Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/aZMoKQvXv9ouzM6-P9huLRt-7Xk.roa
File: aZMoKQvXv9ouzM6-P9huLRt-7Xk.roa (raw, json)
Hash identifier: gU7yJNoP9S1KoRBObuRFxABd6PuP8fvdA0wDwJ97DtU=
Subject key identifier: 69:93:28:29:0B:D7:BF:DA:2E:CC:CE:BE:3F:D8:6E:2D:1B:7E:ED:79
Certificate issuer: /CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Certificate serial: 018CCA99BB79EDF0DA13E73A96A0F890C672
Authority key identifier: 49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/aZMoKQvXv9ouzM6-P9huLRt-7Xk.roa
Signing time: Tue 02 Jan 2024 14:35:21 +0000
ROA not before: Tue 02 Jan 2024 14:35:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212144
IP address blocks: 2a10:aa40::/29 maxlen: 29
2a10:b540::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 11 Apr 2024 14:13:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:99:bb:79:ed:f0:da:13:e7:3a:96:a0:f8:90:c6:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Validity
Not Before: Jan 2 14:35:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=699328290bd7bfda2ecccebe3fd86e2d1b7eed79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6e:ca:82:f8:a1:e3:03:bb:4a:53:7b:76:19:
ce:4f:a9:5b:f4:79:56:ec:68:1d:61:21:72:71:bf:
11:2d:ae:9b:31:ae:ed:96:f2:4c:21:71:de:d7:97:
ce:e5:ae:19:31:d8:ca:26:70:27:a0:10:e1:30:d0:
6c:22:f8:16:4a:62:8e:71:e6:b5:bf:34:ad:70:0f:
dd:4c:dd:2d:a1:b6:8a:74:4a:45:05:af:8e:79:f8:
a0:1d:54:07:a4:1e:af:72:00:3d:97:89:e8:b1:05:
4b:2c:7c:70:0c:b8:ef:66:28:34:9a:4d:de:c0:9a:
7d:c5:1c:e0:dc:3c:a7:7b:62:78:b1:a1:f7:c6:de:
08:8d:f5:2a:9d:20:8f:df:77:1b:c3:5f:02:2c:60:
2d:2a:1e:a6:83:52:55:0d:c4:ce:5e:eb:e2:cd:41:
90:ef:65:b2:4a:b8:a0:bb:4a:35:0b:5e:2c:3a:cf:
32:52:c0:bb:a2:bf:7b:de:22:ea:b6:b6:07:33:4d:
4e:2a:3f:59:86:c0:ee:f5:b2:3b:70:1d:9b:66:ba:
50:90:08:b1:e9:d4:b3:f0:77:55:22:6c:25:8a:9f:
ff:ba:92:4c:c3:07:6a:07:11:58:56:37:2d:bd:cd:
b1:9b:76:16:c6:22:06:28:21:65:dc:1a:1f:31:6d:
43:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:93:28:29:0B:D7:BF:DA:2E:CC:CE:BE:3F:D8:6E:2D:1B:7E:ED:79
X509v3 Authority Key Identifier:
keyid:49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/aZMoKQvXv9ouzM6-P9huLRt-7Xk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:aa40::/29
2a10:b540::/29
Signature Algorithm: sha256WithRSAEncryption
7b:cf:22:b8:08:0f:28:40:0d:44:d0:08:12:ad:d8:f3:df:70:
92:30:9a:6a:d5:3c:76:b0:4d:1f:07:b6:91:57:77:8c:d2:43:
9f:70:1a:ca:10:57:6a:17:7a:00:55:47:42:62:a6:b3:c0:69:
fc:c2:9c:86:e1:05:eb:9d:11:ed:3f:af:ae:27:8d:3c:c0:72:
28:5d:0c:60:0c:66:b0:43:42:92:17:14:82:e7:31:ad:c8:6c:
b8:53:07:a0:5c:8e:d8:8f:2f:a7:bc:7f:c0:90:10:2d:11:87:
6e:41:0f:a7:01:89:52:7a:50:6c:ef:ab:8c:92:88:1f:ca:19:
34:5d:9d:91:da:e7:17:2e:e8:a1:09:27:64:4d:bf:a1:1b:9b:
f5:c2:35:bd:b1:fc:1b:6d:bd:42:f8:e3:bc:db:d2:55:48:10:
6c:81:77:e7:d8:12:3d:7a:c2:f5:42:19:12:9f:f5:e9:86:66:
88:57:99:44:79:0b:3c:ad:8f:35:c5:f1:d8:a6:a9:4d:b7:d2:
27:a5:dd:2e:b3:d9:3b:d8:83:52:8e:cd:81:58:a3:e2:4b:d1:
36:cb:88:fd:91:1e:71:f0:97:20:54:b8:37:ea:f7:85:a5:b9:
2f:d7:89:43:a5:5a:80:55:74:ec:72:8f:bc:d0:cf:e1:ba:b9:
15:a7:f2:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:36 2025 by rpki-client