Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/1_qkDsn09gl0jYtfQeR2dkpu2bw.roa
File: 1_qkDsn09gl0jYtfQeR2dkpu2bw.roa (raw, json)
Hash identifier: TFOjiGPfRx00XGSaLNe0Y3b2vazLE7CZHTzmzH40les=
Subject key identifier: D7:FA:A4:0E:C9:F4:F6:09:74:8D:8B:5F:41:E4:76:76:4A:6E:D9:BC
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018D5A9D60D6E4F56E49F307490E18144669
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/1_qkDsn09gl0jYtfQeR2dkpu2bw.roa
Signing time: Tue 30 Jan 2024 13:44:39 +0000
ROA not before: Tue 30 Jan 2024 13:44:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216435
IP address blocks: 2a12:6b80::/29 maxlen: 48
Validation: Failed, certificate revoked on Fri 02 Feb 2024 19:36:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5a:9d:60:d6:e4:f5:6e:49:f3:07:49:0e:18:14:46:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jan 30 13:44:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d7faa40ec9f4f609748d8b5f41e476764a6ed9bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:0c:0f:bd:35:b4:0c:e2:d2:7c:dc:7b:13:45:
d6:be:a5:41:1b:af:21:3b:04:33:c3:4e:f5:04:ca:
b8:5e:23:b6:21:f3:82:62:f4:7d:24:e4:2b:18:09:
3e:4e:21:58:60:80:87:6b:56:5a:b1:96:3f:94:c1:
ed:7a:cf:0a:58:43:ca:59:f6:5b:63:bf:14:44:d8:
84:dd:83:ca:dc:89:66:4f:b9:d7:44:f3:46:69:8a:
8d:fd:18:ba:53:7a:11:0b:3b:cd:b4:ec:7b:46:7f:
30:ba:d9:57:da:21:3b:e6:f8:b9:07:28:a8:ff:87:
d0:49:6a:7b:b7:29:4c:dd:2e:13:36:62:8f:49:70:
93:83:d6:93:42:45:7c:f1:0a:97:51:f8:0f:ca:00:
db:ba:5b:86:5f:9d:dc:ce:38:ae:dc:dd:8d:2a:43:
a3:91:f9:5f:da:03:82:c5:44:2e:8f:0c:53:74:17:
43:3c:84:17:e4:20:63:4b:a2:8a:2b:14:88:63:3a:
9d:2a:25:5a:e5:2d:8b:41:17:92:30:dd:f2:74:b4:
55:5b:12:5d:03:eb:63:3a:10:54:19:37:b8:28:55:
25:a1:89:f5:c8:cd:0a:60:a5:2c:a1:79:88:86:49:
b5:84:dc:1b:ae:74:f7:94:10:de:bc:cc:cd:19:65:
95:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:FA:A4:0E:C9:F4:F6:09:74:8D:8B:5F:41:E4:76:76:4A:6E:D9:BC
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/1_qkDsn09gl0jYtfQeR2dkpu2bw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:6b80::/29
Signature Algorithm: sha256WithRSAEncryption
c5:85:7b:8c:fb:0f:7a:e3:30:72:9c:00:ff:66:4d:52:22:ea:
aa:ed:f5:e7:ed:a6:3a:1f:17:cc:f6:39:80:a2:09:2e:8b:45:
5b:d2:e0:43:67:2f:96:bf:08:c4:58:64:7b:bc:ed:98:68:8c:
46:0f:56:8c:e0:be:29:14:6a:7b:72:ba:27:28:24:5a:c4:04:
0b:e3:4c:bb:fe:98:b6:59:e3:8c:c5:83:6c:7e:a5:c0:68:10:
eb:ae:c0:c0:93:2f:3a:d1:36:31:63:30:cb:f1:a2:dc:f9:b6:
96:f5:4c:9d:be:8a:cd:27:39:8e:74:c1:01:fc:ba:45:99:1b:
b4:cb:e0:64:5f:b3:90:f7:25:9a:25:a7:ce:54:62:58:51:d3:
25:7b:6d:5d:9f:d6:b9:00:e5:8c:d9:9a:db:90:5f:d4:12:05:
c5:e2:9a:54:1b:1a:b6:21:ac:65:9c:08:0e:20:34:fa:b3:d3:
d5:1d:a4:3e:be:16:35:9c:c4:f7:5b:9b:37:3c:df:10:e2:be:
d1:22:05:6c:f7:05:c2:47:97:5d:89:51:b1:20:d6:96:0e:d8:
ac:af:7f:84:ec:46:2c:6a:1b:54:4b:81:8f:61:3c:27:80:65:
41:bb:90:aa:5f:aa:b8:c3:07:7f:1a:9b:52:16:be:51:56:36:
34:ef:d2:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:02 2024 by rpki-client on console-ams.rpki-client.org