Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/PrHjRD2oaY13DblFRPmiOeCjrL8.roa
File: PrHjRD2oaY13DblFRPmiOeCjrL8.roa (raw, json)
Hash identifier: dpjiVDqWnmKDK5FRlIrPf2+VZGv1Cppq2XcbSfTcxaU=
Subject key identifier: 3E:B1:E3:44:3D:A8:69:8D:77:0D:B9:45:44:F9:A2:39:E0:A3:AC:BF
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 018DCB7B7DC397C0F3CFFF2F86BFAF1533E6
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/PrHjRD2oaY13DblFRPmiOeCjrL8.roa
Signing time: Wed 21 Feb 2024 11:44:44 +0000
ROA not before: Wed 21 Feb 2024 11:44:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211027
IP address blocks: 2a10:4100::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 04 Mar 2024 04:13:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:cb:7b:7d:c3:97:c0:f3:cf:ff:2f:86:bf:af:15:33:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Feb 21 11:44:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3eb1e3443da8698d770db94544f9a239e0a3acbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c5:fc:5a:8d:41:81:84:1f:8e:31:b3:03:31:
e6:94:d1:d7:49:67:2b:e0:80:9f:d6:47:c0:ae:96:
73:d9:d2:2f:c3:ba:f4:3a:20:f2:de:8a:b0:24:9c:
e5:d7:24:40:b7:eb:c8:82:0b:6a:52:58:f9:b2:4f:
09:9e:9b:eb:d7:c4:88:18:15:c2:0c:25:b1:28:3d:
4a:e1:50:5e:ca:c5:94:e9:b0:6d:e7:eb:83:ea:ba:
43:b0:37:e8:72:d7:03:e7:34:6a:4b:4b:5e:10:03:
ec:b1:2b:f5:2c:5a:38:23:d7:9a:8c:14:d9:d0:28:
f3:db:01:56:82:e1:81:3b:8a:15:7a:72:3a:8c:b4:
28:55:63:d6:0c:de:4c:08:03:d9:7e:53:df:3c:bc:
d4:fc:98:d0:8b:89:65:20:74:a8:ac:23:0a:0e:ec:
02:1f:99:63:23:09:70:fa:8c:fb:38:b7:c2:67:1a:
be:55:a0:fd:43:c6:d5:7f:2e:37:e7:b2:18:97:cf:
b8:f7:79:ba:98:72:10:8d:ea:9d:d0:85:e2:f5:48:
75:fc:af:04:b8:20:ca:02:2c:2c:d7:b3:bf:fa:fe:
de:b7:9f:20:78:6a:c5:d4:a2:4c:cb:ca:d7:59:03:
59:be:df:a7:3b:ec:8d:0a:68:d0:59:e6:89:29:32:
72:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:B1:E3:44:3D:A8:69:8D:77:0D:B9:45:44:F9:A2:39:E0:A3:AC:BF
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/PrHjRD2oaY13DblFRPmiOeCjrL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4100::/32
Signature Algorithm: sha256WithRSAEncryption
42:29:37:ba:15:85:86:43:9d:99:24:c3:3b:08:5a:83:67:ab:
00:9b:72:a8:40:e0:aa:e7:b5:cd:af:b4:0c:03:f6:32:f1:22:
c2:88:97:10:1a:99:a0:20:12:e1:f1:db:9f:de:ce:bf:d2:06:
79:40:68:d3:95:2e:33:8f:7e:da:a5:a6:62:42:78:10:01:58:
9b:e3:cd:d6:d2:1a:7d:b0:6d:c6:9c:52:74:67:67:d6:63:2f:
60:4f:f0:b9:8d:25:1f:b3:56:81:34:a6:17:a7:b7:76:50:b0:
11:3f:44:97:e9:66:a6:eb:0d:cf:ff:33:fe:7f:4c:8d:d4:ce:
05:93:8c:3d:5c:5a:d0:3f:42:e9:76:cf:4c:72:ca:81:29:71:
11:0a:99:28:5f:24:d6:d1:32:fa:3f:e2:4f:93:0c:2f:36:4a:
08:ad:a6:6a:71:21:e3:71:f4:68:88:1a:64:ae:18:b0:89:7d:
15:68:ee:dd:72:42:2c:36:e4:ab:de:b9:33:fb:a1:1d:c0:92:
19:9d:eb:02:ef:79:6c:71:5a:c2:c7:cb:28:6c:03:56:88:08:
af:bb:39:23:c2:2a:32:a9:0a:6f:11:bf:2c:04:31:69:5a:24:
04:80:0c:f5:74:3e:5d:2f:da:04:a9:3e:45:57:0d:de:f9:88:
ef:83:ab:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:01 2024 by rpki-client on console-fra.rpki-client.org