Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/dee578-f2c6-41c0-b728-ad163ab354c8/1/xTQBCqpAdhtG28xochGXBSItZwY.roa
File: xTQBCqpAdhtG28xochGXBSItZwY.roa (raw, json)
Hash identifier: BFi0aRMCOC5FLrWYLWemaG/dQncTrEIjIBYM+zcujW0=
Subject key identifier: C5:34:01:0A:AA:40:76:1B:46:DB:CC:68:72:11:97:05:22:2D:67:06
Certificate issuer: /CN=27484956736549eab3b06e23aab89ca5993a8076
Certificate serial: 018FEF454E5E5D50049C7ABAEACB2E4104E9
Authority key identifier: 27:48:49:56:73:65:49:EA:B3:B0:6E:23:AA:B8:9C:A5:99:3A:80:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J0hJVnNlSeqzsG4jqricpZk6gHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/dee578-f2c6-41c0-b728-ad163ab354c8/1/xTQBCqpAdhtG28xochGXBSItZwY.roa
Signing time: Thu 06 Jun 2024 20:37:27 +0000
ROA not before: Thu 06 Jun 2024 20:37:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64286
IP address blocks: 2a10:3b00::/32 maxlen: 32
2a10:3b01::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 20 Jun 2024 23:14:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ef:45:4e:5e:5d:50:04:9c:7a:ba:ea:cb:2e:41:04:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27484956736549eab3b06e23aab89ca5993a8076
Validity
Not Before: Jun 6 20:37:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c534010aaa40761b46dbcc6872119705222d6706
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:41:7b:95:a3:a1:10:3d:2c:04:ba:82:2c:bf:
b4:cb:a5:1f:c1:2b:d9:64:65:2b:0c:1a:c8:6a:d7:
86:d1:c4:dc:ca:e1:74:14:1f:13:b4:e4:2d:d7:1e:
11:14:fc:e1:96:ef:77:4c:4f:2d:c7:61:6a:e2:e0:
a8:16:73:ec:77:96:b8:92:be:c7:84:9c:c3:c9:bc:
60:00:62:e4:d8:7f:1e:0b:7e:9e:34:cf:c8:4b:9c:
cc:58:71:23:1c:e9:54:e1:d6:14:62:3a:30:4b:75:
e0:bd:8b:d1:c5:23:80:96:c6:26:99:77:57:6e:1d:
15:79:3c:c7:4f:e1:0e:c9:d5:6e:bd:cd:c7:79:cd:
f3:bf:2a:a5:cf:6d:36:24:37:87:f9:68:16:53:7d:
15:ea:62:6c:d3:8f:16:e1:5d:45:e2:a9:f5:e0:12:
c7:3b:cd:a1:ba:64:78:64:5a:89:2f:2f:d6:aa:6b:
f7:ca:f2:05:44:96:f0:cd:43:f0:ad:a7:a6:38:e6:
66:3d:5e:f5:f5:5d:9c:d4:99:21:84:af:03:27:51:
66:b6:cc:58:1f:75:3c:83:3a:d4:d3:c5:f6:d0:c2:
92:6f:1b:16:22:f8:a5:77:2b:59:60:7e:5a:d1:06:
0c:1d:6a:fa:66:d7:0d:3f:94:67:24:7e:83:a0:90:
ff:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:34:01:0A:AA:40:76:1B:46:DB:CC:68:72:11:97:05:22:2D:67:06
X509v3 Authority Key Identifier:
keyid:27:48:49:56:73:65:49:EA:B3:B0:6E:23:AA:B8:9C:A5:99:3A:80:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J0hJVnNlSeqzsG4jqricpZk6gHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/dee578-f2c6-41c0-b728-ad163ab354c8/1/xTQBCqpAdhtG28xochGXBSItZwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/dee578-f2c6-41c0-b728-ad163ab354c8/1/J0hJVnNlSeqzsG4jqricpZk6gHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:3b00::/31
