Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/QYErOoVzVSog0FMGVoDRzhIdHLE.roa
File: QYErOoVzVSog0FMGVoDRzhIdHLE.roa (raw, json)
Hash identifier: oPjDsT1T2bv7XNCux2dCuvA19CdV1BnJSLjQtZ1XTkc=
Subject key identifier: 41:81:2B:3A:85:73:55:2A:20:D0:53:06:56:80:D1:CE:12:1D:1C:B1
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E5095B33D416B3C8777187485ADA4
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/QYErOoVzVSog0FMGVoDRzhIdHLE.roa
Signing time: Mon 02 Jan 2023 06:14:50 +0000
ROA not before: Mon 02 Jan 2023 06:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203790
IP address blocks: 2a0c:b641:620::/44 maxlen: 48
Validation: Failed, certificate revoked on Wed 25 Jan 2023 22:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:50:95:b3:3d:41:6b:3c:87:77:18:74:85:ad:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41812b3a8573552a20d053065680d1ce121d1cb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:6e:46:38:35:ad:f3:e2:03:03:db:c8:fd:6a:
20:c2:e6:fd:68:68:0c:da:a9:11:9d:a6:0e:0a:74:
68:1e:8f:4f:3f:e4:a8:75:9d:c5:38:f9:64:66:ad:
f7:13:e9:82:26:e6:40:4f:12:c2:a9:ea:03:f8:1e:
d0:23:1d:3b:de:c2:a7:c1:39:89:7a:b7:76:54:ee:
69:a9:40:4b:61:16:ba:ae:ce:99:61:83:77:83:34:
13:a3:03:a9:65:c3:86:f7:b4:a8:3d:04:44:87:3d:
50:21:d9:b4:38:d8:09:9b:a2:52:d6:c0:02:40:e4:
2b:f2:77:63:f0:0d:0c:4d:91:3f:a2:b3:22:0a:37:
8c:58:b8:9f:fb:bc:63:3b:c2:c4:7f:a0:ce:7d:a3:
2f:d3:3a:49:98:5e:14:07:d0:23:28:f4:38:63:af:
9f:44:01:33:89:a0:43:d0:bd:a9:c7:c1:26:15:51:
e7:4f:3c:b7:cb:79:95:70:4b:21:b4:a7:2b:5b:fc:
75:76:82:ef:e3:7e:8e:4d:7f:1d:8b:16:4d:85:f2:
5c:51:5f:f0:9a:fb:ed:2c:ee:be:f6:3c:b9:13:20:
5f:c8:ad:98:61:b9:6e:9f:9e:98:ba:84:ee:42:b8:
af:f0:62:a3:ad:5b:08:63:65:bc:40:71:f4:2b:c0:
c9:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:81:2B:3A:85:73:55:2A:20:D0:53:06:56:80:D1:CE:12:1D:1C:B1
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/QYErOoVzVSog0FMGVoDRzhIdHLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:620::/44
Signature Algorithm: sha256WithRSAEncryption
29:3c:e8:cd:41:92:62:48:6a:25:ed:84:b0:0e:e7:18:15:c3:
63:9e:ec:fe:fe:73:76:5b:0e:d8:45:fb:56:92:e8:58:ec:6f:
c8:2a:5a:27:24:b2:66:16:56:f7:4c:a6:31:19:9c:c8:e0:3a:
71:e7:87:8c:e4:d5:e3:78:a6:61:4d:b7:18:17:90:7c:67:f1:
b3:b6:f9:2d:cb:f0:3f:06:dd:fb:d8:3e:28:77:6e:ea:65:e2:
20:47:ee:20:04:f6:7e:40:4f:5b:60:1b:fd:3f:dd:8e:7e:a2:
59:fd:61:46:1e:d2:a9:dc:22:e3:35:dc:1a:14:86:5d:32:48:
cd:e8:9b:f4:39:76:ea:f8:a1:02:04:be:11:e5:79:2b:c8:00:
4b:66:b7:7d:1e:07:5f:c2:38:1d:70:98:22:8b:62:8f:9b:97:
ae:38:98:8a:66:75:6d:e8:d5:15:2c:fe:32:33:7e:db:30:f3:
6f:c4:27:2c:89:8b:25:7d:e9:be:72:d5:ea:80:7c:94:22:c1:
1e:d6:60:8a:5e:f5:47:8c:52:0f:f9:c7:9a:28:dc:3c:64:22:
f3:da:8b:37:52:c7:58:2b:35:18:0a:04:1a:fd:26:b7:00:4a:
1f:df:97:0f:64:52:87:00:57:0b:57:16:10:8a:6b:fd:8a:c8:
c0:1a:19:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org