Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/0QsMtyc432hooem2_0M-3RXHq7k.roa
File: 0QsMtyc432hooem2_0M-3RXHq7k.roa (raw, json)
Hash identifier: f4C15VLHXTSEFCPFUAZcQhI22jtt3ahqpRJ02H3Us9E=
Subject key identifier: D1:0B:0C:B7:27:38:DF:68:68:A1:E9:B6:FF:43:3E:DD:15:C7:AB:B9
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 01868E8BD9C278937E6423DE9029D78E441F
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/0QsMtyc432hooem2_0M-3RXHq7k.roa
Signing time: Sun 26 Feb 2023 16:26:15 +0000
ROA not before: Sun 26 Feb 2023 16:26:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200105
IP address blocks: 2a0a:280:1300::/40 maxlen: 40
Validation: Failed, certificate revoked on Sun 26 Feb 2023 18:10:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:8e:8b:d9:c2:78:93:7e:64:23:de:90:29:d7:8e:44:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Feb 26 16:26:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d10b0cb72738df6868a1e9b6ff433edd15c7abb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:56:e3:e0:f0:a6:d2:59:df:52:21:a6:b9:28:
f4:46:ed:83:76:dd:0b:75:09:09:b1:67:de:b7:17:
ad:97:2e:02:ad:ca:24:06:0c:b8:e1:47:88:09:56:
98:84:09:e7:d2:a1:ba:70:e6:f2:0e:9a:e5:41:d5:
0e:32:3f:cb:fe:65:64:92:e5:2e:5e:96:e2:82:8a:
4a:d0:41:59:48:e5:35:22:fc:9e:66:dd:7e:74:7d:
7d:e2:b6:cc:29:8a:25:2a:bf:69:79:99:7f:e9:14:
1b:65:e6:fa:11:80:d3:bd:c3:5d:9d:1f:e2:31:72:
0c:ad:87:af:1f:ac:22:ee:6b:6c:ee:30:97:6a:91:
af:62:d7:82:1d:2e:ff:e7:10:c1:30:78:f3:9e:4d:
71:a0:90:15:2f:3f:4c:44:81:31:cc:a7:76:68:96:
73:73:2e:4c:5d:da:7f:fa:02:ed:58:0f:01:7b:d2:
c8:dc:1d:42:93:28:f1:ce:cf:d7:17:4f:5a:9a:31:
fb:52:16:88:b4:14:7d:5f:ce:0d:86:29:a2:a9:42:
4f:e1:43:d9:be:9c:c1:35:e1:c6:9e:81:63:dc:8e:
62:d8:cc:44:74:6c:50:dd:f3:e8:4e:dd:eb:fa:7a:
b3:47:1e:b8:3a:8c:93:cf:98:1d:91:ab:92:fa:7e:
af:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:0B:0C:B7:27:38:DF:68:68:A1:E9:B6:FF:43:3E:DD:15:C7:AB:B9
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/0QsMtyc432hooem2_0M-3RXHq7k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:280:1300::/40
Signature Algorithm: sha256WithRSAEncryption
2e:33:c1:a9:29:5a:71:9b:23:8d:f2:fc:09:4c:e3:bb:e9:d2:
2d:0f:46:a2:b3:3b:74:68:d7:95:4b:15:b6:00:8a:d9:70:5c:
02:a5:60:4b:70:2f:5e:40:98:9c:86:49:19:ff:77:02:22:ed:
b1:6e:c4:14:83:cd:c4:8e:09:94:0c:b8:a4:27:48:75:e4:44:
cb:19:fe:70:00:62:75:c9:e9:22:6a:75:cf:38:e3:87:d4:80:
3d:06:8c:c2:04:df:ff:1d:34:1d:71:6c:f7:0f:7e:0e:2e:ee:
59:a3:bc:c5:46:3a:f8:01:13:16:a7:e9:2f:48:ab:b6:54:54:
90:2b:d6:41:c0:a6:a4:db:5f:e6:3b:98:7d:5d:77:64:73:d3:
e9:19:6a:79:51:be:72:a5:83:f5:41:d8:11:af:90:f5:35:91:
c9:d5:82:fd:49:6c:6a:b7:0d:81:e4:36:74:8d:dc:f3:6f:76:
34:a3:3c:80:8b:80:87:3a:ff:44:39:e8:53:53:30:61:c7:34:
e0:cc:92:39:b7:22:02:44:62:31:0c:b6:c2:0c:18:d8:ca:a4:
9d:72:75:60:21:b7:40:8d:d1:b6:39:ce:3d:d5:c4:54:b8:c9:
31:48:b8:58:b2:2c:3a:f6:d2:51:21:89:80:ed:ed:08:8d:61:
fd:af:78:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:22 2024 by rpki-client on console-fra.rpki-client.org