Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/RqiUigF01750exwUgCqULt5oVQY.roa
File: RqiUigF01750exwUgCqULt5oVQY.roa (raw, json)
Hash identifier: YMtp/E59A8BLzLqbU/PlOuAXoL8t9tH8cXqP7SbQgkU=
Subject key identifier: 46:A8:94:8A:01:74:D7:BE:74:7B:1C:14:80:2A:94:2E:DE:68:55:06
Certificate issuer: /CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
Certificate serial: 01856D41881D768E63B72B77B5BC16BC5153
Authority key identifier: E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/RqiUigF01750exwUgCqULt5oVQY.roa
Signing time: Sun 01 Jan 2023 12:14:49 +0000
ROA not before: Sun 01 Jan 2023 12:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a04:e4c4:5::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 16 Jun 2023 18:27:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:88:1d:76:8e:63:b7:2b:77:b5:bc:16:bc:51:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
Validity
Not Before: Jan 1 12:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=46a8948a0174d7be747b1c14802a942ede685506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:64:d1:8a:bb:a8:cd:7d:06:23:d4:fd:cc:2c:
f4:ea:c6:bd:fc:2a:a2:15:3e:bb:a5:14:68:ad:82:
09:9b:93:e2:15:2e:46:b7:81:82:67:8c:69:64:72:
f1:79:e3:21:07:3d:2e:87:ed:63:3b:75:3a:ed:d5:
33:cc:db:03:5a:20:10:ad:6f:ca:2e:98:61:67:36:
4b:20:32:f3:53:a1:3c:26:64:7c:b4:3d:a9:65:11:
54:ae:3d:e4:76:8d:f6:4f:30:64:42:58:b7:58:0d:
e6:eb:4c:74:95:93:87:66:3b:d2:5b:c9:e8:b0:94:
b1:db:9c:71:49:6b:79:98:56:8c:d5:da:0e:e8:c6:
7d:4b:cc:30:39:fc:7c:38:c9:aa:9d:3b:93:bc:69:
e6:66:52:58:26:ee:75:1d:97:71:91:d9:6d:dd:a8:
5d:81:47:af:81:4f:42:ca:0d:c3:19:94:57:04:bf:
ee:fa:cd:29:8d:a6:a2:f1:99:6e:a3:6c:65:e9:52:
ba:21:c6:37:fd:18:6e:1c:83:07:7d:cb:57:d1:1b:
4c:da:26:b9:07:40:77:ef:68:72:3c:6b:bf:08:92:
cd:e1:d7:6e:97:ee:f2:3c:dc:6b:f0:9c:b8:6f:46:
98:0b:0b:51:43:8e:12:5a:87:6a:59:1b:45:61:1c:
a4:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:A8:94:8A:01:74:D7:BE:74:7B:1C:14:80:2A:94:2E:DE:68:55:06
X509v3 Authority Key Identifier:
keyid:E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/RqiUigF01750exwUgCqULt5oVQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/5xM9yvKx6_Xa3lozqhsvuZ0mibo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:e4c4:5::/48
Signature Algorithm: sha256WithRSAEncryption
58:e8:43:ed:a6:d7:ef:43:e2:d1:41:95:71:e2:3c:4f:91:88:
ca:5e:89:20:6c:ae:67:ff:3c:bf:f1:1f:54:fd:1b:b0:54:4f:
b6:36:35:9c:55:80:b5:d1:8d:62:b0:cf:f3:f2:6a:b6:1b:df:
5d:27:ff:56:bd:10:96:40:d5:83:68:e2:e8:17:d0:38:35:6b:
c3:41:ac:1c:e2:d4:ce:af:17:13:d2:b5:b3:15:9e:b5:6f:5f:
83:77:20:0b:69:86:d7:70:26:6c:06:ae:a1:59:9c:00:37:72:
3e:17:23:11:d7:05:a0:f3:3f:17:8b:44:c4:6e:2c:e8:8f:ab:
0a:29:d0:28:23:fd:bb:fc:eb:68:83:5b:e1:6f:6b:a6:99:67:
6e:f1:55:05:be:67:53:5d:6b:e8:b4:41:b1:8c:e9:b6:f1:32:
1c:b3:cb:c3:14:83:37:b8:bc:58:7b:39:5b:fa:0e:55:11:b4:
e5:bc:e8:bf:77:cd:7a:68:6d:9d:d9:d4:9f:99:ae:4c:5e:95:
db:c8:c4:e5:c3:e2:21:98:fe:ff:11:84:db:28:42:30:61:e6:
50:1b:a3:75:0f:3f:82:7f:f3:b2:ea:7c:17:e8:55:79:54:0f:
97:db:ac:03:1f:c8:d6:a3:32:25:07:ef:18:3b:35:91:2e:28:
c1:fb:50:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:41 2024 by rpki-client on console-fra.rpki-client.org