Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/eH3QV1LPyvz4xrMMXv24JK84wZ8.roa
File: eH3QV1LPyvz4xrMMXv24JK84wZ8.roa (raw, json)
Hash identifier: e5jOEt2UOg7tNSkgCZAo1z9e4CLhy5oVgTjZxwQbF5s=
Subject key identifier: 78:7D:D0:57:52:CF:CA:FC:F8:C6:B3:0C:5E:FD:B8:24:AF:38:C1:9F
Certificate issuer: /CN=037b48449ba1cae15bde2c2f086d94218e0720bb
Certificate serial: 018CC5DBE3B2A53D76EC4479B848F3656532
Authority key identifier: 03:7B:48:44:9B:A1:CA:E1:5B:DE:2C:2F:08:6D:94:21:8E:07:20:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A3tIRJuhyuFb3iwvCG2UIY4HILs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/eH3QV1LPyvz4xrMMXv24JK84wZ8.roa
Signing time: Mon 01 Jan 2024 16:29:31 +0000
ROA not before: Mon 01 Jan 2024 16:29:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216440
IP address blocks: 2a10:502::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 22 Aug 2024 22:54:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:db:e3:b2:a5:3d:76:ec:44:79:b8:48:f3:65:65:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=037b48449ba1cae15bde2c2f086d94218e0720bb
Validity
Not Before: Jan 1 16:29:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=787dd05752cfcafcf8c6b30c5efdb824af38c19f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3c:fb:cc:46:de:a8:bb:76:bc:8c:d3:36:15:
48:89:57:a0:77:90:b6:c8:dc:12:81:3a:da:1d:a0:
42:13:00:a0:cd:2b:1c:17:46:17:b3:09:44:03:f4:
78:b0:59:52:1a:59:54:63:85:70:5e:13:27:bb:3b:
64:d6:7d:db:a9:96:70:29:4c:69:dc:1d:e1:be:7a:
5c:58:d3:dd:43:b5:6b:ad:da:e2:9f:b9:e8:c4:75:
ce:73:ce:2c:65:ee:ce:9b:37:f7:f2:ee:52:f3:98:
34:a7:29:8b:a8:ee:f5:e2:ce:e3:4f:0d:21:6e:80:
27:9a:27:39:df:f0:ee:41:84:5f:03:98:9e:2e:db:
37:0d:8f:bc:63:27:83:43:7a:4f:a8:42:2f:ce:ee:
83:e2:c2:99:b0:9e:98:47:d7:27:47:a2:e9:8e:fd:
31:5d:9b:62:b9:70:75:44:2d:94:24:b8:c8:ee:1b:
27:9b:d4:f1:d7:6c:21:51:9b:ff:8e:32:16:49:8a:
0e:70:71:15:bc:c0:bf:df:e7:4a:96:fb:8b:f9:e0:
69:64:00:28:a0:dd:c1:92:06:8c:fc:e0:24:8c:7b:
d2:f6:b8:04:e3:11:03:d9:f5:9b:2d:11:3c:98:20:
c9:47:8f:ae:ab:59:93:4d:54:df:af:64:3b:92:65:
01:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:7D:D0:57:52:CF:CA:FC:F8:C6:B3:0C:5E:FD:B8:24:AF:38:C1:9F
X509v3 Authority Key Identifier:
keyid:03:7B:48:44:9B:A1:CA:E1:5B:DE:2C:2F:08:6D:94:21:8E:07:20:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A3tIRJuhyuFb3iwvCG2UIY4HILs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/eH3QV1LPyvz4xrMMXv24JK84wZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/A3tIRJuhyuFb3iwvCG2UIY4HILs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:502::/32
Signature Algorithm: sha256WithRSAEncryption
83:06:b3:98:55:cf:d4:f2:a5:e5:96:37:52:07:6f:a4:db:0e:
99:20:4a:84:13:ab:b4:88:d5:d6:8c:0f:f7:a7:4c:20:50:76:
51:a2:b5:c0:e5:f2:a0:30:68:17:f4:1d:3d:fe:9e:f9:c7:79:
3d:ab:e1:f1:0c:a2:c0:25:ce:5d:4e:f6:5b:23:88:aa:0f:0b:
32:40:8b:58:d5:ae:9e:39:30:5d:49:48:ef:e5:57:28:d5:af:
d6:04:d1:93:9b:27:9c:0b:48:8f:2c:b6:31:a7:65:8f:f2:9b:
7a:49:de:35:f6:1b:85:d9:d7:23:81:f9:e0:20:3a:04:a9:cf:
09:38:64:ba:2a:df:e7:f2:1e:eb:3a:f4:23:9d:fb:59:21:6b:
98:f6:1c:6d:f8:72:4d:b4:60:8a:e2:23:36:ed:b7:11:90:79:
98:01:69:09:46:45:28:4a:2f:3a:46:97:74:c0:f1:a3:3c:b5:
68:f6:13:ad:50:59:87:3e:f9:6a:30:41:3d:b2:ad:a5:9c:a0:
ec:92:b1:8e:06:58:a4:ec:b8:f6:05:dd:f8:bd:ec:2d:ad:35:
e9:c0:5d:08:ae:63:e1:58:80:85:2f:51:7c:36:ff:d4:24:79:
f1:e6:5d:79:36:72:92:14:fa:03:41:9f:0c:76:3b:ed:0e:f9:
f1:4a:27:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 22 23:44:01 2024 by rpki-client on console-fra.rpki-client.org