Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/4qxc-ywljLkSs1jwuiUrVCxqEBI.roa
File: 4qxc-ywljLkSs1jwuiUrVCxqEBI.roa (raw, json)
Hash identifier: I5CqimGcQW4G2VJYhFWa7qskg2hi38jFIMNLhwRuNJ0=
Subject key identifier: E2:AC:5C:FB:2C:25:8C:B9:12:B3:58:F0:BA:25:2B:54:2C:6A:10:12
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 0186C109F4AFD095F3CFC1FF78E70CB79D6D
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/4qxc-ywljLkSs1jwuiUrVCxqEBI.roa
Signing time: Wed 08 Mar 2023 11:45:00 +0000
ROA not before: Wed 08 Mar 2023 11:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203333
IP address blocks: 2a0a:280:1b00::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c1:09:f4:af:d0:95:f3:cf:c1:ff:78:e7:0c:b7:9d:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Mar 8 11:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2ac5cfb2c258cb912b358f0ba252b542c6a1012
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7a:06:eb:62:fe:da:15:72:8a:e4:3b:b3:d4:
5e:da:3d:8a:7b:ed:be:14:a8:c6:ea:68:7c:6d:b9:
ac:49:67:b7:de:82:47:70:6b:5d:64:51:41:9b:9e:
c7:7a:a0:da:b2:eb:85:4d:5e:52:c9:d5:7f:3a:82:
10:13:92:6d:a8:69:57:fd:c5:91:32:39:e3:d6:28:
69:8f:f6:4d:1b:16:94:0d:c6:18:a4:86:2e:bf:52:
88:ae:e5:3e:03:69:74:aa:96:83:8c:e2:25:d2:2f:
06:25:0e:30:7e:fb:c5:09:8d:11:fb:b0:fc:5e:c7:
2a:b5:0a:d1:c1:75:e4:20:54:2a:ed:ed:44:01:f7:
90:21:e5:6c:48:c7:03:07:d9:fe:6f:f6:80:82:5b:
fb:20:05:64:f0:8b:48:a5:db:fa:93:1d:99:75:8d:
06:5b:14:ff:2a:32:1d:49:18:5d:31:f7:fc:06:95:
51:02:43:f2:2e:82:a4:12:9e:16:29:4d:11:a3:89:
80:16:ac:66:ce:b5:e2:d9:13:9c:6f:ab:80:7b:94:
72:28:e3:69:6e:92:20:f4:c5:a8:34:ea:98:b9:0a:
87:2d:97:e5:04:93:08:ba:0f:2a:6a:cc:9d:2e:68:
ef:5f:80:f7:33:63:7b:9c:09:fd:52:32:e7:fd:f9:
fd:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:AC:5C:FB:2C:25:8C:B9:12:B3:58:F0:BA:25:2B:54:2C:6A:10:12
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/4qxc-ywljLkSs1jwuiUrVCxqEBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:280:1b00::/40
Signature Algorithm: sha256WithRSAEncryption
81:c2:a1:60:db:38:06:62:69:9c:2b:ff:cc:eb:c8:73:0d:bd:
54:b9:06:72:97:43:c3:c3:fd:07:98:a3:57:2d:94:88:23:c3:
6c:bb:4a:c7:a2:8a:4a:17:c4:e7:08:17:04:47:c0:27:a2:70:
6f:45:2c:aa:ca:95:e9:2f:01:41:1d:ad:ce:2d:1a:0e:9f:22:
53:51:ee:96:85:da:e0:64:fc:4f:1b:93:13:07:17:91:1b:34:
a5:d8:25:2f:76:5f:8f:60:58:c5:f7:e1:16:6d:67:56:d6:88:
18:c0:5f:69:7b:24:0d:93:b4:46:28:08:1f:50:60:68:93:45:
6d:4d:36:aa:40:73:71:70:c1:20:95:ec:45:19:1d:7b:6e:ac:
3f:e2:77:d4:2a:e3:ed:79:cf:f1:89:48:dd:d3:0c:c9:03:3e:
b0:8e:84:2c:b4:6e:9a:f3:c3:f3:a2:a7:cc:42:be:98:1e:11:
df:3c:de:d3:93:7b:1e:4e:d3:80:a2:76:ff:9b:54:27:2a:87:
94:da:03:56:9a:76:26:64:43:ee:4c:c1:b3:22:d1:09:15:30:
29:eb:43:fc:c5:11:84:a4:ee:69:f0:0f:14:6b:34:7a:9a:26:
fa:62:90:10:88:38:6a:09:0c:85:e7:fd:43:68:5a:f8:60:5f:
fb:c9:35:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:06 2024 by rpki-client on console-ams.rpki-client.org