Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/o16CAnzmG-mS4kzY1-GtTDntq3A.roa
File: o16CAnzmG-mS4kzY1-GtTDntq3A.roa (raw, json)
Hash identifier: uBXcbxpRcS6PIeebK3sze7RR6fRcPhWbPGAkEAcfYlg=
Subject key identifier: A3:5E:82:02:7C:E6:1B:E9:92:E2:4C:D8:D7:E1:AD:4C:39:ED:AB:70
Certificate issuer: /CN=206f1c32bc0a9006081d552fede67d6842921ec3
Certificate serial: 018A65CD9A6B76E9CC734ED582358BCB097F
Authority key identifier: 20:6F:1C:32:BC:0A:90:06:08:1D:55:2F:ED:E6:7D:68:42:92:1E:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/o16CAnzmG-mS4kzY1-GtTDntq3A.roa
Signing time: Tue 05 Sep 2023 14:44:47 +0000
ROA not before: Tue 05 Sep 2023 14:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204125
IP address blocks: 2a10:4741:29::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:65:cd:9a:6b:76:e9:cc:73:4e:d5:82:35:8b:cb:09:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=206f1c32bc0a9006081d552fede67d6842921ec3
Validity
Not Before: Sep 5 14:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a35e82027ce61be992e24cd8d7e1ad4c39edab70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f2:07:d1:7c:04:c0:6d:99:ed:a6:ea:ae:55:
c2:4d:60:98:d5:fc:c8:ef:18:77:48:ef:75:be:8a:
3c:2f:ff:36:4b:07:f6:80:cb:c0:0b:84:46:a1:d0:
34:9c:b4:e1:10:ab:4c:88:d5:44:e4:16:ac:d5:14:
1b:e6:b9:7a:31:a6:cd:53:fb:d1:c0:7d:75:77:3f:
95:39:c0:a2:3f:92:66:04:0c:a7:66:ea:1e:55:77:
b4:71:39:1b:30:9e:5b:53:15:a8:31:ed:df:53:c6:
11:1c:0e:cf:e0:88:00:32:4a:76:fe:05:77:b1:02:
28:f3:a1:64:de:2d:fc:33:75:de:0f:9d:75:7f:4b:
b3:eb:0e:23:b0:2c:96:ea:09:78:9f:53:af:cb:9c:
b2:08:4b:5d:13:79:64:08:ec:a7:ce:83:cf:77:f8:
ce:b7:31:29:eb:21:42:e5:39:b4:27:0f:e3:4b:aa:
56:75:3f:9b:7a:66:ba:06:ac:df:de:38:05:7a:20:
0f:91:a4:47:b0:5f:a2:53:ca:03:6c:f4:70:7a:35:
af:e4:26:7d:e3:a8:dd:18:39:3a:9c:09:1b:41:70:
ee:37:6c:b2:c9:43:f2:e3:e4:05:52:fb:c5:3d:08:
d8:fe:b2:46:4d:32:58:3e:ea:4a:5a:a5:c4:bc:2e:
42:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:5E:82:02:7C:E6:1B:E9:92:E2:4C:D8:D7:E1:AD:4C:39:ED:AB:70
X509v3 Authority Key Identifier:
keyid:20:6F:1C:32:BC:0A:90:06:08:1D:55:2F:ED:E6:7D:68:42:92:1E:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/o16CAnzmG-mS4kzY1-GtTDntq3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4741:29::/48
Signature Algorithm: sha256WithRSAEncryption
08:b2:da:44:24:5b:3c:a6:8a:bc:6a:c5:1c:c0:69:d3:8a:a6:
30:ae:b1:9a:d8:1e:a3:12:43:b9:8d:51:f0:d7:dd:25:6b:e8:
26:37:9e:46:fc:f8:41:6b:9e:fe:30:66:45:59:f7:99:0b:63:
b2:95:6c:1a:19:6f:d3:5c:9e:2e:f0:51:2f:a2:68:03:73:69:
4c:d1:7f:d5:62:9d:9f:6c:ca:3f:5f:ea:06:4c:2c:6a:50:e3:
d1:29:5d:0c:13:21:13:73:50:43:a8:b3:26:07:36:a4:92:c8:
30:7e:25:16:64:3e:46:d1:f0:ce:7b:1e:b7:fc:63:c4:0e:8f:
2d:ff:ea:47:7a:33:be:9f:ae:8c:23:54:76:82:d1:40:18:40:
1a:eb:2a:e1:f0:fd:f7:9c:cb:92:84:b8:ea:37:61:31:49:ca:
a3:1a:c2:3f:b7:46:15:08:f3:74:f2:d5:be:15:9e:f7:6e:6d:
bc:23:67:67:32:2c:24:1d:3b:21:58:47:27:aa:39:8d:14:60:
0f:41:b8:30:15:7f:63:d1:dd:d3:2e:d7:28:cc:8c:e5:32:f2:
00:e8:d4:77:81:6e:e6:45:3d:fd:60:9c:da:b9:96:34:57:04:
e8:16:c8:3b:b2:f5:2a:d0:18:08:95:ca:cd:52:f1:99:26:54:
f0:b5:bc:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:06 2024 by rpki-client on console-ams.rpki-client.org