Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/hQYNbyXQAXfQnghDtc4A-U-HmtA.roa
File: hQYNbyXQAXfQnghDtc4A-U-HmtA.roa (raw, json)
Hash identifier: LsYfRg5H8qYfzybgKxthTLIzCZ9gYNykNHrcn+x/9Rc=
Subject key identifier: 85:06:0D:6F:25:D0:01:77:D0:9E:08:43:B5:CE:00:F9:4F:87:9A:D0
Certificate issuer: /CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Certificate serial: 018571278E15739A9273FF365ECFA1182269
Authority key identifier: 94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/hQYNbyXQAXfQnghDtc4A-U-HmtA.roa
Signing time: Mon 02 Jan 2023 06:24:55 +0000
ROA not before: Mon 02 Jan 2023 06:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61102
IP address blocks: 2a10:1fc0:4::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:8e:15:73:9a:92:73:ff:36:5e:cf:a1:18:22:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Validity
Not Before: Jan 2 06:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85060d6f25d00177d09e0843b5ce00f94f879ad0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c4:f2:f6:14:9e:f7:70:16:1e:e6:42:5f:97:
51:68:12:0e:56:2a:42:4e:61:ce:39:56:ab:f3:23:
4a:b3:cd:54:c2:e2:b3:2b:f9:c6:73:87:71:fd:bb:
28:78:cd:b9:23:c7:60:93:32:c1:ff:44:1e:10:1b:
b1:08:1d:b2:06:cb:c0:2b:06:d2:6e:fc:7e:3c:bf:
0a:c2:35:08:dd:17:b2:9e:10:28:5b:3a:d5:28:98:
cf:ed:2e:3e:06:70:0c:fc:2e:63:ec:fb:17:12:87:
89:92:f3:b1:2c:ba:8a:dd:00:a6:53:36:44:35:01:
0b:a6:ac:22:d6:f9:69:fe:25:65:ad:f6:9f:bc:cb:
e0:67:89:30:e2:cc:fd:bd:1c:eb:9f:29:c8:3f:b1:
95:a7:56:f3:58:6f:1c:ae:8e:77:0d:3b:c9:1c:82:
9c:dc:3d:cc:0c:1b:fc:59:b7:36:3d:6a:d1:e2:f0:
1f:49:ab:b7:93:85:52:bb:51:b5:55:36:0c:7a:07:
d9:5e:9c:82:e9:6b:5a:7b:ae:fd:c9:96:e5:d2:2e:
a6:ce:3a:c8:db:5e:64:14:91:e6:27:d2:8a:6b:08:
41:79:d8:40:f1:57:60:39:0b:b9:e9:9d:14:d7:5c:
f4:2d:f0:c7:b4:0a:82:b9:b0:aa:13:39:3c:d0:c2:
65:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:06:0D:6F:25:D0:01:77:D0:9E:08:43:B5:CE:00:F9:4F:87:9A:D0
X509v3 Authority Key Identifier:
keyid:94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/hQYNbyXQAXfQnghDtc4A-U-HmtA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:1fc0:4::/48
Signature Algorithm: sha256WithRSAEncryption
a6:6f:28:b3:58:90:b7:27:57:1a:e8:dc:80:5a:ea:9e:1d:59:
52:ac:14:82:ea:76:fb:04:bb:ec:1a:cf:4b:b7:45:28:7c:0d:
05:a0:9c:b5:18:60:1b:0f:89:18:0b:f1:c0:40:44:a1:18:b2:
69:8d:ab:58:66:18:8f:77:ca:f7:76:ab:20:d3:88:c5:96:f3:
b8:9e:a5:6c:a6:00:9b:6b:74:4d:f9:6b:08:d3:de:8c:ee:16:
2f:11:85:1b:89:02:fa:96:9b:f0:c5:fe:1a:8d:44:96:f7:09:
cc:cd:03:22:9a:a2:32:e2:ff:ed:cc:8e:25:92:53:eb:82:95:
6f:00:5e:7e:43:79:c3:54:64:84:55:81:86:94:34:9b:f7:42:
2a:e2:ef:f6:d2:f6:86:30:67:40:6c:09:74:be:6a:27:41:a0:
95:eb:8e:7f:2e:8a:4e:e9:3d:30:95:fd:5d:c3:ae:8f:22:20:
ba:e2:a9:a9:9f:fa:ac:1b:a6:19:00:27:1b:ed:b6:52:61:43:
dc:60:41:d0:4e:ab:d7:e9:b7:32:0b:38:0c:8d:cb:0a:83:99:
68:6f:53:4d:eb:08:73:51:27:69:0e:6f:b8:89:68:69:bf:31:
7a:1c:3d:68:d2:cf:68:c9:a4:21:5b:24:70:9c:4e:e8:f7:17:
69:15:48:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:13 2024 by rpki-client on console-ams.rpki-client.org