Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/Q31-sruS33C0KM1XoplP-Y1Av18.roa
File: Q31-sruS33C0KM1XoplP-Y1Av18.roa (raw, json)
Hash identifier: vGeK7v71vTB9golxJ7uLRRKSLVP67IYRKjPsMyOoiis=
Subject key identifier: 43:7D:7E:B2:BB:92:DF:70:B4:28:CD:57:A2:99:4F:F9:8D:40:BF:5F
Certificate issuer: /CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Certificate serial: 018CC493701A6CDF7303E667801EC4C2D01C
Authority key identifier: E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/Q31-sruS33C0KM1XoplP-Y1Av18.roa
Signing time: Mon 01 Jan 2024 10:30:45 +0000
ROA not before: Mon 01 Jan 2024 10:30:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56796
IP address blocks: 2a0d:2146:8460::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 12 Mar 2024 13:47:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:70:1a:6c:df:73:03:e6:67:80:1e:c4:c2:d0:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Validity
Not Before: Jan 1 10:30:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=437d7eb2bb92df70b428cd57a2994ff98d40bf5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:04:04:1d:e9:7a:15:1c:bb:b5:d1:7b:40:31:
cc:b2:60:b5:64:ea:32:10:67:5d:bf:8c:9a:8e:9b:
c7:84:49:b1:4a:ba:0d:92:a8:eb:e9:f8:6d:56:cc:
bc:a5:5a:ff:33:0f:64:9d:c4:01:ad:7c:43:43:49:
d9:f1:7e:05:39:11:49:25:90:52:5e:a1:39:c6:44:
74:ea:b2:8d:6f:3a:2e:27:5b:fd:95:31:30:f0:0c:
8e:86:04:0d:bf:d6:f6:8c:8b:ad:92:a8:e7:64:fe:
77:4b:17:1b:2f:f0:db:1c:d0:92:76:80:33:1a:c2:
a1:81:b3:08:e8:1b:d1:fc:18:f4:b7:00:c1:ce:e9:
a6:04:c8:87:66:74:c6:19:ab:12:a8:e7:5e:24:03:
bf:aa:ef:87:94:70:0a:c7:b7:05:dd:10:4c:1a:d9:
de:2f:0d:36:24:da:10:f2:77:7d:4e:6a:cd:b4:e1:
ce:f7:90:84:b5:2a:79:61:80:54:2d:7c:45:1e:41:
4f:58:e5:8a:ef:8d:98:e7:34:c6:94:b4:55:0f:fe:
56:5b:8b:92:58:dd:3f:4a:2f:4a:4b:21:22:dc:7e:
32:f2:08:30:cc:f9:de:fc:d8:d6:a8:db:56:65:c8:
bb:fb:a0:3e:42:7e:a4:b3:e5:4c:1e:30:59:a4:9c:
79:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:7D:7E:B2:BB:92:DF:70:B4:28:CD:57:A2:99:4F:F9:8D:40:BF:5F
X509v3 Authority Key Identifier:
keyid:E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/Q31-sruS33C0KM1XoplP-Y1Av18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/4UrGEWFN0WXZRVcpbtftRsj8Al8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2146:8460::/44
Signature Algorithm: sha256WithRSAEncryption
d8:ef:22:97:67:26:8f:91:82:2c:f4:47:0a:6c:e1:15:d0:fc:
55:a2:a0:70:24:0e:25:05:70:32:a2:c3:bc:c7:42:48:80:d7:
fe:4f:a6:49:52:ff:83:40:92:46:a0:17:1c:0d:9c:6c:26:1b:
66:ab:45:e2:4c:e5:f8:2e:98:58:57:2a:1d:1b:6a:38:8e:7a:
db:4a:3b:61:36:ea:2d:f1:26:8e:c9:7d:2b:91:4e:87:85:7b:
89:e8:b3:bf:16:fe:40:ae:56:09:9e:db:ca:49:99:b5:6a:c2:
46:a1:8c:45:1b:83:a2:3e:9d:69:5b:d8:55:bb:90:a6:e8:c2:
4f:ea:5c:6f:46:3c:f2:ce:b8:f5:5d:c7:e6:53:98:67:82:64:
4c:07:da:8d:45:36:c8:a3:f1:ee:76:c7:0c:32:c6:78:07:a2:
78:dd:84:c7:10:d7:e0:b7:94:65:c8:db:ad:31:de:be:9e:00:
43:3b:25:db:f6:a7:23:ae:14:6e:48:43:73:39:b3:81:ee:34:
c4:c1:bf:69:ad:c6:2b:da:b9:2d:4c:ed:79:61:8a:c2:6b:a3:
a8:49:b5:de:dc:14:1c:15:0c:25:f4:a4:f1:dd:dc:f4:77:08:
4d:3b:3a:a8:40:6e:4c:9c:72:c8:e2:50:84:3e:60:32:36:d4:
4e:2f:a0:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:39 2024 by rpki-client on console-ams.rpki-client.org