Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/72a168-dc1c-46f4-b31c-4e659d2be654/1/Z9bMkz3B2qnHS4IFkCxU0X2Kxig.roa
File: Z9bMkz3B2qnHS4IFkCxU0X2Kxig.roa (raw, json)
Hash identifier: dvQN5RDnBTsOx64ju1d39sxNuoOkJtyO5nCNuZNZ+rs=
Subject key identifier: 67:D6:CC:93:3D:C1:DA:A9:C7:4B:82:05:90:2C:54:D1:7D:8A:C6:28
Certificate issuer: /CN=eb7c85c442ccab75e2ce6de29db5fd00f326749d
Certificate serial: 01856F9DE3FF6F06B35FEF79AF60CDF43193
Authority key identifier: EB:7C:85:C4:42:CC:AB:75:E2:CE:6D:E2:9D:B5:FD:00:F3:26:74:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/63yFxELMq3Xizm3inbX9APMmdJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/72a168-dc1c-46f4-b31c-4e659d2be654/1/Z9bMkz3B2qnHS4IFkCxU0X2Kxig.roa
Signing time: Sun 01 Jan 2023 23:14:56 +0000
ROA not before: Sun 01 Jan 2023 23:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211383
IP address blocks: 2a10:7640::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:e3:ff:6f:06:b3:5f:ef:79:af:60:cd:f4:31:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb7c85c442ccab75e2ce6de29db5fd00f326749d
Validity
Not Before: Jan 1 23:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67d6cc933dc1daa9c74b8205902c54d17d8ac628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:be:a1:8c:61:da:d3:07:47:4c:a6:0e:91:a9:
29:38:e3:bf:79:a1:53:59:99:b9:6d:ff:60:eb:dc:
39:20:08:22:d3:03:ff:9e:cb:62:70:1f:15:85:59:
db:0d:be:8a:ea:15:72:74:6a:8c:94:f3:cd:62:18:
7d:a1:5e:0c:dd:fa:cc:b5:c4:cb:b0:2e:bd:13:da:
b1:96:3e:2e:5c:b9:5e:0a:20:bf:4f:f3:64:61:a4:
8a:2a:7c:ee:a0:09:8e:46:be:8a:bb:0f:0e:df:ff:
a3:e0:dc:b1:eb:8a:b3:44:49:7f:9b:ae:13:9c:39:
13:62:c0:9e:20:ac:b9:c4:75:c4:06:52:6c:3c:03:
ab:d2:f3:37:5e:d0:18:a7:42:d3:35:58:da:00:0c:
85:95:5c:09:30:8e:9d:5d:62:0b:e3:37:a9:0e:a8:
48:73:df:d5:03:e8:55:0e:9d:b0:de:d1:43:68:5c:
fc:3a:0c:40:30:7f:19:d3:43:f6:4f:9e:27:12:f6:
c6:e4:8f:0f:34:69:6f:ae:c9:98:1b:89:49:de:f1:
b0:67:ec:4a:ae:ec:e1:fc:0e:ad:e1:96:9a:cd:3b:
1b:0c:7a:52:46:9d:df:33:4e:9f:bb:b5:77:1e:c8:
0e:bd:5c:66:15:2b:06:3f:70:7a:51:a1:c0:0f:30:
83:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:D6:CC:93:3D:C1:DA:A9:C7:4B:82:05:90:2C:54:D1:7D:8A:C6:28
X509v3 Authority Key Identifier:
keyid:EB:7C:85:C4:42:CC:AB:75:E2:CE:6D:E2:9D:B5:FD:00:F3:26:74:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/63yFxELMq3Xizm3inbX9APMmdJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/72a168-dc1c-46f4-b31c-4e659d2be654/1/Z9bMkz3B2qnHS4IFkCxU0X2Kxig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/72a168-dc1c-46f4-b31c-4e659d2be654/1/63yFxELMq3Xizm3inbX9APMmdJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:7640::/29
