Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/QjF5PGl5DlfrIKXa72yosVFsWKM.roa
File: QjF5PGl5DlfrIKXa72yosVFsWKM.roa (raw, json)
Hash identifier: fpSTcgW9Y1hk9/U8Hd6DIzy/folUYivM7f6jQcPUV0A=
Subject key identifier: 42:31:79:3C:69:79:0E:57:EB:20:A5:DA:EF:6C:A8:B1:51:6C:58:A3
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 0188C9F3E33DD36BE9160540761853D891F7
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/QjF5PGl5DlfrIKXa72yosVFsWKM.roa
Signing time: Sat 17 Jun 2023 15:23:03 +0000
ROA not before: Sat 17 Jun 2023 15:23:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200566
IP address blocks: 2a0a:280:1000::/40 maxlen: 48
2a0a:280:2a00::/40 maxlen: 48
Validation: Failed, certificate revoked on Sat 05 Aug 2023 14:43:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c9:f3:e3:3d:d3:6b:e9:16:05:40:76:18:53:d8:91:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Jun 17 15:23:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4231793c69790e57eb20a5daef6ca8b1516c58a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:15:9b:85:6c:0f:6c:38:f1:23:d7:7d:85:04:
65:47:07:a7:dd:99:39:66:34:80:29:da:1f:a5:65:
45:1b:30:8f:cc:51:18:3a:86:14:aa:1f:33:f7:0b:
50:ab:bd:57:55:8d:fc:11:41:2f:4c:6c:63:66:ae:
37:8b:a1:e5:f7:9f:28:52:bc:31:2a:27:71:22:31:
25:1e:23:08:5c:2c:74:7e:69:89:31:fc:fc:79:6e:
da:ec:0a:6c:bd:2d:10:56:ab:d9:b3:12:5d:3c:11:
89:47:4e:bc:9b:18:22:e1:48:a0:d3:0f:b8:15:49:
60:1d:01:be:fe:82:63:e5:4a:63:cc:99:19:18:dc:
2f:6d:d9:6d:6b:63:ab:8d:6c:b0:4d:74:82:6e:c1:
49:b8:35:6c:71:77:cc:62:94:0b:3c:e5:e7:34:e6:
f0:aa:bb:e8:43:b1:86:84:eb:be:3f:ea:33:8d:41:
40:0f:99:47:ce:4e:ee:f5:a7:72:87:ff:5c:7c:eb:
b8:ef:54:85:db:75:ec:b6:f4:db:1c:15:fd:8b:96:
3e:b5:94:c1:4b:00:47:76:70:2c:4e:4a:99:05:0d:
e6:20:4e:a2:69:6e:d3:41:98:0d:6f:7f:78:3b:52:
ab:a7:ba:25:69:e9:5e:58:00:20:09:7c:54:b5:df:
1a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:31:79:3C:69:79:0E:57:EB:20:A5:DA:EF:6C:A8:B1:51:6C:58:A3
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/QjF5PGl5DlfrIKXa72yosVFsWKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:280:1000::/40
2a0a:280:2a00::/40
Signature Algorithm: sha256WithRSAEncryption
6a:fd:6d:41:90:86:36:29:16:06:ff:0a:3a:2a:4c:14:24:db:
11:e5:c2:58:be:a2:df:d3:da:ee:fe:8f:b4:2e:39:5c:76:90:
f2:94:f8:16:67:e2:7b:09:27:7f:cb:a5:59:d3:31:2b:cf:5c:
27:c0:7c:48:08:18:93:d1:75:b8:c2:5a:08:50:3f:cb:eb:c6:
18:48:f2:16:6b:dc:ff:ee:40:6c:37:b6:dd:fc:28:33:b3:bd:
9a:63:f7:5d:a9:2f:33:83:29:13:0e:ea:2c:0e:bc:67:85:23:
b6:09:5d:a3:71:e3:13:c4:8b:70:87:b3:18:a1:54:2b:83:1d:
9c:2c:7e:a1:27:47:6e:f0:a5:63:44:56:e8:da:e6:f3:21:ef:
00:20:dd:d4:20:44:07:7c:5a:77:91:61:b5:bc:62:29:96:66:
80:e2:6f:54:6f:08:48:d2:61:49:e9:36:01:b5:20:fa:3e:e5:
cb:35:b4:f9:eb:23:b5:f7:b3:77:e3:78:71:d6:f4:4b:1f:5d:
83:2e:d5:26:66:de:58:bd:c5:2b:79:00:30:e2:b5:60:7a:5b:
0d:c4:58:87:ff:65:41:06:36:2a:14:ea:f3:26:76:77:7e:bc:
72:c5:0f:8c:be:ba:11:88:6b:ba:09:24:e7:2e:38:a4:f6:0d:
93:6f:db:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:22 2024 by rpki-client on console-fra.rpki-client.org