Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/474f27-b286-46f0-ae45-132ffc8bde46/1/Ci9ZINYQRQBbMDyFZ6r_HrMh5MA.roa
File: Ci9ZINYQRQBbMDyFZ6r_HrMh5MA.roa (raw, json)
Hash identifier: kYjft7rKIE7WsSFUQj78i1vnNvPjM48RTLXJiGD1bwQ=
Subject key identifier: 0A:2F:59:20:D6:10:45:00:5B:30:3C:85:67:AA:FF:1E:B3:21:E4:C0
Certificate issuer: /CN=0d3558546a2c54bbd812a19228aa98e078d3aa68
Certificate serial: 01918A86A76ED9B8BEF0D95F6A360F9F31B2
Authority key identifier: 0D:35:58:54:6A:2C:54:BB:D8:12:A1:92:28:AA:98:E0:78:D3:AA:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DTVYVGosVLvYEqGSKKqY4HjTqmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/474f27-b286-46f0-ae45-132ffc8bde46/1/Ci9ZINYQRQBbMDyFZ6r_HrMh5MA.roa
Signing time: Sun 25 Aug 2024 17:12:46 +0000
ROA not before: Sun 25 Aug 2024 17:12:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216157
IP address blocks: 2a10:a280::/30 maxlen: 32
Validation: Failed, certificate revoked on Mon 26 Aug 2024 10:50:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:8a:86:a7:6e:d9:b8:be:f0:d9:5f:6a:36:0f:9f:31:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d3558546a2c54bbd812a19228aa98e078d3aa68
Validity
Not Before: Aug 25 17:12:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0a2f5920d61045005b303c8567aaff1eb321e4c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8d:53:45:10:e4:82:04:5b:d4:06:14:ab:b2:
a6:0e:90:7a:93:89:84:f7:7d:38:74:aa:ba:09:7e:
ed:f6:e6:db:52:9e:d5:27:74:d3:3f:8d:60:65:c8:
0d:10:23:cb:13:5e:54:9f:6e:88:94:a6:28:f2:18:
88:b9:9a:e0:9f:b5:8f:12:7d:9e:94:dc:dd:5d:7e:
f1:03:d3:62:97:8a:2f:15:6b:fb:e5:37:be:0e:98:
e7:80:6c:22:ce:80:0e:86:29:ff:7b:89:c6:88:2d:
5a:3a:4e:34:be:65:57:e6:e5:77:e9:c5:56:24:30:
1e:b4:9d:8a:7a:37:7f:68:52:55:cf:fc:2d:2c:23:
b0:74:22:08:79:82:75:59:6b:d7:08:b4:b1:c9:d6:
3f:b5:0e:38:41:98:76:06:b8:15:59:2c:8e:76:ba:
4e:b9:27:42:18:e1:53:fc:5a:5c:2c:60:70:df:54:
77:58:58:3f:8c:76:02:ba:6f:f6:0c:8e:7b:f1:79:
72:44:c6:6a:4b:53:24:7e:b9:a4:46:ef:e8:04:5c:
a5:18:0b:02:07:a7:14:22:40:1b:a6:10:d9:1b:73:
cb:a3:81:3b:a1:8d:5d:a1:1b:d7:87:52:97:33:58:
67:9f:3e:f4:74:1c:0e:ab:bd:de:eb:41:cd:dd:2e:
a9:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:2F:59:20:D6:10:45:00:5B:30:3C:85:67:AA:FF:1E:B3:21:E4:C0
X509v3 Authority Key Identifier:
keyid:0D:35:58:54:6A:2C:54:BB:D8:12:A1:92:28:AA:98:E0:78:D3:AA:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DTVYVGosVLvYEqGSKKqY4HjTqmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/474f27-b286-46f0-ae45-132ffc8bde46/1/Ci9ZINYQRQBbMDyFZ6r_HrMh5MA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/474f27-b286-46f0-ae45-132ffc8bde46/1/DTVYVGosVLvYEqGSKKqY4HjTqmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:a280::/30
Signature Algorithm: sha256WithRSAEncryption
a1:87:eb:e4:ce:76:e5:0f:d9:c0:02:0f:73:94:dc:b4:97:3d:
85:2b:13:5d:83:c8:00:e2:3a:46:94:f6:73:90:75:16:0a:23:
7d:c8:a6:53:b3:2b:8f:00:cd:af:f8:3e:3f:5a:54:07:ae:ca:
65:a7:d6:84:fd:13:52:4a:18:d0:7f:8a:13:84:47:bd:97:70:
15:65:56:47:97:a7:d3:5a:b8:d8:de:e8:e9:12:20:81:04:5e:
5a:c6:22:96:4b:4e:2a:fe:42:1a:51:56:a2:2b:f5:22:47:eb:
a8:ed:6a:1d:3b:6f:bb:38:ed:ac:55:ad:5d:70:7f:59:80:73:
ce:ef:eb:07:e2:24:2e:e8:7c:a7:89:cf:48:93:c4:36:89:fb:
7b:8f:53:cb:fc:f8:c7:72:e6:f5:48:7f:41:76:e3:2f:67:c8:
67:c2:5a:22:1e:47:1d:9f:ba:53:48:d5:d5:eb:37:c4:7e:59:
ae:ee:77:c4:3c:31:c8:fc:a1:bc:f1:3b:40:eb:65:ef:87:16:
66:b7:52:fc:87:b8:0c:d1:79:89:d4:33:06:17:56:a7:07:69:
23:9e:fb:03:46:eb:08:c1:51:8d:ba:e4:cd:60:5b:d1:d0:b8:
72:12:56:fc:12:d4:eb:aa:e7:8b:aa:e1:21:e3:61:26:48:bf:
16:13:fb:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 12:49:07 2024 by rpki-client on console-fra.rpki-client.org