Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/3f6929-ed0f-482d-9bf4-fdd0756065ce/1/PxmgkwCCV4zm_eOMvqnLkrcO1R8.roa
File: PxmgkwCCV4zm_eOMvqnLkrcO1R8.roa (raw, json)
Hash identifier: yu/OpGkNVnWCHmh4OVZYEbAfPWq2dGkM+8f8DXgNxug=
Subject key identifier: 3F:19:A0:93:00:82:57:8C:E6:FD:E3:8C:BE:A9:CB:92:B7:0E:D5:1F
Certificate issuer: /CN=a5c65d3f8c4eecb461143bda67b1a85c1d7ab57a
Certificate serial: 0193E4ACBDD03E66EF94258A2F35AAD49787
Authority key identifier: A5:C6:5D:3F:8C:4E:EC:B4:61:14:3B:DA:67:B1:A8:5C:1D:7A:B5:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pcZdP4xO7LRhFDvaZ7GoXB16tXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/3f6929-ed0f-482d-9bf4-fdd0756065ce/1/PxmgkwCCV4zm_eOMvqnLkrcO1R8.roa
Signing time: Fri 20 Dec 2024 15:25:46 +0000
ROA not before: Fri 20 Dec 2024 15:25:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61099
IP address blocks: 2a10:d740::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:53:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:e4:ac:bd:d0:3e:66:ef:94:25:8a:2f:35:aa:d4:97:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5c65d3f8c4eecb461143bda67b1a85c1d7ab57a
Validity
Not Before: Dec 20 15:25:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3f19a0930082578ce6fde38cbea9cb92b70ed51f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:86:15:23:3f:e1:9d:72:f4:91:a4:9c:9c:57:
9f:fd:4b:2b:f1:e3:32:6a:ce:a0:aa:e6:ba:a5:62:
6b:78:98:57:44:60:e4:76:59:92:07:45:73:b2:9a:
57:7f:4b:36:6e:e4:b9:50:ef:c1:e6:44:97:5c:f5:
fb:20:d0:5f:69:71:44:d1:60:e1:a4:cc:60:17:9e:
8b:c7:8c:00:97:52:e9:79:c6:7e:dd:0e:81:a2:c2:
31:fe:a3:0c:e0:98:b2:f5:a0:00:db:6a:73:53:10:
14:c4:e3:44:bb:ed:3b:e3:8c:62:f5:af:26:c4:e9:
b8:91:d3:00:67:ce:29:3a:0e:5b:fb:89:a2:f1:9f:
f7:82:66:fc:d1:70:e2:e2:c7:43:8b:c8:11:3b:ee:
fd:b5:9a:06:99:12:9f:c7:fe:78:5b:dc:b2:24:0b:
77:84:2f:2d:cd:58:9e:b9:3e:1f:bd:0e:4d:16:be:
ed:13:3b:03:e7:2c:23:a6:e1:84:e0:92:16:18:3e:
78:e0:b7:e6:ce:7c:0a:18:d9:ee:ad:58:c1:81:fe:
0b:24:b8:bf:e1:58:83:6d:60:da:94:c9:c8:dc:43:
88:ff:1d:aa:b1:da:9f:a3:06:8d:74:4f:0f:3a:f4:
d6:52:2f:97:4b:37:d5:08:18:af:c2:76:17:4d:34:
e0:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:19:A0:93:00:82:57:8C:E6:FD:E3:8C:BE:A9:CB:92:B7:0E:D5:1F
X509v3 Authority Key Identifier:
keyid:A5:C6:5D:3F:8C:4E:EC:B4:61:14:3B:DA:67:B1:A8:5C:1D:7A:B5:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pcZdP4xO7LRhFDvaZ7GoXB16tXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3f6929-ed0f-482d-9bf4-fdd0756065ce/1/PxmgkwCCV4zm_eOMvqnLkrcO1R8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3f6929-ed0f-482d-9bf4-fdd0756065ce/1/pcZdP4xO7LRhFDvaZ7GoXB16tXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:d740::/29
