Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/SQ-9steiN211sDbCmQ4pX5MaYVA.roa
File: SQ-9steiN211sDbCmQ4pX5MaYVA.roa (raw, json)
Hash identifier: kjcfgI5AOUHkdrxCXNB1Q38l9RNTd21c/nkT+wbqQlA=
Subject key identifier: 49:0F:BD:B2:D7:A2:37:6D:75:B0:36:C2:99:0E:29:5F:93:1A:61:50
Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Certificate serial: 01856F42A2E35BDDB3B5D2BA074450F4B4FD
Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/SQ-9steiN211sDbCmQ4pX5MaYVA.roa
Signing time: Sun 01 Jan 2023 21:35:16 +0000
ROA not before: Sun 01 Jan 2023 21:35:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397516
IP address blocks: 2a01:488:bb0f::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:a2:e3:5b:dd:b3:b5:d2:ba:07:44:50:f4:b4:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Validity
Not Before: Jan 1 21:35:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=490fbdb2d7a2376d75b036c2990e295f931a6150
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:91:15:30:5b:8f:18:89:7d:b1:db:12:50:94:
98:19:be:d6:48:b6:66:a8:03:c7:16:6f:74:08:6a:
ea:31:2a:34:47:4a:4c:43:a8:fd:c2:69:6b:19:1b:
41:a2:f0:bd:15:e5:bd:37:36:0d:9d:dc:2c:a8:30:
15:32:1a:3b:ce:34:18:85:d9:39:a6:70:13:36:da:
9b:1f:65:67:32:e8:41:20:78:fb:0b:f1:50:b4:37:
66:f1:0c:92:59:35:05:24:4b:4d:c1:31:02:5d:18:
ba:1d:b9:a8:4c:82:b8:26:0a:2c:26:2a:95:bb:e8:
24:0f:6e:06:93:57:eb:ff:e9:6b:45:bd:31:04:00:
4f:18:a1:b3:73:7d:56:0f:92:32:fa:0c:92:16:88:
ea:22:ac:b0:f1:bb:e3:c4:df:0d:96:51:95:37:79:
cf:48:e2:58:ff:fa:01:f0:c1:32:2c:16:ee:10:7a:
02:7c:08:24:e6:ea:83:d5:84:3e:e2:72:fa:36:21:
e2:b0:3e:2d:7f:49:f8:06:f6:44:7a:b8:47:6f:18:
0e:60:8d:ea:60:9a:22:e5:f5:9c:28:d3:2a:c5:61:
ce:a8:f9:24:b4:c2:5b:a8:7f:3d:ac:c2:66:37:e4:
92:85:41:bb:57:52:b1:49:bc:58:29:6e:36:74:61:
11:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:0F:BD:B2:D7:A2:37:6D:75:B0:36:C2:99:0E:29:5F:93:1A:61:50
X509v3 Authority Key Identifier:
keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/SQ-9steiN211sDbCmQ4pX5MaYVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:488:bb0f::/48
Signature Algorithm: sha256WithRSAEncryption
07:37:eb:f0:3c:63:6a:21:87:5f:af:d7:ef:68:a7:17:1b:59:
c9:ba:47:af:06:f1:1c:cd:62:5f:45:c9:e0:ca:6c:ce:d6:d1:
79:12:2d:41:76:2f:53:fc:39:1f:fc:b1:aa:3a:06:ff:02:f7:
94:7d:39:14:57:86:bb:ac:16:ff:0c:b2:23:6e:1e:ab:b5:08:
fa:03:4e:37:b3:19:72:50:ab:b2:fb:ce:36:31:46:60:7c:e5:
c2:27:64:90:81:44:92:7e:f4:47:5b:0a:c5:e9:b5:08:b7:9f:
80:a7:a6:71:08:55:fd:74:6c:30:7a:2b:3a:1d:d9:e4:ba:2d:
00:86:6f:d9:79:c8:36:0d:c2:eb:4d:ff:8c:8a:6f:4b:17:64:
f2:b2:8a:7d:6b:8e:85:a3:c4:87:86:01:cb:c1:cb:da:f4:10:
7b:44:7f:d1:a4:f3:e7:ed:cd:bc:8d:80:e0:9a:0b:fc:e0:2e:
65:83:f1:20:ed:aa:a4:83:e5:23:0c:da:bd:46:59:73:20:d0:
d6:25:ee:39:54:d9:07:49:1f:f6:f1:39:9d:4b:b8:61:2a:c7:
8a:b8:c5:5b:fc:83:65:4d:b4:63:78:18:70:cc:3c:72:3c:02:
4b:ed:56:b7:a6:0d:48:ca:48:60:c4:8b:02:bd:9f:06:0d:5e:
83:84:9d:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:40 2024 by rpki-client on console-ams.rpki-client.org