Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/tvbOrKlrWV4WGw3jy5ylErXR0ak.roa
File: tvbOrKlrWV4WGw3jy5ylErXR0ak.roa (raw, json)
Hash identifier: /+MEZrQrB1H9c6aL2rsBpgglbboKVQO2xZNxCOv+ors=
Subject key identifier: B6:F6:CE:AC:A9:6B:59:5E:16:1B:0D:E3:CB:9C:A5:12:B5:D1:D1:A9
Certificate issuer: /CN=206f1c32bc0a9006081d552fede67d6842921ec3
Certificate serial: 018A65CD9AF54B2B4B0A70F4E8904308CEE3
Authority key identifier: 20:6F:1C:32:BC:0A:90:06:08:1D:55:2F:ED:E6:7D:68:42:92:1E:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/tvbOrKlrWV4WGw3jy5ylErXR0ak.roa
Signing time: Tue 05 Sep 2023 14:44:47 +0000
ROA not before: Tue 05 Sep 2023 14:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208768
IP address blocks: 2a10:4741:22::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:65:cd:9a:f5:4b:2b:4b:0a:70:f4:e8:90:43:08:ce:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=206f1c32bc0a9006081d552fede67d6842921ec3
Validity
Not Before: Sep 5 14:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6f6ceaca96b595e161b0de3cb9ca512b5d1d1a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:b2:97:dc:2a:11:5e:35:61:dc:ae:54:1b:77:
2d:55:ff:7d:25:f1:5d:9b:02:50:bb:77:74:74:53:
86:cf:06:29:79:eb:05:d6:53:55:25:ca:85:54:b7:
54:23:db:cb:52:43:06:34:70:bb:76:92:57:ce:a3:
56:fd:0a:d9:ec:16:18:8d:a7:33:ce:df:6b:7b:d1:
27:a0:f3:6b:96:52:8c:1a:55:f6:6a:72:3d:06:3e:
76:75:99:28:87:ed:67:9a:7f:1e:cb:11:f3:92:e3:
c1:e2:82:0d:b7:9f:f0:3a:ee:ff:6b:d4:b0:76:4f:
ab:bc:07:69:52:b5:5d:d2:8e:32:95:30:18:23:ce:
91:17:eb:f1:92:b4:bd:0f:e2:bd:7e:8f:f6:77:e4:
de:cf:c4:f6:f5:03:d4:5d:be:80:2d:bf:36:aa:d1:
e8:84:33:4d:65:6e:b6:b4:b3:fe:f7:cb:1e:a6:d2:
c1:a8:40:2c:cb:52:24:da:f2:37:6d:49:f6:11:fb:
2a:0f:fd:6c:ea:a7:f6:e1:6b:67:d0:09:d1:3b:14:
d4:45:ac:aa:f2:44:04:cd:af:00:e9:0b:c0:c8:b2:
21:01:b0:e7:12:fc:50:5b:83:ed:76:16:b7:58:db:
12:ab:82:a6:66:4c:06:06:68:20:72:0c:b4:d9:f3:
7f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:F6:CE:AC:A9:6B:59:5E:16:1B:0D:E3:CB:9C:A5:12:B5:D1:D1:A9
X509v3 Authority Key Identifier:
keyid:20:6F:1C:32:BC:0A:90:06:08:1D:55:2F:ED:E6:7D:68:42:92:1E:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/tvbOrKlrWV4WGw3jy5ylErXR0ak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4741:22::/48
Signature Algorithm: sha256WithRSAEncryption
25:11:03:ae:65:5d:74:14:f5:52:4f:30:56:fb:72:6c:67:79:
d0:f0:17:4f:e5:81:57:99:e9:16:a8:4c:0b:dc:f6:42:6c:dc:
58:0e:ac:ab:84:08:26:86:e8:0f:7d:17:ab:06:39:72:7f:98:
a5:92:00:b3:1f:b8:bb:49:ab:fb:d0:47:f1:e8:95:fe:22:6e:
7f:f2:7d:77:38:82:fd:16:1a:42:71:ee:36:78:ef:cb:d5:1c:
4e:3c:fd:72:36:56:98:3b:da:d6:76:c1:24:22:82:c1:46:53:
0a:c0:4c:24:f4:79:6f:1a:a5:68:54:d3:a3:5a:97:85:53:78:
6f:34:40:c2:59:b9:5d:6e:54:c6:e2:ca:01:c4:db:53:de:9b:
e4:f1:e0:b2:6c:a8:83:c3:3c:69:70:02:13:b4:f4:99:ec:68:
ff:8d:f8:30:53:2a:fb:3d:25:74:a6:8b:7e:01:1f:b1:df:6a:
45:76:e6:b8:db:54:bc:66:a7:0a:d4:da:14:b9:d5:94:94:69:
92:e6:31:68:c3:50:31:97:25:c6:28:ec:e4:c6:d2:0f:2a:61:
1b:c6:cc:a7:bc:1e:e9:dc:17:17:86:23:db:8f:55:84:a7:42:
41:52:48:fa:f5:40:eb:15:32:aa:e4:a1:62:8f:b7:8c:dc:28:
a0:bc:98:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org