Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/J9Nimfb5mz4WLevrioZDhz5FP9Q.roa
File: J9Nimfb5mz4WLevrioZDhz5FP9Q.roa (raw, json)
Hash identifier: gwHTlxjwIyh3Cn63NMPLv4+R6LU1YswYS7uP/0HxmjI=
Subject key identifier: 27:D3:62:99:F6:F9:9B:3E:16:2D:EB:EB:8A:86:43:87:3E:45:3F:D4
Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362
Certificate serial: 018B94A7CA6A34E01BDF5849970D375EEDB1
Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/J9Nimfb5mz4WLevrioZDhz5FP9Q.roa
Signing time: Fri 03 Nov 2023 10:08:26 +0000
ROA not before: Fri 03 Nov 2023 10:08:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198231
IP address blocks: 2a10:bc0::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:94:a7:ca:6a:34:e0:1b:df:58:49:97:0d:37:5e:ed:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362
Validity
Not Before: Nov 3 10:08:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=27d36299f6f99b3e162debeb8a8643873e453fd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:50:a8:f8:37:02:82:86:d0:bf:9b:69:61:d9:
58:97:12:4a:0b:b5:86:a3:96:3f:ee:e9:08:10:23:
ec:2d:e9:6a:c3:2a:e9:24:3c:82:b5:1b:c3:5d:91:
a2:a9:25:09:f6:60:80:61:23:bc:02:10:e2:cf:cf:
71:f4:a0:7f:b6:9a:e6:4b:6c:3d:4c:de:1f:46:e5:
1d:77:96:01:92:57:be:be:5d:6e:84:1b:87:8d:ed:
c9:5c:02:4d:e1:7f:97:e9:7c:78:34:2a:c7:49:ba:
fb:9c:67:38:c9:d6:68:f2:40:2f:21:fd:15:2f:d4:
0c:88:a0:35:bd:59:71:1b:50:0f:95:79:f9:33:8f:
f3:e8:97:1e:a4:a9:27:d1:2d:1a:34:60:23:b0:85:
56:6d:f3:da:4b:01:8a:c7:67:f7:dc:e2:32:0e:94:
d6:0f:f6:df:5b:85:b6:5a:5f:5c:5e:b7:fc:c1:3b:
36:15:78:ec:5d:68:b0:85:e0:26:31:d7:89:85:35:
4d:fa:0c:5c:e3:b6:c6:25:8e:8f:41:35:a3:ec:99:
1a:c8:a3:21:b6:ce:1c:1a:7f:2b:f7:f0:79:45:f6:
a8:25:a8:21:65:2c:db:7d:17:1e:fd:20:75:75:4f:
65:27:79:3d:24:a7:7f:08:b5:5d:be:0b:36:c5:b5:
ef:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:D3:62:99:F6:F9:9B:3E:16:2D:EB:EB:8A:86:43:87:3E:45:3F:D4
X509v3 Authority Key Identifier:
keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/J9Nimfb5mz4WLevrioZDhz5FP9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:bc0::/29
Signature Algorithm: sha256WithRSAEncryption
3a:0d:0f:f6:1b:55:f9:37:94:d1:b1:49:ee:96:3c:35:70:3a:
65:d6:b0:cb:e2:44:6e:84:73:70:8d:a4:f4:4b:a0:f8:84:7a:
cc:a9:4d:99:5b:2a:7d:8e:25:fb:62:59:2c:52:9d:ca:60:18:
49:0a:cd:f0:3d:6d:69:04:c4:91:c3:70:28:f4:50:2d:ff:c9:
59:a0:60:ea:f1:75:8a:5e:2f:d9:18:83:00:17:c2:e8:d1:97:
8d:69:cd:f5:91:d6:5c:31:86:60:db:e3:39:55:62:8a:27:71:
44:74:8a:0c:50:cc:19:e0:94:23:28:b0:fd:05:a8:f3:a1:a8:
25:6e:3c:78:04:b6:75:1d:a7:7b:4e:1c:fa:6e:6c:96:11:27:
f1:1f:d3:b8:68:dd:3c:2e:28:58:10:5b:fc:62:bf:76:8e:41:
1f:15:d9:ae:3a:26:f2:31:fd:af:6f:99:b4:a5:ff:b7:f4:e6:
60:19:1e:f8:89:5b:6d:c3:27:9b:97:84:17:36:fc:fc:1b:1e:
bd:cc:85:1b:3a:dd:58:1b:79:4b:85:7e:1e:2e:1b:6d:3f:06:
80:a0:bf:4f:51:bd:ef:ba:5a:3a:b7:7f:c9:e6:9e:1d:b8:f9:
65:dd:af:76:6a:7b:b1:df:3b:61:f0:aa:70:04:f6:0d:20:e1:
bd:c5:76:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 10 21:03:46 2023 by rpki-client on console-fra.rpki-client.org