Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/edc8f3-0bb2-41ab-ba64-d22967e22ef0/1/FQZBJ1YfqY_b3YSDTc0AhrmZDRw.roa
File: FQZBJ1YfqY_b3YSDTc0AhrmZDRw.roa (raw, json)
Hash identifier: Dd2YZerEgOL9tmI2naISkJCnO+SqOUOZDk9GeC7/FkU=
Subject key identifier: 15:06:41:27:56:1F:A9:8F:DB:DD:84:83:4D:CD:00:86:B9:99:0D:1C
Certificate issuer: /CN=5eccb7cd1b9d6fc39d7158f2fe9cf5217a12d374
Certificate serial: 0185719E61794B16C18D0875AEDB11FAEC5F
Authority key identifier: 5E:CC:B7:CD:1B:9D:6F:C3:9D:71:58:F2:FE:9C:F5:21:7A:12:D3:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xsy3zRudb8OdcVjy_pz1IXoS03Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/edc8f3-0bb2-41ab-ba64-d22967e22ef0/1/FQZBJ1YfqY_b3YSDTc0AhrmZDRw.roa
Signing time: Mon 02 Jan 2023 08:34:43 +0000
ROA not before: Mon 02 Jan 2023 08:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41887
IP address blocks: 2a04:ab80::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:61:79:4b:16:c1:8d:08:75:ae:db:11:fa:ec:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5eccb7cd1b9d6fc39d7158f2fe9cf5217a12d374
Validity
Not Before: Jan 2 08:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=15064127561fa98fdbdd84834dcd0086b9990d1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a8:b5:92:bf:00:f6:40:01:53:33:19:58:8e:
09:50:08:ca:b3:68:7e:b8:4f:57:e8:56:fb:54:66:
55:3e:36:3c:c3:01:da:3c:95:0e:b3:01:5a:c2:ea:
91:46:03:a6:46:88:38:78:65:f3:bb:76:bf:aa:a4:
c9:27:e0:bc:18:87:b4:55:81:4f:57:c6:1c:57:8a:
41:48:ac:e3:0f:7e:f3:2c:a6:a5:41:30:31:99:35:
91:ba:e6:94:3f:64:5e:fc:3a:dc:2b:0b:f6:82:f4:
70:28:de:16:b0:12:28:4c:ff:65:b2:f0:81:52:37:
84:0e:11:6b:1c:1c:34:e1:16:83:02:5f:f0:0b:3a:
6f:08:fc:88:1f:df:43:49:21:6d:0a:04:02:91:eb:
ea:b9:74:d3:9f:c3:bc:aa:ed:c9:d2:9a:eb:27:7e:
24:92:98:80:53:95:ce:37:fe:94:d3:a6:bb:16:68:
13:ac:22:23:52:c0:a2:32:f7:8c:93:af:db:c5:f3:
04:39:18:8c:5a:2b:59:6b:d1:07:a2:a4:92:53:ba:
55:74:1f:05:42:b3:51:44:0f:41:1a:05:67:fc:ea:
f5:e3:ba:52:7f:bc:7b:91:3a:3b:94:00:59:11:b0:
be:7e:7a:ca:f1:fc:db:b6:fc:af:4c:95:dd:24:78:
e1:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:06:41:27:56:1F:A9:8F:DB:DD:84:83:4D:CD:00:86:B9:99:0D:1C
X509v3 Authority Key Identifier:
keyid:5E:CC:B7:CD:1B:9D:6F:C3:9D:71:58:F2:FE:9C:F5:21:7A:12:D3:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xsy3zRudb8OdcVjy_pz1IXoS03Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/edc8f3-0bb2-41ab-ba64-d22967e22ef0/1/FQZBJ1YfqY_b3YSDTc0AhrmZDRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/edc8f3-0bb2-41ab-ba64-d22967e22ef0/1/Xsy3zRudb8OdcVjy_pz1IXoS03Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:ab80::/29
Signature Algorithm: sha256WithRSAEncryption
24:aa:f8:a6:40:5d:a2:15:52:61:63:2a:d0:a3:d2:fe:dc:7c:
eb:85:1c:93:97:2d:f7:f5:cb:6a:6d:d8:9c:d8:65:7f:51:b5:
45:cc:13:ea:ac:5a:b5:54:0f:a3:82:0a:ba:61:8a:4f:49:dc:
57:4b:70:fe:5e:15:b1:ac:cb:c8:57:2d:25:8d:88:ba:2b:6d:
17:0f:e8:e9:78:bf:72:0d:1d:01:31:a7:08:ae:a1:89:57:f8:
bb:cf:41:4c:96:96:5e:dc:1c:21:d5:69:a6:59:dd:47:45:48:
0a:d1:bd:20:c7:f0:19:8a:b6:b5:3c:59:ad:13:48:df:34:d2:
1c:38:d5:51:dd:d8:52:89:b2:0d:13:3c:2a:48:12:24:63:4a:
61:13:09:db:9a:04:22:79:09:44:34:ed:4f:2a:0c:48:15:7b:
32:0a:a2:f2:f2:ee:d7:25:7b:00:47:1a:06:e2:16:ee:16:a4:
af:e3:4e:9d:b3:0f:2b:3a:99:59:6e:22:a9:c7:52:f7:64:83:
ad:34:04:88:6e:03:ca:d8:fc:ee:ce:d6:a8:58:9c:72:5c:fe:
bc:4e:b5:69:d3:55:e8:9f:6e:86:62:15:5e:df:8b:f1:1d:32:
e3:fb:91:50:e7:e2:ab:84:21:47:0d:00:fd:4f:b8:41:ae:bc:
17:d7:fb:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:14 2024 by rpki-client on console-fra.rpki-client.org