Signature Algorithm: sha256WithRSAEncryption
69:b8:95:bd:d6:d6:05:8f:33:d9:a2:68:c9:f4:06:12:30:1f:
ed:dc:ab:0e:2a:2f:87:d0:ba:49:fd:96:eb:65:f4:f9:98:60:
4a:4b:31:d9:36:4a:99:08:63:da:23:05:59:65:28:45:af:f4:
10:f5:60:91:d3:b1:a7:72:8d:32:7d:3b:db:e8:ee:7d:a9:44:
fb:bd:f4:8e:b6:c7:7e:bd:58:3a:bf:1f:ad:99:4f:27:67:55:
5d:3f:06:78:a2:ad:8f:25:66:ab:fa:4f:1e:12:cd:95:9a:0a:
21:63:12:89:03:9d:59:40:14:f3:2c:9d:ce:8d:30:6b:9b:b7:
a8:df:fe:38:61:61:93:ea:90:57:b5:b0:20:bc:04:93:04:1f:
a7:1d:fd:16:0d:63:a9:30:31:42:16:ce:bc:71:c6:5c:9b:79:
4c:0f:fc:96:16:d6:ca:ff:cd:0a:e5:02:9e:87:e8:ef:07:ff:
1e:c7:eb:4a:c8:1f:e1:35:01:18:8e:99:28:47:a8:5d:b7:39:
7c:f9:d0:f9:2a:77:78:d1:4c:e0:f8:fc:47:af:98:2e:45:23:
23:f4:5a:21:5e:c3:9a:13:5d:c8:25:6b:32:7c:96:2e:ba:49:
84:35:4a:dc:97:83:8a:7b:d9:52:42:e2:0a:4a:8f:d9:5f:ad:
c1:33:28:c8
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVvneP/bwazX+95r2DN9DGTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGViN2M4NWM0NDJjY2FiNzVlMmNlNmRlMjlkYjVmZDAwZjMy
Njc0OWQwHhcNMjMwMTAxMjMxNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2N2Q2Y2M5MzNkYzFkYWE5Yzc0YjgyMDU5MDJjNTRkMTdkOGFjNjI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAir6hjGHa0wdHTKYOkakpOOO/eaFT
WZm5bf9g69w5IAgi0wP/nsticB8VhVnbDb6K6hVydGqMlPPNYhh9oV4M3frMtcTL
sC69E9qxlj4uXLleCiC/T/NkYaSKKnzuoAmORr6Kuw8O3/+j4Nyx64qzREl/m64T
nDkTYsCeIKy5xHXEBlJsPAOr0vM3XtAYp0LTNVjaAAyFlVwJMI6dXWIL4zepDqhI
c9/VA+hVDp2w3tFDaFz8OgxAMH8Z00P2T54nEvbG5I8PNGlvrsmYG4lJ3vGwZ+xK
ruzh/A6t4ZaazTsbDHpSRp3fM06fu7V3HsgOvVxmFSsGP3B6UaHADzCDLwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFGfWzJM9wdqpx0uCBZAsVNF9isYoMB8GA1UdIwQY
MBaAFOt8hcRCzKt14s5t4p21/QDzJnSdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNjN5RnhFTE1xM1hpem0zaW5iWDlBUE1tZEowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy83MmExNjgtZGMxYy00NmY0LWIzMWMt
NGU2NTlkMmJlNjU0LzEvWjliTWt6M0IycW5IUzRJRmtDeFUwWDJLeGlnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy83MmExNjgtZGMxYy00NmY0LWIzMWMtNGU2NTlkMmJlNjU0
LzEvNjN5RnhFTE1xM1hpem0zaW5iWDlBUE1tZEowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhB2QDAN
BgkqhkiG9w0BAQsFAAOCAQEAabiVvdbWBY8z2aJoyfQGEjAf7dyrDiovh9C6Sf2W
62X0+ZhgSksx2TZKmQhj2iMFWWUoRa/0EPVgkdOxp3KNMn072+jufalE+730jrbH
fr1YOr8frZlPJ2dVXT8GeKKtjyVmq/pPHhLNlZoKIWMSiQOdWUAU8yydzo0wa5u3
qN/+OGFhk+qQV7WwILwEkwQfpx39Fg1jqTAxQhbOvHHGXJt5TA/8lhbWyv/NCuUC
nofo7wf/HsfrSsgf4TUBGI6ZKEeoXbc5fPnQ+Sp3eNFM4Pj8R6+YLkUjI/RaIV7D
mhNdyCVrMnyWLrpJhDVK3JeDinvZUkLiCkqP2V+twTMoyA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:30 2024 by rpki-client on console-ams.rpki-client.org