Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/194f22-8689-4fdb-9c41-058bbf9d5e27/1/quE5ai4QAHh4nmgT0YCg0kqiGH8.roa
File: quE5ai4QAHh4nmgT0YCg0kqiGH8.roa (raw, json)
Hash identifier: NCJm45n6R/cIiRb/DiohbEsRCy1UcPJ4gAVssBVPzxs=
Subject key identifier: AA:E1:39:6A:2E:10:00:78:78:9E:68:13:D1:80:A0:D2:4A:A2:18:7F
Certificate issuer: /CN=2b003e583bdb2511ff57ab7a32fce741334b343b
Certificate serial: 0185710BE734C64E41E1FD95D73EF3BAFEF6
Authority key identifier: 2B:00:3E:58:3B:DB:25:11:FF:57:AB:7A:32:FC:E7:41:33:4B:34:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwA-WDvbJRH_V6t6MvznQTNLNDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/194f22-8689-4fdb-9c41-058bbf9d5e27/1/quE5ai4QAHh4nmgT0YCg0kqiGH8.roa
Signing time: Mon 02 Jan 2023 05:54:43 +0000
ROA not before: Mon 02 Jan 2023 05:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42
IP address blocks: 2001:678:94::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0b:e7:34:c6:4e:41:e1:fd:95:d7:3e:f3:ba:fe:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b003e583bdb2511ff57ab7a32fce741334b343b
Validity
Not Before: Jan 2 05:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aae1396a2e100078789e6813d180a0d24aa2187f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c1:52:c6:d7:c0:79:60:f8:40:b1:9f:25:36:
5e:b6:82:45:62:5f:ca:18:2b:34:d1:a4:f0:41:a8:
8d:14:dd:9e:42:fb:c4:57:6f:71:9f:db:f8:f9:e0:
b7:98:4b:f7:43:b9:09:bf:22:27:e4:b2:94:0e:1d:
a2:cb:3e:c2:f4:fe:38:a3:7f:7a:a5:38:6b:f6:38:
b3:45:a3:e4:d4:ff:d0:aa:2d:37:dd:a7:1c:89:af:
31:b6:f4:0a:a5:7a:ad:d3:9b:68:8c:c0:4e:2f:46:
f7:6f:a3:bb:f6:ab:46:8c:8b:d6:b6:c3:1b:ea:28:
5d:7f:4a:c9:f3:68:71:d6:e4:36:e7:34:74:d5:1e:
dc:f5:f3:cb:5b:14:92:d9:67:66:c2:98:0b:3e:d3:
51:80:9b:c8:b6:47:66:dc:f0:da:dd:e0:bc:c5:71:
67:6c:06:38:58:c5:ba:94:6a:d1:fa:ba:e7:02:af:
a2:9b:8c:a2:bb:0a:f0:95:57:db:c4:c9:8d:c1:d5:
dd:28:66:6d:8a:82:0d:2c:40:7e:db:34:2b:c6:7a:
0b:83:18:63:b3:41:82:47:48:04:5a:71:a8:de:1b:
53:39:6f:32:a7:c4:2f:18:bc:4c:d0:6f:b8:51:bb:
cc:a3:0e:67:3f:26:aa:29:8c:7a:ff:5b:82:39:34:
a1:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:E1:39:6A:2E:10:00:78:78:9E:68:13:D1:80:A0:D2:4A:A2:18:7F
X509v3 Authority Key Identifier:
keyid:2B:00:3E:58:3B:DB:25:11:FF:57:AB:7A:32:FC:E7:41:33:4B:34:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwA-WDvbJRH_V6t6MvznQTNLNDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/194f22-8689-4fdb-9c41-058bbf9d5e27/1/quE5ai4QAHh4nmgT0YCg0kqiGH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/194f22-8689-4fdb-9c41-058bbf9d5e27/1/KwA-WDvbJRH_V6t6MvznQTNLNDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:94::/48
Signature Algorithm: sha256WithRSAEncryption
c9:a6:a9:85:8a:37:c4:cc:70:59:1b:58:74:f6:46:32:93:5a:
2f:0a:01:f8:9a:e0:bc:a9:7c:be:2b:d9:04:03:0e:47:1c:82:
5a:1a:51:2b:97:9b:32:35:66:a1:27:31:81:c1:0c:ca:ea:3f:
54:01:fa:4f:b5:07:bd:d3:45:b2:13:73:6e:7c:f1:cc:be:aa:
4a:61:d8:47:e5:5f:4a:90:d6:45:bc:ca:df:1e:29:27:97:4c:
7a:b4:89:37:ca:64:3d:0b:56:45:f3:a0:d9:25:ca:54:05:ae:
ca:3d:8b:0d:5e:6d:18:62:95:21:ab:95:11:32:7a:e2:9d:4a:
f6:d3:ea:b3:d7:7b:0e:d2:05:c0:a9:74:5b:8b:3d:54:90:e1:
cd:bf:d5:c7:fc:f4:6b:4d:4b:61:6e:af:91:28:c1:19:d8:29:
c0:89:8e:1d:d5:ee:b9:37:24:b5:ea:6d:02:09:c1:7e:ea:41:
64:04:2d:cd:6d:76:e7:c0:98:e8:06:d8:8f:7d:91:b5:a0:38:
1f:eb:70:b9:ef:22:01:db:dd:a4:a3:a2:0c:9b:ea:21:8e:b0:
9c:1b:80:d7:9a:96:43:b7:22:27:eb:63:7a:42:c7:e3:f2:99:
75:61:07:2d:bd:92:6f:b5:f5:c6:c1:87:af:15:c6:04:79:87:
d1:e9:f7:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:10 2024 by rpki-client on console-ams.rpki-client.org