrQcAw-WIw-oZj-q8s.roa
File: cr4egC8VvkrQcAw-WIw-oZj-q8s.roa (raw, json)
Hash identifier: ny2O5qWTmxHie7+AC2uJSkXmoZgX3pMAMmwPstgOaQM=
Subject key identifier: 72:BE:1E:80:2F:15:BE:4A:D0:70:0C:3E:58:8C:3E:A1:98:FE:AB:CB
Certificate issuer: /CN=27484956736549eab3b06e23aab89ca5993a8076
Certificate serial: 01906EFAA60897CDD767A3BC36B27C61F356
Authority key identifier: 27:48:49:56:73:65:49:EA:B3:B0:6E:23:AA:B8:9C:A5:99:3A:80:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J0hJVnNlSeqzsG4jqricpZk6gHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/dee578-f2c6-41c0-b728-ad163ab354c8/1/cr4egC8VvkrQcAw-WIw-oZj-q8s.roa
Signing time: Mon 01 Jul 2024 15:47:18 +0000
ROA not before: Mon 01 Jul 2024 15:47:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64286
IP address blocks: 2a10:3b02::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 05 Jul 2024 00:09:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6e:fa:a6:08:97:cd:d7:67:a3:bc:36:b2:7c:61:f3:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27484956736549eab3b06e23aab89ca5993a8076
Validity
Not Before: Jul 1 15:47:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=72be1e802f15be4ad0700c3e588c3ea198feabcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d0:d1:3f:a2:e3:7b:04:f0:9f:17:0c:64:a4:
02:b0:98:58:0b:d7:67:eb:20:0d:00:24:4c:7f:a3:
65:64:4f:ef:c0:a0:12:29:f5:70:db:80:39:fb:f6:
34:51:d4:bb:02:0a:76:5a:4b:e6:9f:89:a0:8f:66:
66:89:c0:49:da:44:e3:36:ff:b1:da:c6:ee:45:67:
13:c5:fd:dc:36:01:2c:f3:17:8e:b9:df:3d:53:0f:
fe:1f:8c:07:c9:c7:46:a4:b0:77:49:e6:a1:b7:98:
49:53:2e:22:46:f8:9b:9e:12:20:29:e7:24:65:f7:
bf:a6:c1:ea:c1:42:bb:6c:e1:63:94:bf:06:5b:82:
79:68:22:54:07:5f:40:b6:5e:0e:37:77:dd:84:3b:
2e:5d:49:15:8f:02:88:04:61:6c:71:a2:12:ad:b7:
69:1e:6e:84:41:db:2f:cb:6d:00:32:bf:6b:2f:8f:
90:c7:1a:16:42:e3:47:80:3b:cd:75:93:04:90:81:
ea:e1:71:f1:31:03:e1:aa:39:2a:10:99:9a:10:ee:
5b:0a:80:ff:2e:81:cf:0c:10:aa:76:c2:bf:f8:57:
75:61:48:53:b4:dd:a7:90:60:03:f7:ab:7f:d4:76:
61:50:04:fc:c0:19:26:0b:bd:e4:a6:ba:c6:ed:91:
40:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:BE:1E:80:2F:15:BE:4A:D0:70:0C:3E:58:8C:3E:A1:98:FE:AB:CB
X509v3 Authority Key Identifier:
keyid:27:48:49:56:73:65:49:EA:B3:B0:6E:23:AA:B8:9C:A5:99:3A:80:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J0hJVnNlSeqzsG4jqricpZk6gHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/dee578-f2c6-41c0-b728-ad163ab354c8/1/cr4egC8VvkrQcAw-WIw-oZj-q8s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/dee578-f2c6-41c0-b728-ad163ab354c8/1/J0hJVnNlSeqzsG4jqricpZk6gHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:3b02::/32
Signature Algorithm: sha256WithRSAEncryption
b2:90:20:c2:22:f8:26:87:6a:ad:1f:4f:6c:3f:ff:08:28:ee:
d3:5f:a1:34:ab:69:c9:f2:80:cc:71:4e:67:3c:c7:dc:bf:8a:
f2:c0:5b:30:a1:07:bc:81:a0:30:23:06:30:42:ba:b5:53:65:
8b:8f:90:4b:0a:a3:bb:52:0f:00:4b:30:80:62:d6:b1:7b:cd:
2c:0e:0f:e7:63:2f:92:e0:53:4f:4a:2b:df:35:83:01:a3:a4:
ed:35:63:f7:d8:53:65:78:cb:c5:e1:4c:ee:82:7a:83:cf:af:
a2:cf:95:b6:36:e3:be:84:c8:9b:0a:86:b5:3d:ba:3d:e6:f8:
c5:06:ed:25:6d:61:f6:02:db:33:04:9e:80:1b:0f:2f:7a:1a:
6c:dc:73:fe:75:13:2a:43:7a:17:0d:41:17:c6:2d:c9:90:c7:
56:ff:dd:9d:26:f1:58:e5:e9:5c:de:f9:59:6e:67:93:b1:a2:
09:5f:9a:05:fa:ea:2d:7d:b6:d5:b4:51:7b:14:88:51:64:43:
81:40:54:9f:61:eb:58:88:36:c8:8a:0d:28:b9:d3:b7:eb:7f:
e4:ce:d9:67:04:a2:46:8c:ba:d4:99:6e:ae:df:2a:f5:58:df:
ce:8c:a9:b3:f7:a2:99:6b:c0:2d:ed:13:30:5d:82:c8:ed:41:
c7:6d:15:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 5 02:53:42 2024 by rpki-client on console-fra.rpki-client.org