Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/1QDZQsklONo_oye2cGBhA5InJA0.roa
File: 1QDZQsklONo_oye2cGBhA5InJA0.roa (raw, json)
Hash identifier: O6TvyzQacxY5S7T0QdUy5QOtjZFhcDTlB6Y+L7B1eQY=
Subject key identifier: D5:00:D9:42:C9:25:38:DA:3F:A3:27:B6:70:60:61:03:92:27:24:0D
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 0186AD806DDD8BE6E8B2057015A642953ECA
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/1QDZQsklONo_oye2cGBhA5InJA0.roa
Signing time: Sat 04 Mar 2023 16:42:00 +0000
ROA not before: Sat 04 Mar 2023 16:42:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199605
IP address blocks: 2a0a:280:1800::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ad:80:6d:dd:8b:e6:e8:b2:05:70:15:a6:42:95:3e:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Mar 4 16:42:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d500d942c92538da3fa327b6706061039227240d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d5:b4:e2:ab:25:99:40:94:dd:49:26:f1:20:
68:59:2c:1f:19:5f:99:11:34:c9:8e:87:29:1e:47:
ba:3a:40:01:8c:65:43:a8:61:ad:7e:c6:22:8a:c0:
bc:a8:6f:73:67:9f:f2:fd:50:09:c3:97:80:14:8f:
59:d7:c7:c2:ae:ea:d4:60:fa:7a:3a:fc:a1:8f:40:
e0:ca:00:36:fe:13:af:f7:dc:bf:99:40:84:d1:36:
b5:ea:43:15:2d:a4:13:fa:fd:0e:8a:d0:7d:da:12:
93:92:48:c9:97:b6:d0:98:c8:d7:17:21:d8:7c:c3:
a6:40:12:a9:a2:b5:7a:d1:98:53:15:dd:25:89:72:
68:68:e5:28:4d:51:4e:e4:03:f1:11:51:9e:7d:51:
be:aa:a0:98:c2:76:77:05:d1:15:3b:72:21:12:3a:
e0:61:28:a9:f6:13:ee:4a:77:34:cb:71:2f:e5:33:
5b:80:40:d5:1f:28:63:7a:50:10:36:b1:87:b6:d8:
16:4b:4e:7a:e5:7a:64:80:49:bf:4d:57:1e:40:0d:
f2:00:8c:b3:25:20:0f:d8:b4:63:56:88:66:8c:a3:
a3:6c:36:b7:db:0f:b9:59:ae:0b:9b:34:73:dd:a1:
d6:41:63:df:4e:4c:15:79:b1:4c:34:62:ce:e0:fa:
2c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:00:D9:42:C9:25:38:DA:3F:A3:27:B6:70:60:61:03:92:27:24:0D
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/1QDZQsklONo_oye2cGBhA5InJA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:280:1800::/40
Signature Algorithm: sha256WithRSAEncryption
1a:e5:32:81:e3:40:0e:2f:9b:ee:43:c9:3a:e6:93:78:a1:8e:
1d:48:71:36:95:8e:5c:6b:1d:c6:c6:0a:2d:f1:5b:cf:73:0d:
21:a5:43:91:dd:bc:ec:51:c3:02:5e:02:dd:02:76:39:72:d1:
8e:bc:5f:fe:8d:15:eb:cc:aa:c1:0f:d8:2a:d4:f2:67:94:41:
fd:4f:99:b6:34:3c:1d:b6:77:a9:f4:c2:9b:72:a8:5a:ea:c7:
10:72:1a:9b:26:e0:e7:a9:82:77:43:4f:e0:27:70:d5:24:84:
fb:45:e7:6c:b2:37:50:77:e0:91:6f:4a:34:09:79:39:ce:56:
45:a7:7f:26:4b:41:4a:8e:0d:c5:5a:ba:57:55:24:d2:a4:0f:
ae:ed:68:2b:3b:1a:85:c8:df:c4:65:46:dc:84:6d:95:23:d0:
da:ea:5f:c9:8e:2c:2c:d6:f4:67:1e:71:d2:0e:4e:04:66:e1:
69:6a:21:c3:c7:1a:46:4e:83:d5:5f:15:c3:0c:a2:18:11:b1:
e4:55:0b:64:de:1f:a0:31:a7:b9:99:59:fc:3e:dd:19:89:6e:
c2:5e:ae:a4:8e:46:f1:49:7f:67:6b:86:75:09:29:7f:32:70:
c1:a6:3f:ff:e4:b4:f2:b9:18:c5:cd:b7:49:09:86:9f:7a:0c:
f4:92:82:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:06 2024 by rpki-client on console-ams.rpki-client.org