Signature Algorithm: sha256WithRSAEncryption
28:8d:08:1f:de:f8:e6:3a:1b:6a:1d:4b:b8:6e:5f:b4:30:22:
84:9e:45:10:00:09:e5:a5:0a:4a:16:ef:fb:d6:a1:6c:08:a3:
27:7d:47:42:6a:0f:da:a5:f0:84:35:eb:61:30:05:47:f2:c4:
fc:c0:86:ba:55:52:33:04:a1:65:27:05:c3:ff:90:09:90:20:
ee:89:9a:83:59:d2:97:5d:af:3e:18:4a:38:97:53:05:13:df:
57:50:90:50:d3:8e:ae:0f:bd:11:bb:49:9d:22:1f:7b:6e:f7:
98:c5:3e:c7:b9:9b:11:75:9c:e3:d3:dd:ae:fc:fe:4f:2e:0d:
9a:7c:e4:e6:b2:0d:07:ad:97:24:e0:cc:00:83:c2:85:64:e6:
a4:ba:cb:c4:35:6c:a0:4b:d0:ed:b0:df:ee:64:18:67:5b:f0:
ed:ca:07:c0:f0:df:30:a5:ed:e8:23:db:11:59:ec:6c:39:9a:
83:bc:04:b9:81:46:09:83:f3:79:d9:28:b8:4a:87:6d:d6:3e:
a6:69:d7:50:7f:44:72:96:df:d8:f8:34:ed:db:2c:2f:31:6a:
32:75:bb:37:14:18:ec:78:c1:ea:6e:4c:67:7d:34:46:7b:92:
05:fe:33:27:35:a0:0d:4e:30:0b:29:c9:0e:d6:e2:23:97:ce:
36:0c:37:dd
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZPkrL3QPmbvlCWKLzWq1JeHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1YzY1ZDNmOGM0ZWVjYjQ2MTE0M2JkYTY3YjFhODVjMWQ3
YWI1N2EwHhcNMjQxMjIwMTUyNTQ2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZjE5YTA5MzAwODI1NzhjZTZmZGUzOGNiZWE5Y2I5MmI3MGVkNTFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYYVIz/hnXL0kaScnFef/Usr8eMy
as6gqua6pWJreJhXRGDkdlmSB0VzsppXf0s2buS5UO/B5kSXXPX7INBfaXFE0WDh
pMxgF56Lx4wAl1LpecZ+3Q6BosIx/qMM4Jiy9aAA22pzUxAUxONEu+0744xi9a8m
xOm4kdMAZ84pOg5b+4mi8Z/3gmb80XDi4sdDi8gRO+79tZoGmRKfx/54W9yyJAt3
hC8tzVieuT4fvQ5NFr7tEzsD5ywjpuGE4JIWGD544LfmznwKGNnurVjBgf4LJLi/
4ViDbWDalMnI3EOI/x2qsdqfowaNdE8POvTWUi+XSzfVCBivwnYXTTTg+QIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFD8ZoJMAgleM5v3jjL6py5K3DtUfMB8GA1UdIwQY
MBaAFKXGXT+MTuy0YRQ72mexqFwderV6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGNaZFA0eE83TFJoRkR2YVo3R29YQjE2dFhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS8zZjY5MjktZWQwZi00ODJkLTliZjQt
ZmRkMDc1NjA2NWNlLzEvUHhtZ2t3Q0NWNHptX2VPTXZxbkxrcmNPMVI4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS8zZjY5MjktZWQwZi00ODJkLTliZjQtZmRkMDc1NjA2NWNl
LzEvcGNaZFA0eE83TFJoRkR2YVo3R29YQjE2dFhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhDXQDAN
BgkqhkiG9w0BAQsFAAOCAQEAKI0IH9745jobah1LuG5ftDAihJ5FEAAJ5aUKShbv
+9ahbAijJ31HQmoP2qXwhDXrYTAFR/LE/MCGulVSMwShZScFw/+QCZAg7omag1nS
l12vPhhKOJdTBRPfV1CQUNOOrg+9EbtJnSIfe273mMU+x7mbEXWc49Pdrvz+Ty4N
mnzk5rINB62XJODMAIPChWTmpLrLxDVsoEvQ7bDf7mQYZ1vw7coHwPDfMKXt6CPb
EVnsbDmag7wEuYFGCYPzedkouEqHbdY+pmnXUH9Ecpbf2Pg07dssLzFqMnW7NxQY
7HjB6m5MZ300RnuSBf4zJzWgDU4wCynJDtbiI5fONgw33Q==
-----END CERTIFICATE-----
Generated at Sat Apr 19 05:04:45 2025 by rpki-client