Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/sQATibVKIFRJ9LL59YkOyspV7MM.roa
File: sQATibVKIFRJ9LL59YkOyspV7MM.roa (raw, json)
Hash identifier: VfJ/o78y3txCoD+1OW2xLr+MfL/ARvTKkICA3Ng6DzU=
Subject key identifier: B1:00:13:89:B5:4A:20:54:49:F4:B2:F9:F5:89:0E:CA:CA:55:EC:C3
Certificate issuer: /CN=c68c65e699b576ab113a79be8828948f1e6cc260
Certificate serial: 01857246C4728964AEB5233FF9CA56B96E6E
Authority key identifier: C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/sQATibVKIFRJ9LL59YkOyspV7MM.roa
Signing time: Mon 02 Jan 2023 11:38:38 +0000
ROA not before: Mon 02 Jan 2023 11:38:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50395
IP address blocks: 2a0e:c6c6::/32 maxlen: 32
2a0d:2d45::/32 maxlen: 32
2001:67c:1b0::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:c4:72:89:64:ae:b5:23:3f:f9:ca:56:b9:6e:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c68c65e699b576ab113a79be8828948f1e6cc260
Validity
Not Before: Jan 2 11:38:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1001389b54a205449f4b2f9f5890ecaca55ecc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0c:53:8b:c3:e3:e0:d4:1b:2e:e0:e9:12:9d:
85:ca:61:b6:96:51:67:a5:5e:58:b8:c6:31:a0:8e:
14:3a:1c:f4:70:83:4f:cd:5a:16:8b:51:15:0d:03:
44:f4:f4:ad:49:e3:86:e6:84:42:7b:b9:d8:83:40:
8a:71:2c:e1:56:83:04:5b:16:5d:9e:c7:f5:64:1c:
9c:06:8b:63:a1:b9:0a:e9:04:a9:a8:a8:1a:f3:98:
02:19:ee:d8:e4:fd:37:ae:d4:8b:26:2a:53:9a:b3:
56:c9:5d:ad:df:19:3f:a9:bc:8e:ba:65:81:42:a4:
a8:93:ab:3c:80:19:44:f5:2b:1d:a6:79:4f:94:0e:
81:38:a7:92:e2:78:51:89:19:14:66:d5:78:5d:66:
76:33:45:44:b6:ef:9d:a7:3f:b7:2f:54:4f:52:de:
5c:ec:8a:83:c2:77:54:cc:06:8d:b5:ea:4c:c3:e8:
e1:7c:ef:da:13:91:36:97:41:93:2e:75:99:7f:f8:
e1:f8:77:fb:0c:b7:80:8f:63:b7:6e:09:de:64:ac:
43:03:c5:55:ec:e3:0e:b5:e4:90:06:fd:31:61:aa:
45:05:60:b4:11:0d:67:01:a3:40:cd:0e:f5:80:39:
d2:e0:8b:f2:ad:a6:dc:fd:52:00:f3:9b:38:74:a3:
73:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:00:13:89:B5:4A:20:54:49:F4:B2:F9:F5:89:0E:CA:CA:55:EC:C3
X509v3 Authority Key Identifier:
keyid:C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/sQATibVKIFRJ9LL59YkOyspV7MM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1b0::/48
2a0d:2d45::/32
2a0e:c6c6::/32
Signature Algorithm: sha256WithRSAEncryption
16:56:71:eb:fe:79:93:e8:fd:37:c9:dc:45:1b:6c:9f:6b:cc:
a5:e2:fc:54:d4:df:06:68:f2:8c:19:5e:af:c0:18:d5:d3:83:
8f:93:3c:d6:80:73:3a:d9:25:23:5c:54:df:46:73:16:fa:d8:
67:05:1b:db:f5:bc:48:4f:73:5e:6d:1d:02:1d:2f:ec:2e:9e:
f8:09:a8:c2:b5:ff:e7:bf:4c:d5:54:3b:a8:9e:1a:be:69:87:
62:a3:02:b2:66:91:c6:ca:3e:4c:f1:01:60:2f:23:c0:e1:66:
d8:f5:ec:fb:1c:54:b6:ba:fa:e3:c0:f4:f1:93:82:fd:a5:bb:
71:b2:6b:88:28:6c:8b:04:2f:d6:b9:7f:df:53:6e:00:17:c6:
3c:0a:01:c4:f4:67:06:fa:04:de:18:26:eb:a4:a1:95:fc:9f:
27:e1:d0:cf:d5:11:cc:3e:5b:30:36:26:87:6a:2b:c1:51:de:
d3:0c:7e:c5:d5:80:e4:1e:73:63:9f:0d:e4:7a:bc:ce:da:e1:
c7:18:ee:b3:85:c5:a0:38:5d:41:8d:ac:eb:6a:a6:66:d4:89:
15:7f:a1:f9:22:36:55:4b:f2:c3:18:42:35:21:6f:d5:ea:20:
2e:cc:82:da:07:27:a0:83:3b:8b:58:36:7f:14:c9:ae:90:c6:
9f:52:ae:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:00 2024 by rpki-client on console-fra.rpki-client.org