Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/sIziBwO8lxUfRb-jMgn2GVFtSPw.roa
File: sIziBwO8lxUfRb-jMgn2GVFtSPw.roa (raw, json)
Hash identifier: 8COtSWTHoBxyBkejnIMea1cazMR6PG7nKSI1T4begNg=
Subject key identifier: B0:8C:E2:07:03:BC:97:15:1F:45:BF:A3:32:09:F6:19:51:6D:48:FC
Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362
Certificate serial: 018ACB603F793F77F3AF116898F5E2522EB7
Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/sIziBwO8lxUfRb-jMgn2GVFtSPw.roa
Signing time: Mon 25 Sep 2023 08:06:37 +0000
ROA not before: Mon 25 Sep 2023 08:06:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63023
IP address blocks: 2a10:bc0::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cb:60:3f:79:3f:77:f3:af:11:68:98:f5:e2:52:2e:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362
Validity
Not Before: Sep 25 08:06:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b08ce20703bc97151f45bfa33209f619516d48fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:4b:0e:4f:0c:84:a1:f4:ac:b3:d5:a2:e9:cb:
a2:73:74:a2:d5:1f:1b:42:71:90:de:f3:34:7f:f7:
d5:32:63:1c:56:43:aa:1b:83:58:bc:e8:3e:08:49:
54:01:b6:46:48:c2:5f:92:b9:a6:a1:ca:22:ed:54:
93:21:f1:30:5a:70:8c:2c:ec:22:d9:11:e7:11:46:
96:91:8b:91:ee:30:f3:77:e4:36:b2:9f:da:41:43:
db:60:8c:dd:85:54:cd:fb:c6:3b:3e:99:b5:2d:03:
5b:fe:5b:3f:c3:a3:3a:a8:74:e2:24:4e:f2:4c:cb:
f6:9a:67:81:43:ef:15:01:4b:00:f9:e4:14:5c:eb:
8c:6b:85:76:df:3e:52:25:94:f2:96:4a:0d:76:f2:
20:02:6e:12:72:0b:c0:96:c6:d6:8c:ba:87:67:9e:
13:9b:c7:4c:8d:db:88:3d:98:73:c6:fd:be:a3:57:
40:73:50:c8:de:6c:8e:4e:eb:a6:c2:5c:98:48:64:
91:62:d0:08:53:07:b7:4f:56:38:b0:65:ec:8c:e0:
34:a2:15:15:ff:df:01:07:c8:4e:cb:0f:8f:39:74:
ff:ca:03:7a:13:8e:ea:73:7c:36:61:e7:b6:a3:d2:
e4:ce:aa:5e:de:87:56:67:b5:7c:3d:d6:70:68:6e:
c1:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:8C:E2:07:03:BC:97:15:1F:45:BF:A3:32:09:F6:19:51:6D:48:FC
X509v3 Authority Key Identifier:
keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/sIziBwO8lxUfRb-jMgn2GVFtSPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:bc0::/29
Signature Algorithm: sha256WithRSAEncryption
8f:fa:40:67:12:05:3a:1a:9f:ab:0f:3e:bc:86:a0:07:f9:92:
76:3b:a4:90:2d:44:f1:6c:3a:3f:77:fc:ee:b6:e5:8f:fc:8b:
6b:23:29:7e:69:23:86:29:4b:7d:50:c5:0f:e6:79:75:60:0c:
7c:21:e0:6b:d1:08:32:ec:ce:f5:6a:63:e9:92:01:44:fe:b1:
33:04:05:cc:e3:b1:ca:ef:04:d0:64:2c:7d:ef:08:cc:91:97:
2b:19:5d:44:ff:51:60:85:04:4f:30:dc:16:f2:96:7f:de:19:
32:23:ed:45:ee:75:66:27:92:46:09:49:53:21:26:db:c8:38:
a5:56:e6:a6:b9:f1:98:96:af:61:f2:3c:0a:33:15:53:b7:69:
58:5a:86:12:69:1f:a7:d8:ee:22:f6:4f:11:44:16:80:93:c2:
da:d7:7f:c4:01:e6:5a:62:98:e0:43:63:5a:3d:31:da:a7:5d:
91:a1:cc:23:65:ca:d3:2d:a7:90:06:49:6d:ed:5e:60:22:4f:
5d:5f:e7:a0:53:bc:c4:f8:cf:9a:03:a7:dd:ba:30:08:24:60:
dc:1d:11:de:61:1b:c5:06:46:c5:81:7e:ff:06:15:67:0f:9d:
87:1c:c5:ce:6c:42:ef:c2:6a:d7:90:4b:8b:e7:8a:f8:f5:a9:
ae:2e:97:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 27 08:34:56 2023 by rpki-client on console-ams.rpki-client.org