Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/dee578-f2c6-41c0-b728-ad163ab354c8/1/h5C2bpl0MCJA_Be2BA6PTeo-DJ4.roa
File: h5C2bpl0MCJA_Be2BA6PTeo-DJ4.roa (raw, json)
Hash identifier: 1b/aHTiVAtrplh4oUl1h346eeSLj6TX8heKoVqKp5kY=
Subject key identifier: 87:90:B6:6E:99:74:30:22:40:FC:17:B6:04:0E:8F:4D:EA:3E:0C:9E
Certificate issuer: /CN=27484956736549eab3b06e23aab89ca5993a8076
Certificate serial: 0190E69CA841D684AF1BBE4BC4C85ADFCD30
Authority key identifier: 27:48:49:56:73:65:49:EA:B3:B0:6E:23:AA:B8:9C:A5:99:3A:80:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J0hJVnNlSeqzsG4jqricpZk6gHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/dee578-f2c6-41c0-b728-ad163ab354c8/1/h5C2bpl0MCJA_Be2BA6PTeo-DJ4.roa
Signing time: Wed 24 Jul 2024 21:19:04 +0000
ROA not before: Wed 24 Jul 2024 21:19:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64286
IP address blocks: 2a10:3b04::/32 maxlen: 32
2a10:3b05::/32 maxlen: 32
2a10:3b06::/32 maxlen: 32
2a10:3b07::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 07 Aug 2024 17:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e6:9c:a8:41:d6:84:af:1b:be:4b:c4:c8:5a:df:cd:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27484956736549eab3b06e23aab89ca5993a8076
Validity
Not Before: Jul 24 21:19:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8790b66e9974302240fc17b6040e8f4dea3e0c9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:50:a4:dc:57:90:a4:2f:26:64:76:fd:c0:80:
b2:50:32:e6:7c:fd:4e:a8:09:14:90:cb:77:4b:b7:
c0:1a:ae:22:e1:97:38:f8:79:87:bc:2f:40:ea:41:
fc:b3:de:1f:95:9f:ab:2f:18:59:ff:15:cd:e5:c7:
e7:39:19:46:25:9b:08:a0:a1:8a:be:7a:32:e5:50:
80:df:06:18:0e:2e:78:08:7b:39:04:2f:1d:8f:39:
ec:08:77:62:23:78:88:8f:a8:40:a1:6f:87:a2:de:
73:21:d8:ae:92:b0:0c:34:1c:85:b1:7e:18:02:00:
59:d5:a5:4d:85:0f:17:07:74:37:42:5c:ca:e3:82:
ed:47:56:e2:ac:e3:9e:3c:32:de:c5:79:fb:85:b4:
a8:d8:b9:67:c4:60:23:fe:a6:b2:09:d9:55:50:c7:
78:d0:07:13:b8:2f:5d:92:68:36:fc:6e:f6:75:04:
d8:14:21:c3:fa:22:19:0d:18:49:55:22:20:a4:67:
80:5e:94:61:02:05:72:aa:9c:11:05:cb:79:3f:5e:
da:cf:e1:e0:2a:53:4b:73:9b:b0:6c:11:18:19:e9:
a5:38:3e:76:20:89:9b:b0:02:46:32:65:6a:17:e4:
ad:ae:66:2f:95:e5:bb:ef:68:0f:3e:f4:ec:ff:2d:
f5:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:90:B6:6E:99:74:30:22:40:FC:17:B6:04:0E:8F:4D:EA:3E:0C:9E
X509v3 Authority Key Identifier:
keyid:27:48:49:56:73:65:49:EA:B3:B0:6E:23:AA:B8:9C:A5:99:3A:80:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J0hJVnNlSeqzsG4jqricpZk6gHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/dee578-f2c6-41c0-b728-ad163ab354c8/1/h5C2bpl0MCJA_Be2BA6PTeo-DJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/dee578-f2c6-41c0-b728-ad163ab354c8/1/J0hJVnNlSeqzsG4jqricpZk6gHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:3b04::/30
Signature Algorithm: sha256WithRSAEncryption
bc:40:6a:c1:0f:e2:57:97:07:e6:7e:71:a8:9a:a1:ac:a0:b4:
1d:b1:3d:d3:c9:33:33:6a:b7:cb:fd:98:37:3d:a4:e9:12:d4:
cf:a0:ee:00:a3:4f:d3:0e:cb:16:23:7b:3d:1c:a8:c4:41:eb:
8d:5f:ed:a9:7b:ac:a8:b1:5b:0d:a9:b8:42:6f:bc:b4:fd:6a:
51:05:e8:f6:b7:99:70:8a:24:2a:ec:54:98:4b:21:c8:37:fe:
b0:28:ec:4b:24:c7:e6:9e:3b:09:f5:53:39:96:9f:00:3e:2a:
c9:1f:2d:6c:51:83:a8:77:4e:63:6d:0c:e6:6a:e5:1b:f0:17:
71:4b:da:ac:cf:15:11:2f:b7:e1:a8:f1:bf:f2:09:ce:22:30:
5e:28:e5:16:2b:42:77:da:3f:e2:47:ef:3d:56:08:44:8d:60:
57:a8:e7:15:09:a2:1c:1d:b5:4a:84:f5:ff:d7:68:a5:79:70:
8a:86:4d:44:64:f5:e7:42:6b:67:4c:ba:16:04:5c:71:2f:80:
74:28:08:bb:de:93:58:e6:30:d9:c6:43:8f:8e:86:89:b1:48:
eb:45:6b:b7:0f:4c:00:e8:eb:3b:c2:01:b0:36:d6:b3:fd:cf:
73:a6:30:3a:55:7e:51:99:bc:36:38:c3:2e:6b:98:48:55:01:
b6:e5:f4:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 7 20:23:13 2024 by rpki-client on console-fra.rpki-client.org