Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/XIIhGgoE7bRez2ieRWZ5q0S9GpE.roa
File: XIIhGgoE7bRez2ieRWZ5q0S9GpE.roa (raw, json)
Hash identifier: EPCWJ7kWxENUZ9uE3EM6uK8Ve9FBTtTOX2B4cRxLQ7o=
Subject key identifier: 5C:82:21:1A:0A:04:ED:B4:5E:CF:68:9E:45:66:79:AB:44:BD:1A:91
Certificate issuer: /CN=037b48449ba1cae15bde2c2f086d94218e0720bb
Certificate serial: 018AA8C3F8FE36385BEFE35B7851F1F266B4
Authority key identifier: 03:7B:48:44:9B:A1:CA:E1:5B:DE:2C:2F:08:6D:94:21:8E:07:20:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A3tIRJuhyuFb3iwvCG2UIY4HILs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/XIIhGgoE7bRez2ieRWZ5q0S9GpE.roa
Signing time: Mon 18 Sep 2023 14:48:50 +0000
ROA not before: Mon 18 Sep 2023 14:48:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216435
IP address blocks: 2a10:500:fe00::/40 maxlen: 48
Validation: Failed, certificate revoked on Thu 28 Sep 2023 21:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a8:c3:f8:fe:36:38:5b:ef:e3:5b:78:51:f1:f2:66:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=037b48449ba1cae15bde2c2f086d94218e0720bb
Validity
Not Before: Sep 18 14:48:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c82211a0a04edb45ecf689e456679ab44bd1a91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:55:98:6a:53:8d:57:65:1b:da:76:6f:27:85:
d7:83:18:a6:0f:65:37:97:db:08:45:11:6b:3b:37:
74:be:c5:09:70:5a:b4:2b:08:94:4c:62:68:f6:41:
c8:17:92:a0:a7:24:4b:8b:37:ea:6b:83:2e:ea:30:
e8:60:54:56:c5:bf:e2:e1:10:1d:46:d9:aa:3f:fb:
67:76:9b:4c:5f:85:b1:57:56:d3:27:e9:a4:45:5b:
b4:ad:3a:fc:b0:17:18:43:b1:7d:43:fe:b9:83:76:
5f:2a:50:22:01:1b:ae:46:42:fa:d2:60:38:7a:3f:
5c:97:82:ef:48:57:a6:1f:3a:df:98:d1:8d:3d:8e:
80:3b:41:60:ee:98:da:83:03:8c:3e:01:71:ee:52:
7c:e5:2f:57:e5:66:e1:9e:73:a9:b1:b0:20:f7:e8:
36:a2:14:97:87:07:f1:6f:aa:5b:6e:3f:fb:97:cf:
2f:0f:97:de:30:46:8b:7a:20:fa:d5:ce:88:04:ac:
0a:11:59:0d:e7:1c:5e:07:81:97:a9:21:f8:1a:b2:
90:28:ff:6d:e1:42:af:d4:59:0a:03:30:8b:a0:98:
6f:32:68:a7:fd:d3:ad:a5:27:5e:34:41:e1:c4:4b:
bf:99:e6:f2:c6:f7:f5:6d:34:c8:fd:63:1d:ef:7a:
07:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:82:21:1A:0A:04:ED:B4:5E:CF:68:9E:45:66:79:AB:44:BD:1A:91
X509v3 Authority Key Identifier:
keyid:03:7B:48:44:9B:A1:CA:E1:5B:DE:2C:2F:08:6D:94:21:8E:07:20:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A3tIRJuhyuFb3iwvCG2UIY4HILs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/XIIhGgoE7bRez2ieRWZ5q0S9GpE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/A3tIRJuhyuFb3iwvCG2UIY4HILs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:500:fe00::/40
Signature Algorithm: sha256WithRSAEncryption
14:21:a0:75:90:e0:c7:e2:5f:c5:57:a7:6c:f7:6c:a7:a1:6a:
22:47:51:8e:69:68:0a:48:dc:67:7d:64:31:73:29:9e:cd:c4:
a0:05:d8:21:55:2d:56:13:b0:45:f1:43:89:30:30:e5:ca:1b:
7e:f2:9c:8b:97:52:89:80:64:fe:ad:08:c8:dd:6d:f8:70:87:
b1:46:6e:d7:cd:16:06:df:2d:ff:a7:45:55:16:6f:fe:63:4d:
a5:9e:f3:11:e3:39:95:06:76:f4:19:67:03:42:dd:37:e5:55:
c0:de:42:ba:5d:3b:0f:1c:7a:e1:02:48:a3:ab:94:20:05:03:
2e:fe:99:b5:8c:26:56:ac:bb:40:a7:17:fc:d4:37:b2:bd:0a:
8c:d1:02:39:3c:65:2f:50:a0:af:a6:e3:4b:70:2d:e3:08:f4:
da:a9:76:72:d6:2a:cd:84:37:68:c0:2a:81:6b:51:90:9a:0a:
6b:f3:d4:fc:e0:39:c5:97:62:10:f0:e2:a8:d2:e5:4f:42:1f:
fd:7b:f0:3c:05:c0:cb:f4:ab:03:4e:33:ae:1e:9f:ab:a8:3b:
5a:8e:8d:6b:7f:7f:dd:87:5b:af:c8:4e:14:4a:62:bc:06:65:
5f:bc:b8:7a:2f:03:77:ce:f3:8a:de:b0:c8:cd:4a:bd:07:0f:
3e:c5:75:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:26 2024 by rpki-client on console-fra.rpki-client.org