Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/1-7TJKT7hUPxUl-yqGf0ydyRnDsM.roa
File: 1-7TJKT7hUPxUl-yqGf0ydyRnDsM.roa (raw, json)
Hash identifier: Va/km4juQeo35McWNviDlc4K6NhgmV7dq8IMT3JZJMU=
Subject key identifier: FB:B4:C9:29:3E:E1:50:FC:54:97:EC:AA:19:FD:32:77:24:67:0E:C3
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 018E9E55F7402218F59EEF100B9CA1C7C5E6
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/1-7TJKT7hUPxUl-yqGf0ydyRnDsM.roa
Signing time: Tue 02 Apr 2024 10:23:37 +0000
ROA not before: Tue 02 Apr 2024 10:23:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216157
IP address blocks: 2a10:4104::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 16 Apr 2024 05:59:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:9e:55:f7:40:22:18:f5:9e:ef:10:0b:9c:a1:c7:c5:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Apr 2 10:23:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fbb4c9293ee150fc5497ecaa19fd327724670ec3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:a5:a3:a0:b5:b9:f8:b0:f0:37:0b:b9:b0:28:
d0:64:c3:47:3a:c8:63:cf:b3:ec:1b:7b:be:df:dc:
75:39:b9:ce:ef:13:36:59:71:2c:9a:1e:2f:99:af:
8d:3d:0a:78:89:b7:e5:53:4b:49:3c:1c:7e:26:e6:
08:d8:8c:29:1a:22:e5:f8:2b:9e:4f:1e:cb:b9:1c:
00:19:49:62:5d:50:27:be:c0:a1:55:bd:1b:c5:31:
e7:8f:bd:5f:4a:29:b1:ee:b5:79:62:eb:83:26:5a:
d7:7e:a0:be:f2:16:01:71:b1:82:6d:3e:84:bf:23:
4a:5c:6a:be:80:43:94:4b:9c:bb:bd:90:fe:6c:5c:
72:66:c3:31:08:28:cb:e0:d0:92:cf:53:2f:78:cc:
36:1d:f6:88:3a:90:6b:1f:2e:13:9f:ea:53:87:0c:
6f:86:af:f9:24:f4:b4:82:6c:67:7a:32:4a:94:2e:
dd:55:50:62:a4:14:aa:98:86:04:0c:86:93:37:3d:
ab:30:2a:a4:f7:01:40:f0:e4:6a:c0:10:36:f3:b6:
c0:1d:62:88:20:9f:ed:85:26:38:16:6d:83:21:c2:
22:23:04:4a:2a:ce:62:5d:06:36:a7:ff:be:c0:dd:
e7:6e:82:3c:22:50:77:6d:69:71:a7:85:0b:f1:61:
49:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:B4:C9:29:3E:E1:50:FC:54:97:EC:AA:19:FD:32:77:24:67:0E:C3
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/1-7TJKT7hUPxUl-yqGf0ydyRnDsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4104::/32
Signature Algorithm: sha256WithRSAEncryption
3f:b2:67:09:68:c5:37:b8:f3:67:7c:e2:7b:e1:bf:2f:af:66:
f1:63:a8:68:2a:8f:aa:de:6f:d1:01:93:7c:42:65:2e:47:9e:
49:f5:13:b5:84:53:ce:30:7a:43:bf:f5:a5:39:e1:e8:c2:19:
6f:4d:25:e2:53:8c:f1:26:a1:b0:7e:92:87:50:07:94:e1:e3:
ff:5c:3a:f0:39:b1:6c:ab:d4:ad:4f:e2:08:61:30:9b:17:13:
12:58:ed:e9:ff:fe:eb:f1:11:54:a2:a7:45:79:47:b1:c4:03:
e6:b6:60:9a:3e:27:a2:f0:c4:6e:73:3e:60:28:a0:54:d6:f4:
f7:ea:7e:1d:d1:1a:06:27:00:f7:8e:5c:52:b4:a3:f1:3e:9c:
01:0d:25:fa:6b:8b:a3:58:65:68:3c:82:91:a2:a3:c6:70:d6:
1a:38:6b:90:f7:32:45:7f:7b:cd:3c:87:7b:59:a7:f0:e2:4f:
a2:87:72:e1:43:fe:a3:57:27:4d:e3:f2:94:55:6c:06:c2:09:
30:47:3c:a7:8e:70:c5:71:d7:fd:f9:f5:52:fc:21:d3:0e:70:
d3:7f:a6:3d:7a:8e:9c:05:67:ec:eb:ac:0d:20:1e:b5:24:d0:
21:e3:9e:01:c8:69:d1:86:9e:61:e9:06:0b:11:27:78:1d:03:
36:9a:fd:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 11:06:59 2025 by rpki-client