Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/PiwSMly8ULXZ_uF8JclWm19dpHo.roa
File: PiwSMly8ULXZ_uF8JclWm19dpHo.roa (raw, json)
Hash identifier: +bJlgdWATizv2qy1T2QIX+vzzHjnARP3LXySFKSAmpo=
Subject key identifier: 3E:2C:12:32:5C:BC:50:B5:D9:FE:E1:7C:25:C9:56:9B:5F:5D:A4:7A
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 0192EF32432B91D332B5051A8B81B0200CFF
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/PiwSMly8ULXZ_uF8JclWm19dpHo.roa
Signing time: Sat 02 Nov 2024 23:25:01 +0000
ROA not before: Sat 02 Nov 2024 23:25:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215112
IP address blocks: 2a10:6c40::/29 maxlen: 29
2a14:6ac0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 05 Nov 2024 20:13:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ef:32:43:2b:91:d3:32:b5:05:1a:8b:81:b0:20:0c:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Nov 2 23:25:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3e2c12325cbc50b5d9fee17c25c9569b5f5da47a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a7:a8:0c:81:bb:93:a8:2b:a6:b7:81:3a:4c:
9d:67:aa:fe:fa:12:e6:33:ae:30:c5:49:bc:3d:36:
19:9c:e9:5f:0f:13:9a:06:b0:06:41:35:8b:b8:ef:
c4:df:6c:93:92:b2:e1:69:67:49:71:84:1b:a3:64:
c9:69:82:d9:fe:cb:b5:b8:f8:d9:23:02:21:70:f6:
1b:f5:d8:9b:3f:08:a9:76:95:03:46:56:26:3b:d0:
42:d7:86:eb:d8:e1:75:d5:ec:bf:d7:34:48:75:c6:
d1:fe:54:46:a9:99:50:a4:b3:b0:c3:bc:e8:cd:5a:
e3:7d:aa:4f:7a:ac:f0:78:c3:87:3a:2b:44:e2:53:
e3:02:e9:3f:88:f1:97:f4:36:86:04:a2:75:e2:93:
2a:4f:60:72:cb:53:7c:5a:29:9b:8e:64:9c:96:ce:
f0:60:ce:62:3d:f0:00:49:40:09:29:25:7c:c1:c4:
3c:a7:eb:fe:a7:88:1d:f6:1a:19:22:89:4e:40:8f:
bb:6d:52:34:32:dc:ba:ef:a2:e8:c6:cf:fe:b3:3e:
8e:79:0a:ac:c0:42:13:78:26:74:1d:b2:34:89:a6:
c6:b2:0f:8a:d8:87:36:24:aa:25:f4:1e:d1:6b:6e:
d5:92:06:90:26:d5:a4:47:89:b2:9d:a4:ad:9c:80:
18:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:2C:12:32:5C:BC:50:B5:D9:FE:E1:7C:25:C9:56:9B:5F:5D:A4:7A
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/PiwSMly8ULXZ_uF8JclWm19dpHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:6c40::/29
2a14:6ac0::/29
Signature Algorithm: sha256WithRSAEncryption
04:55:3f:a8:cd:86:73:22:23:9b:f9:d9:69:48:80:9e:83:af:
ab:cc:1d:56:73:75:f0:bd:51:54:66:71:66:eb:96:81:fb:d9:
4a:79:3d:d8:95:3e:e5:f5:e4:05:b1:d1:59:87:2b:da:80:ec:
0f:a4:11:07:4f:0f:e6:63:52:60:c6:3b:86:1e:7d:72:4e:da:
2a:5b:2b:fc:4d:10:e0:bb:1f:32:ba:fd:a4:7e:35:2b:0d:6a:
aa:cb:65:f7:1c:27:6c:f1:b8:2a:df:d9:8d:fe:8f:b4:3b:ef:
be:53:6c:a5:72:92:ea:a6:5c:0c:33:50:a8:62:c5:0c:29:47:
d2:b1:9d:b3:ed:54:7f:9c:69:59:43:13:4e:a3:58:99:e7:56:
98:a6:1e:a1:7f:58:56:87:2a:85:28:70:0a:dd:f7:30:be:74:
f8:75:9b:a8:12:96:ef:23:d8:e1:f9:58:9d:27:ab:0e:83:a1:
9d:19:29:92:80:06:6c:c5:62:5e:0b:dc:f1:f8:52:77:46:bb:
f5:12:56:17:77:d5:6d:99:c7:d6:10:bc:9f:d7:bc:a9:e6:10:
8b:7d:7a:d7:41:cc:e9:9c:2d:ab:b5:30:50:ff:74:2b:4b:e6:
df:0c:1f:8b:28:55:94:17:e9:cb:84:a7:97:ec:c8:00:d0:ea:
2d:93:d6:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 5 23:19:59 2024 by rpki-client on console-ams.rpki-client.org