Signature Algorithm: sha256WithRSAEncryption
ac:d4:16:ac:9b:f2:2d:50:b7:46:c3:90:b4:8d:33:5c:c5:35:
b9:d2:dc:a2:54:e8:f9:cd:e0:c4:7c:62:8e:7d:05:95:e7:75:
a4:6a:60:2e:74:3e:75:2b:4c:41:81:44:91:11:6e:9f:ea:b6:
5d:aa:61:53:e6:a0:71:dd:9f:87:93:93:5f:ae:0e:24:27:a6:
c0:34:70:cc:a1:f9:91:1d:22:e6:20:d1:bf:bb:34:5d:c3:9c:
4a:e7:e8:f6:41:84:d8:3c:8e:f7:f9:a7:ce:41:00:fc:fd:5d:
e0:be:4c:58:68:e0:12:5b:a7:40:2e:30:d7:22:99:04:c6:ec:
94:ca:e6:e7:83:0a:df:00:ce:bc:21:c2:7c:94:2b:68:93:0f:
73:ed:01:6a:36:4b:fe:5b:24:cb:f5:b3:07:b3:80:24:5e:c6:
4f:2c:cf:2f:5e:3b:66:bc:28:cc:ed:ec:89:93:8c:6f:06:ad:
94:11:d7:df:86:f5:d0:54:0b:be:d4:71:8f:6e:e7:e1:0e:a2:
d3:44:f0:e6:83:e5:69:d4:38:9b:7e:09:ed:a9:f0:fb:0e:b7:
53:6f:51:85:5a:2a:17:d7:6a:57:24:cf:cb:14:9e:5d:12:c8:
9a:ca:8d:71:26:2e:84:77:b6:38:df:ca:bb:01:3d:6d:ac:f7:
73:7e:1b:f2
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAY/vRU5eXVAEnHq66ssuQQTpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3NDg0OTU2NzM2NTQ5ZWFiM2IwNmUyM2FhYjg5Y2E1OTkz
YTgwNzYwHhcNMjQwNjA2MjAzNzI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNTM0MDEwYWFhNDA3NjFiNDZkYmNjNjg3MjExOTcwNTIyMmQ2NzA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyEF7laOhED0sBLqCLL+0y6UfwSvZ
ZGUrDBrIateG0cTcyuF0FB8TtOQt1x4RFPzhlu93TE8tx2Fq4uCoFnPsd5a4kr7H
hJzDybxgAGLk2H8eC36eNM/IS5zMWHEjHOlU4dYUYjowS3XgvYvRxSOAlsYmmXdX
bh0VeTzHT+EOydVuvc3Hec3zvyqlz202JDeH+WgWU30V6mJs048W4V1F4qn14BLH
O82humR4ZFqJLy/Wqmv3yvIFRJbwzUPwraemOOZmPV719V2c1JkhhK8DJ1FmtsxY
H3U8gzrU08X20MKSbxsWIvildytZYH5a0QYMHWr6ZtcNP5RnJH6DoJD/CQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFMU0AQqqQHYbRtvMaHIRlwUiLWcGMB8GA1UdIwQY
MBaAFCdISVZzZUnqs7BuI6q4nKWZOoB2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSjBoSlZuTmxTZXF6c0c0anFyaWNwWms2Z0hZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9kZWU1NzgtZjJjNi00MWMwLWI3Mjgt
YWQxNjNhYjM1NGM4LzEveFRRQkNxcEFkaHRHMjh4b2NoR1hCU0l0WndZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC9kZWU1NzgtZjJjNi00MWMwLWI3MjgtYWQxNjNhYjM1NGM4
LzEvSjBoSlZuTmxTZXF6c0c0anFyaWNwWms2Z0hZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUBKhA7ADAN
BgkqhkiG9w0BAQsFAAOCAQEArNQWrJvyLVC3RsOQtI0zXMU1udLcolTo+c3gxHxi
jn0Fled1pGpgLnQ+dStMQYFEkRFun+q2XaphU+agcd2fh5OTX64OJCemwDRwzKH5
kR0i5iDRv7s0XcOcSufo9kGE2DyO9/mnzkEA/P1d4L5MWGjgElunQC4w1yKZBMbs
lMrm54MK3wDOvCHCfJQraJMPc+0BajZL/lsky/WzB7OAJF7GTyzPL147ZrwozO3s
iZOMbwatlBHX34b10FQLvtRxj27n4Q6i00Tw5oPladQ4m34J7anw+w63U29RhVoq
F9dqVyTPyxSeXRLImsqNcSYuhHe2ON/KuwE9baz3c34b8g==
-----END CERTIFICATE-----
Generated at Fri Jun 21 00:39:05 2024 by rpki-client on console-fra.rpki-client.org