Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/QctIPYHyPmEZy_M40rKo7xBWJCM.roa
File: QctIPYHyPmEZy_M40rKo7xBWJCM.roa (raw, json)
Hash identifier: VAZkjH/e4QmL7ueUrhbeH55wP/Rmdip26MVG+cAgFYM=
Subject key identifier: 41:CB:48:3D:81:F2:3E:61:19:CB:F3:38:D2:B2:A8:EF:10:56:24:23
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E699CE7A677FB19241D63004CDF57
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/QctIPYHyPmEZy_M40rKo7xBWJCM.roa
Signing time: Mon 02 Jan 2023 06:14:56 +0000
ROA not before: Mon 02 Jan 2023 06:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209295
IP address blocks: 2a0c:b641:580::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:69:9c:e7:a6:77:fb:19:24:1d:63:00:4c:df:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41cb483d81f23e6119cbf338d2b2a8ef10562423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:3d:25:d5:0f:60:ac:70:1a:96:e8:8a:13:ba:
4a:00:73:43:21:d3:e7:7a:ca:0a:ff:d4:45:37:57:
8f:ce:ee:20:9f:5a:69:26:0c:18:88:a7:fa:4c:e8:
3e:e6:53:8d:0f:7f:58:93:a3:2c:f5:7b:5b:1b:c0:
a7:90:0e:cf:32:57:f7:01:56:d5:3f:b8:94:1a:aa:
4a:15:2d:f1:ec:7e:06:67:79:c7:05:73:b0:72:99:
1e:7c:92:b8:12:34:df:89:86:41:a6:cc:9d:7e:e0:
9d:47:9b:df:59:61:53:c9:d9:dc:e5:c1:27:5d:45:
31:c3:2e:74:88:de:1f:ef:72:4c:34:99:0e:57:83:
9e:05:0a:1c:97:1c:86:20:b0:37:34:36:10:2b:62:
0b:0f:18:f9:2d:80:4b:8f:04:e3:a7:24:63:0c:79:
d0:05:50:5c:8d:36:10:ea:73:41:46:88:de:31:4d:
1c:f9:2b:c4:4c:bd:9c:22:e6:fc:08:6f:3b:fa:6d:
f6:e8:01:d8:a0:09:33:61:a9:6c:ce:78:26:da:78:
7c:57:56:a6:ca:83:1b:9f:eb:aa:49:47:72:4f:9e:
4b:a7:fe:ac:35:e4:6b:57:38:36:f0:d4:d8:8d:96:
5e:dd:73:a1:6b:e5:37:73:5a:f7:49:3c:d3:52:e6:
a3:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:CB:48:3D:81:F2:3E:61:19:CB:F3:38:D2:B2:A8:EF:10:56:24:23
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/QctIPYHyPmEZy_M40rKo7xBWJCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:580::/44
Signature Algorithm: sha256WithRSAEncryption
40:53:69:c6:83:4e:d6:13:7c:a3:6c:43:9c:17:c2:4b:c0:d6:
97:bf:88:72:72:3c:c8:96:16:67:56:a5:0f:fc:d4:57:da:a2:
22:ad:5e:11:1d:20:56:9d:4c:ea:f7:63:7f:cb:85:f2:9d:2b:
08:53:82:a8:d5:b1:5c:54:05:98:d6:39:47:15:b0:70:8e:3a:
a4:48:0a:fa:6e:f4:91:77:95:9d:4a:df:41:a6:fa:e3:87:22:
94:09:f8:99:4a:22:b8:62:3f:5f:e8:0d:cd:50:e0:ab:7d:28:
2b:a4:9b:a8:c3:75:6c:27:ef:25:11:36:9c:52:02:ee:c9:5f:
ad:af:75:97:55:5e:20:68:ab:1f:ae:01:51:5d:bb:07:27:31:
e1:b7:66:e4:bb:06:d5:79:4b:fd:53:77:41:f5:0a:b5:54:10:
ce:03:ea:da:ab:61:c6:e3:b1:65:25:2d:b6:21:0b:27:97:d6:
65:ee:ca:4a:1d:60:af:05:9f:9e:70:ca:6b:47:72:8e:56:8b:
b9:65:98:0e:f2:bd:a4:67:a7:8d:55:c9:ea:2d:3f:74:68:72:
e4:bd:b5:69:72:83:30:f7:c0:96:d4:fa:15:52:ee:dd:9d:c9:
95:64:4f:80:64:c6:58:d0:5f:12:47:23:4d:74:f9:52:de:fb:
9c:0e:bd:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:01 2024 by rpki-client on console-ams.rpki-client.org