Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/sdh7YOAA2tURIu0tPSf4qHdWa6s.roa
File: sdh7YOAA2tURIu0tPSf4qHdWa6s.roa (raw, json)
Hash identifier: UiO/LJVfQ5ykSFPgFopmaLTgYSRwQ+LI1eNOF5XDviY=
Subject key identifier: B1:D8:7B:60:E0:00:DA:D5:11:22:ED:2D:3D:27:F8:A8:77:56:6B:AB
Certificate issuer: /CN=037b48449ba1cae15bde2c2f086d94218e0720bb
Certificate serial: 018AE6179589132DD26FBC814686DC0619E5
Authority key identifier: 03:7B:48:44:9B:A1:CA:E1:5B:DE:2C:2F:08:6D:94:21:8E:07:20:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A3tIRJuhyuFb3iwvCG2UIY4HILs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/sdh7YOAA2tURIu0tPSf4qHdWa6s.roa
Signing time: Sat 30 Sep 2023 12:36:59 +0000
ROA not before: Sat 30 Sep 2023 12:36:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216435
IP address blocks: 2a10:500:9400::/40 maxlen: 48
2a10:500:fe00::/40 maxlen: 48
2a10:500::/32 maxlen: 48
Validation: Failed, certificate revoked on Wed 04 Oct 2023 10:07:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e6:17:95:89:13:2d:d2:6f:bc:81:46:86:dc:06:19:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=037b48449ba1cae15bde2c2f086d94218e0720bb
Validity
Not Before: Sep 30 12:36:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1d87b60e000dad51122ed2d3d27f8a877566bab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c5:f6:c1:2c:ba:02:e7:2d:f8:d4:19:ab:54:
fc:09:d7:ef:83:b3:c0:52:16:98:ea:5f:a0:d5:dd:
57:c5:64:80:47:2b:48:dc:fb:5d:48:16:85:9d:f7:
0a:96:3c:1b:53:dc:94:b7:f5:5d:aa:b7:4c:e5:fd:
59:18:8c:6e:1b:1d:6d:9d:bf:73:f5:08:c9:91:c2:
a5:0d:01:38:8f:a3:ee:db:05:ff:46:a5:39:ea:93:
b0:a6:0f:c6:50:6a:c4:a5:9a:c6:df:83:83:d0:4a:
ca:e8:91:a4:ed:95:99:16:76:06:59:7a:52:1e:5b:
af:4f:36:2a:23:2d:68:95:f4:6d:08:b6:48:cc:34:
f8:d7:76:77:9a:cc:7d:27:bd:6e:01:b9:04:bd:10:
7d:68:d3:86:ba:a7:8f:5f:d2:56:f9:22:3e:9c:69:
96:c4:0b:f7:cb:d6:66:f3:0e:ff:c7:b2:96:d5:f1:
61:9b:c5:27:b2:29:2f:61:f0:12:04:d5:9e:07:64:
7a:11:b1:f0:a9:50:58:ae:bc:d4:44:08:98:1f:47:
18:31:5c:4e:be:35:0c:e9:30:61:cc:c5:99:4a:74:
1d:bc:b8:91:3f:7a:c6:db:30:73:60:b9:96:a6:88:
70:03:22:97:84:20:c6:61:a5:35:2d:5b:99:b4:b3:
ed:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:D8:7B:60:E0:00:DA:D5:11:22:ED:2D:3D:27:F8:A8:77:56:6B:AB
X509v3 Authority Key Identifier:
keyid:03:7B:48:44:9B:A1:CA:E1:5B:DE:2C:2F:08:6D:94:21:8E:07:20:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A3tIRJuhyuFb3iwvCG2UIY4HILs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/sdh7YOAA2tURIu0tPSf4qHdWa6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/A3tIRJuhyuFb3iwvCG2UIY4HILs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:500::/32
Signature Algorithm: sha256WithRSAEncryption
9d:ac:f4:85:7e:0f:65:44:89:d6:af:52:ac:78:ed:bb:2d:f6:
f5:83:cd:0a:7b:61:4f:c1:2e:01:7c:3b:ec:85:9e:40:1a:85:
4e:44:97:b7:1f:14:3d:d6:37:54:b3:75:4d:e1:22:ee:fd:e8:
3e:33:b9:0b:d8:99:32:9d:e5:2a:01:4b:6d:be:2a:08:21:5d:
df:c2:69:de:fe:fe:4f:13:7b:96:ca:1d:a3:24:34:00:6c:7d:
51:9c:16:f9:6e:6f:a0:d0:b8:1b:d1:c9:49:55:e6:e1:5d:5b:
3d:76:28:7c:94:6b:b2:01:e6:47:f4:93:d1:48:42:f2:b6:8a:
4e:6f:dd:31:bd:e9:7c:85:ae:dd:0b:6e:a6:a1:a7:cc:28:b1:
9b:08:60:23:f6:25:38:fc:3a:9a:70:80:0f:e4:0a:07:b0:41:
9e:d5:90:ea:2e:fe:5d:42:c1:21:48:e7:2d:93:99:5e:9f:37:
ad:57:33:d4:cb:a8:cc:4c:a7:19:f5:3b:78:3e:d3:2e:99:95:
d0:ee:ac:4f:71:fc:81:4c:3e:d5:f9:e4:17:7b:1c:4f:f3:16:
8a:1d:13:b3:65:71:0e:5a:45:ed:b6:e2:b7:66:8d:0b:f3:32:
85:12:4b:23:d6:05:77:9b:f1:9e:83:e4:9b:f2:4d:e5:08:85:
04:72:6c:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:26 2024 by rpki-client on console-fra.rpki-client.org