Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/Q2pr_mRRLai4uGaFGdRGFUuxHkg.roa
File: Q2pr_mRRLai4uGaFGdRGFUuxHkg.roa (raw, json)
Hash identifier: hRzr41CIgUqq04Y/V9q+BVuAWZ0e+Xpvxb/16o0uiF4=
Subject key identifier: 43:6A:6B:FE:64:51:2D:A8:B8:B8:66:85:19:D4:46:15:4B:B1:1E:48
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 019008E26A45E54FCBDB344299314DCB7949
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/Q2pr_mRRLai4uGaFGdRGFUuxHkg.roa
Signing time: Tue 11 Jun 2024 19:59:34 +0000
ROA not before: Tue 11 Jun 2024 19:59:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49581
IP address blocks: 2a06:b3c0::/29 maxlen: 32
2a12:ec0::/29 maxlen: 32
Validation: Failed, certificate revoked on Sat 15 Jun 2024 05:38:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:08:e2:6a:45:e5:4f:cb:db:34:42:99:31:4d:cb:79:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jun 11 19:59:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=436a6bfe64512da8b8b8668519d446154bb11e48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:3e:83:42:36:51:a8:74:6c:d7:3e:cc:c1:29:
35:42:a8:56:74:4b:98:fc:d6:ad:16:1d:c5:9d:22:
95:8a:10:44:d8:2c:d4:4d:ec:ab:b6:d8:44:c9:12:
f4:08:8e:0c:40:02:0d:59:a3:70:d4:3d:88:a3:e9:
93:ff:0e:ac:3a:30:4a:8b:df:fa:df:62:7d:4a:1d:
41:2a:45:e3:01:c0:80:e2:23:3d:94:c1:4b:d0:3d:
70:89:db:46:b3:5c:99:8f:05:d3:b2:c1:21:79:21:
2b:b1:68:3a:5c:9e:94:7c:ac:98:7b:7d:5e:22:f2:
02:ea:52:69:7b:d2:de:18:fb:dc:04:6d:b8:eb:3b:
6a:bb:e1:1a:20:04:71:2f:ac:d7:10:d6:3b:19:3c:
61:eb:bb:87:e5:da:a7:5d:5b:36:89:48:42:13:29:
38:0f:c8:1e:76:71:51:af:56:3a:95:fb:29:4b:dd:
78:36:5e:4f:ad:73:62:da:64:93:4e:5c:b2:5d:e7:
ea:f1:48:32:d6:47:f3:cb:ba:98:77:9c:5f:ef:60:
2e:01:c0:25:38:15:73:13:5b:0f:e2:3b:ab:e9:e5:
86:47:c0:76:e4:18:ab:69:24:a4:13:d6:23:6f:04:
d9:b3:14:a2:0f:1d:00:fb:0d:1e:bd:ae:3b:45:27:
3c:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:6A:6B:FE:64:51:2D:A8:B8:B8:66:85:19:D4:46:15:4B:B1:1E:48
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/Q2pr_mRRLai4uGaFGdRGFUuxHkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:b3c0::/29
2a12:ec0::/29
Signature Algorithm: sha256WithRSAEncryption
1c:15:b2:e8:da:9c:f1:09:f1:29:dc:cc:87:f5:06:43:4e:b6:
f4:a8:94:ff:3e:3d:ca:28:10:27:ed:99:8c:45:d6:12:61:fd:
1f:1c:71:4a:88:18:69:64:1d:38:02:95:92:ee:ed:cb:41:64:
aa:b3:e9:26:4c:37:e1:3e:2f:85:71:b1:ba:63:fe:97:04:82:
53:2c:6e:ed:65:59:9f:b9:3d:e6:ef:0b:82:8c:00:bf:6f:4c:
89:fa:07:d9:f4:cc:03:bf:d5:a9:93:f9:1b:a1:c1:53:0c:d4:
56:0e:49:76:41:fd:c5:a6:e4:cd:ff:8f:b3:e7:48:d1:c1:e9:
b7:4b:39:99:45:08:f4:68:79:34:73:13:64:6c:bc:5f:4b:4a:
fa:3e:48:07:24:5a:52:02:39:e2:eb:af:f7:16:aa:5a:b1:65:
f4:c5:9a:4e:5f:cd:a5:d7:9b:dd:c8:f1:7d:a7:1e:a4:93:a9:
f0:b9:72:a2:cf:86:d9:f7:a0:85:91:8b:17:83:36:d3:ce:b7:
a6:96:75:1e:3c:33:96:ed:e5:10:8f:d7:78:cf:64:89:09:aa:
9e:3e:67:5a:3a:f1:90:5b:58:fb:61:f2:66:c5:0d:a7:bc:03:
f6:aa:31:41:4f:4d:d1:b1:7d:62:79:07:ea:26:5d:80:9d:a6:
62:e1:ce:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 06:11:30 2024 by rpki-client on console-fra.rpki-client.org