Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/jCdLInycoZ2nykxVaZBUsZCqSUU.roa
File: jCdLInycoZ2nykxVaZBUsZCqSUU.roa (raw, json)
Hash identifier: 8kt/jG3iMUZAKCQ2R+idkjfV8CPHkspqdZJfywygDRc=
Subject key identifier: 8C:27:4B:22:7C:9C:A1:9D:A7:CA:4C:55:69:90:54:B1:90:AA:49:45
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 0192B0D00A1959813166510CDB8725235996
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/jCdLInycoZ2nykxVaZBUsZCqSUU.roa
Signing time: Mon 21 Oct 2024 20:41:17 +0000
ROA not before: Mon 21 Oct 2024 20:41:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215112
IP address blocks: 2a10:6c40::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 02 Nov 2024 23:25:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b0:d0:0a:19:59:81:31:66:51:0c:db:87:25:23:59:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Oct 21 20:41:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c274b227c9ca19da7ca4c55699054b190aa4945
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:83:34:18:49:10:6a:3a:43:df:9a:15:4c:a2:
ef:88:80:12:4b:0c:05:7c:f6:06:7b:aa:e8:d0:98:
92:31:4f:9b:85:b3:e9:be:d9:71:0d:1e:90:8e:98:
08:d0:57:fb:bd:b3:26:e5:5e:0a:ba:75:65:2a:3c:
3b:d8:d2:a4:8a:1a:93:28:7f:84:c3:f3:4d:b9:6b:
d3:b8:f5:34:52:d8:dd:28:73:8e:b0:6d:5c:9d:5c:
5a:f8:0f:db:9a:b2:38:97:8d:ed:f6:d2:8f:fc:fe:
b3:a1:af:a2:9e:1e:02:7e:0a:47:d5:73:39:b3:0f:
00:8a:1d:ae:15:c9:76:f5:a0:4b:c2:19:41:80:58:
04:0c:1b:a9:c5:bf:af:be:23:3d:59:4c:11:f4:62:
d6:69:7a:13:32:c4:bf:a0:17:52:f4:32:22:64:e8:
5b:70:1c:a2:8f:5b:20:59:ee:96:1d:9f:78:da:0a:
9d:97:3e:0c:ec:93:69:d2:6c:95:e5:2d:d6:5d:2d:
a9:06:bb:2f:ec:77:f9:35:ee:e6:c0:97:88:c4:44:
24:d1:55:2c:6b:0d:f8:ba:b6:38:95:66:06:0d:64:
71:d9:91:99:8b:ac:e8:2e:75:f1:72:1b:cd:43:8d:
2b:15:68:ba:bf:4a:c7:a1:ea:77:e7:b7:04:6e:fe:
a8:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:27:4B:22:7C:9C:A1:9D:A7:CA:4C:55:69:90:54:B1:90:AA:49:45
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/jCdLInycoZ2nykxVaZBUsZCqSUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:6c40::/29
Signature Algorithm: sha256WithRSAEncryption
43:74:ef:42:ae:44:9a:05:8e:46:29:30:d3:de:e0:0c:18:2e:
45:9b:de:06:be:5d:99:33:9b:15:a3:27:6c:41:61:f4:84:b5:
bf:2c:4b:59:08:f6:ee:e2:84:a2:05:3d:27:5c:9c:94:2b:e6:
1e:e8:fa:9c:4e:a2:eb:cc:b9:32:92:2e:93:f1:99:f6:d6:34:
fc:07:80:38:d6:1c:8f:a6:93:b1:00:d8:61:43:53:de:cd:7e:
ff:27:97:98:98:0c:e8:58:da:15:38:1d:85:98:ac:f2:19:26:
9c:33:18:cc:d3:27:7c:20:8e:96:d0:2e:53:24:86:7c:32:23:
e8:46:a4:28:c6:be:7e:d6:dd:cc:95:30:4f:38:2c:6e:0d:99:
ee:91:56:fc:63:87:87:1a:a6:a0:c6:67:3e:b1:8d:49:71:17:
53:ec:83:19:27:fe:bc:41:3d:15:74:95:59:72:cc:10:8f:ca:
67:1f:57:eb:01:39:71:2b:75:fa:fc:09:b6:87:43:e7:bc:ce:
38:46:f6:f1:e4:3f:77:0a:11:5c:f6:67:d7:ef:ab:79:d5:db:
81:99:4a:ae:f1:9a:a6:96:ad:86:ad:53:23:90:e5:1d:bb:66:
1b:12:89:1d:10:01:c6:ef:dc:d3:50:01:b8:4d:35:68:c3:a0:
fb:8d:23:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 3 02:04:09 2024 by rpki-client on console-fra.rpki-client.org