Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/EK6UBdJf8tGirVU8rpcZLs1BZeQ.roa
File: EK6UBdJf8tGirVU8rpcZLs1BZeQ.roa (raw, json)
Hash identifier: 2jaS+L5WB/aAFXcbpvvKL2AHggF9lW7Geb7jLWlYFLM=
Subject key identifier: 10:AE:94:05:D2:5F:F2:D1:A2:AD:55:3C:AE:97:19:2E:CD:41:65:E4
Certificate issuer: /CN=6dfecfa0e6692595cfbea5266076e8e53efd9461
Certificate serial: 0193DE62993D19492EAC610F979658994BFE
Authority key identifier: 6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/EK6UBdJf8tGirVU8rpcZLs1BZeQ.roa
Signing time: Thu 19 Dec 2024 10:07:03 +0000
ROA not before: Thu 19 Dec 2024 10:07:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209090
IP address blocks: 2a10:c706::/32 maxlen: 64
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:49:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:de:62:99:3d:19:49:2e:ac:61:0f:97:96:58:99:4b:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dfecfa0e6692595cfbea5266076e8e53efd9461
Validity
Not Before: Dec 19 10:07:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=10ae9405d25ff2d1a2ad553cae97192ecd4165e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c8:c6:8f:33:b6:b7:07:56:04:71:5d:b6:c1:
9f:5d:a6:4c:a4:4a:f1:0d:e3:7f:d4:7c:30:cc:67:
3c:a4:03:93:ca:7e:d9:29:e8:5a:4a:56:e8:2c:d8:
d5:d3:10:50:95:5c:1f:c6:20:93:10:96:cb:84:fa:
42:2a:5c:21:82:e9:65:02:69:1a:37:ab:c4:cb:06:
12:96:7d:f0:34:20:e0:97:48:37:ad:66:b1:4d:f6:
e8:60:6b:97:60:59:10:08:97:cc:da:6a:5b:17:2c:
88:22:85:ba:0b:49:2d:5f:03:59:fd:3f:ab:5f:a7:
d1:df:84:9e:3c:2a:9b:91:6f:0c:8d:cf:89:30:6a:
40:33:70:33:77:55:cc:a3:0d:df:81:9a:b3:37:3a:
95:6e:5b:7a:85:82:fb:7b:a1:90:d3:c0:fa:18:f8:
a4:c2:3f:09:45:55:b4:fd:5c:87:de:3f:64:df:bc:
66:f5:4d:bd:96:d8:01:b8:a1:32:ed:4b:05:73:34:
65:7b:c5:d1:4e:c2:f3:3c:0c:25:f3:b5:6f:b9:62:
bb:52:f7:fe:6b:f9:e3:ac:83:f9:99:f7:df:d5:ee:
b3:97:e5:b1:c0:a7:72:d7:b1:2f:4f:e7:6e:42:94:
24:be:80:b0:c2:48:7f:fa:f1:49:76:1a:a5:2d:cb:
ee:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:AE:94:05:D2:5F:F2:D1:A2:AD:55:3C:AE:97:19:2E:CD:41:65:E4
X509v3 Authority Key Identifier:
keyid:6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/EK6UBdJf8tGirVU8rpcZLs1BZeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:c706::/32
Signature Algorithm: sha256WithRSAEncryption
0a:ea:46:e4:0f:73:cd:cc:ee:a5:16:e4:f5:db:6b:07:31:0d:
5f:70:41:a7:d5:31:70:a4:cf:e8:19:9e:11:58:53:59:c4:2d:
b9:ff:04:55:a2:05:59:b7:d0:cf:56:02:85:8c:12:c3:a7:97:
c9:a0:07:9c:f2:c3:a7:6e:cb:36:c3:33:14:f1:14:b7:6d:ed:
53:e8:84:fa:c9:c4:f3:67:d0:7e:c3:7f:7a:ba:98:6b:0b:e7:
af:0c:0b:a9:2f:37:00:1b:fe:3a:c5:ab:11:eb:38:6f:d1:b3:
ae:7f:b6:be:20:49:2c:af:e6:81:41:52:2a:0c:c6:0f:cc:68:
ef:66:a6:b0:43:97:70:2a:b4:f7:f0:96:3d:8a:ad:52:87:7b:
4f:08:aa:70:14:7f:bc:ea:d7:4b:16:66:fa:fa:db:a4:8e:a3:
23:00:ce:3a:dc:4a:c8:40:71:47:ed:c5:60:16:33:a4:34:2b:
4c:55:e2:41:79:59:b8:49:b4:d2:1e:1b:ca:d0:d2:c0:65:40:
05:da:36:b8:20:0b:81:61:dc:e5:9e:71:47:70:37:95:32:97:
ca:da:22:d7:3f:4b:b2:e6:7a:5d:fe:f9:1d:13:66:e0:95:db:
dc:f3:bd:c5:c8:97:0e:17:b3:f4:82:b1:24:25:9a:3f:17:d4:
56:8a:c1:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:26:29 2025 by rpki-client