Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/4ci9IcbS-mffYGpqciCtKzkJTEM.roa
File: 4ci9IcbS-mffYGpqciCtKzkJTEM.roa (raw, json)
Hash identifier: fPo68dnMRfZl/b345PLEbV+VWlNz+VYm1ql/Eu+SxP8=
Subject key identifier: E1:C8:BD:21:C6:D2:FA:67:DF:60:6A:6A:72:20:AD:2B:39:09:4C:43
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0191D1D1560D313B282B491B7588626BA92B
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/4ci9IcbS-mffYGpqciCtKzkJTEM.roa
Signing time: Sun 08 Sep 2024 13:27:22 +0000
ROA not before: Sun 08 Sep 2024 13:27:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21738
IP address blocks: 2a10:36c0::/29 maxlen: 29
2a10:5200::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 16 Sep 2024 12:33:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d1:d1:56:0d:31:3b:28:2b:49:1b:75:88:62:6b:a9:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Sep 8 13:27:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e1c8bd21c6d2fa67df606a6a7220ad2b39094c43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c3:c1:68:92:be:11:36:d2:2c:e4:ef:0b:44:
7d:41:21:14:a5:3b:4f:77:a3:bf:1b:43:3f:7d:15:
9d:fc:4e:4b:20:e7:de:93:a8:62:32:2c:12:02:a3:
3f:f1:09:e6:b5:da:aa:72:01:95:0c:4d:b5:c3:26:
db:c4:a3:b2:e1:6a:d9:12:96:22:40:dd:86:eb:ff:
4e:e8:c5:21:98:b1:53:f6:21:a6:69:b2:19:f5:e1:
2f:42:c6:1c:9c:f1:77:a5:79:65:99:aa:2e:fc:35:
5b:79:ce:98:f6:46:31:e6:f0:34:52:80:de:30:d8:
2a:99:a8:a5:20:18:7d:6c:3e:4e:6c:c3:f6:77:1b:
c2:8a:63:46:da:33:6a:be:69:96:5a:31:b9:c2:bc:
f0:cd:b8:77:1a:c6:42:1b:02:d9:7b:e3:31:9a:8e:
75:a3:f4:60:70:78:31:fe:89:7f:d3:7b:4d:1b:cc:
4d:03:77:a0:1d:fb:80:d9:33:f5:65:72:21:e4:07:
d4:f0:a0:33:7e:b2:f9:e0:d9:45:25:a4:45:74:1c:
db:1a:c7:a5:3f:60:b6:7a:69:1c:02:cd:72:92:ec:
62:a3:90:29:ab:57:d8:a0:9b:33:07:01:55:21:b5:
4d:c7:c8:89:a4:3c:89:cc:28:c9:fa:5f:bb:65:2a:
9a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:C8:BD:21:C6:D2:FA:67:DF:60:6A:6A:72:20:AD:2B:39:09:4C:43
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/4ci9IcbS-mffYGpqciCtKzkJTEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:36c0::/29
2a10:5200::/29
Signature Algorithm: sha256WithRSAEncryption
24:a0:8d:e0:f4:3d:62:99:b9:08:13:81:69:55:02:09:84:08:
36:75:b6:03:c5:ec:ab:68:c7:d5:8f:5c:cb:33:f0:42:ba:fd:
6f:f4:d7:18:fc:41:b3:4d:46:c6:11:d9:a3:76:0e:26:2e:fc:
53:f3:ba:a9:5b:8d:fc:66:9f:56:b4:04:19:c6:47:9b:62:f1:
0e:dc:e8:2b:95:fa:f2:89:8b:ec:d3:e2:e2:ab:b4:9d:90:13:
ab:85:48:5d:1e:56:7f:26:a3:89:a3:0f:18:00:94:69:dc:58:
a9:72:70:7c:80:4e:c3:9d:3b:5b:db:47:f3:2d:89:33:88:5a:
5d:6e:73:84:d8:af:60:a7:ea:8d:ba:1a:5e:58:00:e0:52:94:
7e:99:10:55:b5:b5:12:e2:bf:ff:ad:10:22:84:0a:5d:ac:af:
a0:9d:cc:b8:d7:b8:01:b8:84:82:7c:8a:07:8a:b4:c1:5a:cc:
c8:67:75:84:d5:bf:53:5d:a0:5c:23:f5:55:e0:f9:19:7e:ac:
4a:3b:13:b0:ee:cd:ff:db:47:54:7d:41:6f:a4:06:02:d9:7d:
74:c9:8b:47:73:46:03:51:f9:24:61:63:8d:49:9a:6e:34:fe:
90:30:03:25:51:17:8a:49:b4:3a:26:ee:27:cf:7e:0c:8a:d4:
38:ca:31:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 16:37:21 2024 by rpki-client on console-fra.rpki-client.org