Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/Ti3QjBh8HWYeRjgsrCMeHL6Q2dE.roa
File: Ti3QjBh8HWYeRjgsrCMeHL6Q2dE.roa (raw, json)
Hash identifier: Blgvz6qXN0hvwHVLG37q92BVlw0qLSt7JFVgTMSsXLw=
Subject key identifier: 4E:2D:D0:8C:18:7C:1D:66:1E:46:38:2C:AC:23:1E:1C:BE:90:D9:D1
Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362
Certificate serial: 01882396CD6291D8E7D9E853FD3365A47561
Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/Ti3QjBh8HWYeRjgsrCMeHL6Q2dE.roa
Signing time: Tue 16 May 2023 08:04:25 +0000
ROA not before: Tue 16 May 2023 08:04:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63023
IP address blocks: 2a10:bc0::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:23:96:cd:62:91:d8:e7:d9:e8:53:fd:33:65:a4:75:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362
Validity
Not Before: May 16 08:04:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e2dd08c187c1d661e46382cac231e1cbe90d9d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8a:d7:9f:f9:1d:df:eb:9d:8e:5f:45:70:99:
62:2d:f0:ff:ed:c3:7d:2f:e8:54:7d:0e:69:b7:1a:
cc:3a:54:db:26:0c:4c:b4:4c:6d:91:d3:6b:97:cc:
bc:d6:54:5e:cd:a1:85:a5:49:17:0c:bd:fe:35:ed:
c0:41:7d:75:a5:66:ef:c1:05:6f:f1:6a:f6:0e:96:
21:0d:40:e8:81:3a:aa:71:00:0f:76:fc:01:f7:73:
87:bc:62:03:6e:c6:be:23:59:8d:95:c9:f9:f7:a3:
9d:19:27:e5:b1:78:bd:2c:4f:de:02:bb:81:4e:c4:
48:31:aa:07:bb:74:8d:cc:0a:ca:9d:33:d0:23:88:
01:22:3b:7b:6c:f6:5c:9b:fe:9b:6e:9c:55:c7:2a:
d8:c0:af:a1:38:3d:26:31:94:e9:80:63:a4:bb:7d:
e9:2c:c1:a4:90:1f:f2:ed:0b:aa:f9:1f:7f:a0:24:
e5:71:43:ba:07:2f:f6:c7:ad:47:b6:61:eb:49:1a:
8b:6b:f1:8b:54:1c:11:2b:65:5b:9a:c9:f5:a6:9c:
7a:d1:4f:f0:93:fa:e3:ae:61:be:fc:8c:ad:d8:a7:
44:c7:ca:1c:6b:07:da:75:f5:83:f3:8c:be:3f:f4:
5e:77:ce:7e:f1:cc:8d:9c:26:b7:2f:43:0d:41:7b:
ae:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:2D:D0:8C:18:7C:1D:66:1E:46:38:2C:AC:23:1E:1C:BE:90:D9:D1
X509v3 Authority Key Identifier:
keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/Ti3QjBh8HWYeRjgsrCMeHL6Q2dE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:bc0::/29
Signature Algorithm: sha256WithRSAEncryption
8c:59:2f:af:48:66:6a:d7:fb:cd:a8:a7:2f:65:22:3d:0a:fe:
f6:6d:6b:5e:bf:ae:aa:70:85:c1:e2:9e:47:b0:11:fc:27:e7:
3c:44:03:54:58:72:12:f8:1b:69:d1:c7:0e:e8:53:cf:aa:d9:
eb:b0:40:b5:76:0d:de:06:dd:54:3f:0c:16:3c:b4:9c:35:cf:
02:72:9c:11:0c:6d:e4:f0:c5:bf:fc:a4:78:c6:8e:a0:8f:69:
5c:94:d0:c6:c8:61:03:ff:f4:bc:d0:0d:d0:bb:1a:8c:e8:44:
1c:e7:b7:d1:ec:1e:44:48:52:53:85:f1:e8:8a:90:ab:94:2b:
72:47:ff:c3:e8:c3:68:10:c7:c1:7f:bb:74:62:59:4e:be:70:
17:30:53:16:ce:e6:fa:49:bc:ad:58:ed:23:55:ab:6b:73:1a:
11:f3:c3:c7:cb:7f:00:67:f2:b3:10:88:82:ae:83:19:28:79:
a7:44:7c:a9:ae:d3:26:f2:c2:72:f4:46:87:bc:15:2a:cc:2b:
c9:d0:18:ce:6b:56:e5:e3:05:22:76:6a:26:a9:ec:f3:19:ed:
1a:84:2f:01:f3:c9:60:bf:25:74:1a:08:79:9b:86:59:14:95:
49:bf:59:d5:6d:0e:ce:f5:1e:b3:7f:b6:46:c0:af:5f:f9:f6:
1e:11:e2:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 22 10:26:40 2023 by rpki-client on console-fra.rpki-client.org