Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/uUejVKbG87CrNa2I0LdchLqHPJU.roa
File: uUejVKbG87CrNa2I0LdchLqHPJU.roa (raw, json)
Hash identifier: 0/QocSsAAlt87mlUOy8MPG4RvI4kAbKqFbjNAiIA2Y0=
Subject key identifier: B9:47:A3:54:A6:C6:F3:B0:AB:35:AD:88:D0:B7:5C:84:BA:87:3C:95
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 0188455036FDB6AFDAB25CF4C20D6A6F99AE
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/uUejVKbG87CrNa2I0LdchLqHPJU.roa
Signing time: Mon 22 May 2023 21:14:24 +0000
ROA not before: Mon 22 May 2023 21:14:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34681
IP address blocks: 2a10:2601::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:45:50:36:fd:b6:af:da:b2:5c:f4:c2:0d:6a:6f:99:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: May 22 21:14:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b947a354a6c6f3b0ab35ad88d0b75c84ba873c95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:aa:92:9e:87:cf:1f:be:b2:21:26:fe:a2:60:
c6:76:a0:dd:f9:9e:cc:c7:3b:d1:9f:8f:d8:e0:b5:
03:8c:68:58:33:3d:e7:bd:3a:66:db:9e:b4:70:6b:
03:8e:07:c0:a9:3f:98:65:75:9f:cc:45:0d:1b:96:
27:29:39:d4:f0:ce:a7:76:c1:72:1d:ce:a1:5b:73:
9c:d1:b7:ee:51:10:84:81:b7:5c:39:8a:0d:a7:d3:
08:a4:c7:dd:90:8f:33:e7:6e:41:65:c1:aa:de:20:
c9:76:7d:8a:d8:40:d8:6f:49:91:5f:8f:eb:e9:a1:
9e:1d:98:99:13:54:9a:ab:80:82:1d:5f:da:69:8d:
d7:98:14:51:15:c2:b0:5f:be:e4:b9:c0:e1:0c:0b:
94:f9:19:e1:23:ef:e7:2b:0e:ae:e8:6a:db:7d:0b:
cd:29:ef:fb:bf:78:c4:f3:44:08:5a:b6:de:34:49:
68:2b:0c:0a:eb:73:80:79:3d:28:d8:24:98:97:5b:
92:16:25:d9:47:ba:be:27:73:82:57:24:35:9a:b9:
55:97:ff:e5:53:98:91:be:17:b1:fb:98:9f:38:43:
e4:d3:3e:62:7a:77:5a:b5:36:a7:26:81:2d:3c:8f:
e1:d7:73:ac:7f:7c:d4:cd:2b:87:92:9c:6c:b5:e2:
e8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:47:A3:54:A6:C6:F3:B0:AB:35:AD:88:D0:B7:5C:84:BA:87:3C:95
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/uUejVKbG87CrNa2I0LdchLqHPJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2601::/32
Signature Algorithm: sha256WithRSAEncryption
98:fc:be:5c:e2:ad:73:00:52:6d:56:96:a5:79:bc:78:27:26:
d6:20:d4:7d:c4:6b:f7:12:f2:6e:d3:01:b2:4f:4f:27:bd:a3:
d4:10:5c:16:58:88:66:b3:fc:8d:cb:3e:91:0a:bf:ca:68:28:
7b:e4:ed:43:2f:b8:ab:c4:49:15:eb:0a:0a:3b:5b:98:40:eb:
64:69:d1:c5:24:83:7c:a3:a2:fb:61:ca:2b:73:73:4f:3f:b1:
19:eb:86:de:72:17:de:5b:41:ca:b9:03:35:fc:7d:20:59:52:
4f:32:75:f5:67:2e:d4:f7:54:76:8e:e5:ee:9a:43:eb:e3:ac:
55:15:c9:b1:7f:1a:fa:ae:56:c1:7d:3e:bb:42:90:61:82:47:
78:f2:b0:56:3b:5c:33:df:5e:81:b3:d9:8b:a7:30:e0:2d:eb:
93:27:48:36:fd:4a:24:dd:43:4f:c0:40:bf:96:41:1c:d7:5a:
fe:96:63:9f:11:4d:a8:09:1e:6e:d6:7d:6a:d7:be:ab:e4:27:
0c:d0:33:ed:cb:8c:9c:81:12:49:2a:5e:65:fb:30:5f:f6:24:
ef:c1:4b:cf:c6:71:26:19:28:24:a9:b1:42:20:56:28:ac:b1:
c7:92:60:4c:90:8a:16:ed:03:48:34:22:62:f4:62:9f:46:c1:
6c:54:cc:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 19 15:06:39 2023 by rpki-client on console-ams.rpki-client.org