Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/qhsfl8vQWUdoYxeKKsdOJXljV4I.roa
File: qhsfl8vQWUdoYxeKKsdOJXljV4I.roa (raw, json)
Hash identifier: oG9vDHBVTcUomnkh09N2LqAQzl/Kh5icN05udjajSq0=
Subject key identifier: AA:1B:1F:97:CB:D0:59:47:68:63:17:8A:2A:C7:4E:25:79:63:57:82
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 0190C009768AFF1486163FC3AF63525064D5
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/qhsfl8vQWUdoYxeKKsdOJXljV4I.roa
Signing time: Wed 17 Jul 2024 09:32:43 +0000
ROA not before: Wed 17 Jul 2024 09:32:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214967
IP address blocks: 2a0a:e2c0::/29 maxlen: 29
2a0e:7780::/29 maxlen: 32
2a12:ec0::/29 maxlen: 32
2a12:1900::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 32
Validation: Failed, certificate revoked on Thu 18 Jul 2024 18:53:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c0:09:76:8a:ff:14:86:16:3f:c3:af:63:52:50:64:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jul 17 09:32:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aa1b1f97cbd059476863178a2ac74e2579635782
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7a:a3:a9:10:cd:cb:e1:70:9b:4c:9d:7e:fa:
d4:56:f8:5b:26:f7:e0:3d:e5:e2:bf:a2:bf:1c:2c:
c9:8c:c3:f2:96:2d:0e:ac:27:e8:a0:77:65:31:39:
29:c6:89:4a:dd:e0:6f:7b:30:3c:35:2b:06:1b:2c:
5c:4f:14:dc:15:78:0a:2f:97:26:b6:d5:cc:43:28:
0e:66:80:83:cc:3a:f6:5c:99:cf:78:5a:39:49:0c:
b9:5a:5e:56:7f:b9:b2:e5:c6:05:88:78:e3:21:6d:
9d:a7:cd:93:29:49:52:3e:a6:0f:35:89:7b:bf:1b:
7c:ad:59:11:a9:65:75:7a:e1:f9:9a:aa:94:78:84:
89:45:5d:b6:78:94:3d:16:4c:c5:26:62:f6:ff:21:
3b:e5:6d:1a:c7:91:10:09:01:e0:3e:f8:fc:dd:cc:
89:ee:d1:ff:b4:3b:80:e4:b5:bb:e8:a4:93:42:8e:
80:46:e9:85:ee:24:a6:64:ef:69:fe:d1:79:33:f5:
4d:ca:0c:93:53:05:fa:ab:df:0a:fe:8b:e7:86:11:
e7:52:69:38:b7:58:3a:92:2a:2f:ef:1b:53:df:bd:
15:31:4b:64:10:95:2e:9d:32:43:06:b3:f9:2e:d6:
cf:bd:1a:92:89:85:84:24:31:57:18:33:27:93:07:
08:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:1B:1F:97:CB:D0:59:47:68:63:17:8A:2A:C7:4E:25:79:63:57:82
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/qhsfl8vQWUdoYxeKKsdOJXljV4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:e2c0::/29
2a0e:7780::/29
2a12:ec0::/29
2a12:1900::/29
2a12:f0c0::/29
Signature Algorithm: sha256WithRSAEncryption
97:d0:54:47:4f:82:c0:da:80:9e:16:9f:a4:82:39:21:26:fe:
d0:ce:46:6f:9f:42:f2:55:63:75:cc:05:64:09:76:53:dc:32:
0f:31:7a:14:13:4d:7e:e5:69:2b:23:ae:22:13:fe:63:7e:76:
fa:d1:26:d8:21:0d:df:0d:e0:50:54:bb:71:82:f6:de:a6:d0:
7f:de:e5:fe:0f:c7:df:48:ab:84:80:5f:14:cb:62:bc:90:a2:
2c:ff:f1:82:d8:16:57:5e:81:16:21:25:0e:76:0b:d6:f8:58:
48:80:b0:5e:ac:08:29:78:d2:e1:6e:ae:7d:6b:b3:14:1c:55:
6d:e4:bf:56:2f:b1:35:b6:c3:2d:7e:1f:37:ac:1d:42:28:5e:
aa:3f:2d:64:5b:17:fa:62:ae:d1:e1:83:0f:41:cb:ce:ed:f5:
04:49:a9:00:16:b2:5a:84:6e:cf:a5:1f:00:e9:0f:ea:a5:c6:
36:50:d2:ea:2b:9b:77:3e:20:6f:a7:d0:b1:14:74:8f:ee:75:
22:d8:d3:2a:25:76:60:f1:e3:46:dd:7f:16:c3:06:fc:2b:49:
74:5e:02:00:04:05:ab:53:ed:75:39:c3:b5:cf:d5:3f:36:b4:
c3:5b:ca:89:dd:0a:b3:33:23:45:d5:44:57:38:e9:f7:9c:eb:
a2:6b:51:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 18 20:10:51 2024 by rpki-client on console-fra.rpki-client.org