Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Qg4K8qMXS9Bo-7WX_tdUJbtE0_c.roa
File: Qg4K8qMXS9Bo-7WX_tdUJbtE0_c.roa (raw, json)
Hash identifier: r7cW23O/gxlRDWt58NyF1AFC6PERB1T7PKbYH2ekXn0=
Subject key identifier: 42:0E:0A:F2:A3:17:4B:D0:68:FB:B5:97:FE:D7:54:25:BB:44:D3:F7
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E4F2F1438AD8FB72FEEC380D3ADA5
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Qg4K8qMXS9Bo-7WX_tdUJbtE0_c.roa
Signing time: Mon 02 Jan 2023 06:14:49 +0000
ROA not before: Mon 02 Jan 2023 06:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203169
IP address blocks: 2a0c:b641:360::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:4f:2f:14:38:ad:8f:b7:2f:ee:c3:80:d3:ad:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=420e0af2a3174bd068fbb597fed75425bb44d3f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e8:86:99:f0:db:a4:4d:e9:aa:85:c6:46:6a:
02:58:49:88:9b:94:50:b7:65:13:91:59:eb:cf:7f:
16:a3:84:fa:2e:94:65:d8:23:52:f4:c9:55:37:90:
1a:ba:4c:cc:88:b0:53:c1:73:b4:55:08:c7:e6:83:
93:d3:be:6f:75:5f:44:fd:c3:b7:c3:f9:5e:69:a0:
17:0e:78:93:65:67:55:56:da:d2:38:00:f1:f4:d0:
92:00:cd:f2:97:07:92:a1:ec:90:bd:ea:7c:a9:6e:
de:cb:6a:4e:30:88:94:a9:d2:1e:16:49:f7:3d:28:
07:a3:2d:09:cf:96:32:ea:a0:91:46:d0:2b:d7:a4:
29:51:73:1f:82:54:0b:76:50:fd:92:a4:68:ce:22:
7f:fb:8c:1b:4a:bc:7f:73:24:34:4d:9c:09:ba:14:
d1:73:54:7d:44:00:b3:0b:81:c6:4a:4c:6f:ce:51:
d7:53:a4:08:61:6d:d7:3d:47:20:27:4f:49:c7:e5:
1f:9c:4b:2e:25:90:ad:00:ed:95:71:64:b7:da:ae:
6b:62:4d:4b:8b:c4:49:96:27:8a:45:b2:96:b3:7f:
77:4e:3c:46:c4:53:bc:3e:45:d8:6e:d9:52:4d:69:
30:55:e5:c5:60:4a:d1:d9:18:cf:af:b6:7f:b9:39:
f9:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:0E:0A:F2:A3:17:4B:D0:68:FB:B5:97:FE:D7:54:25:BB:44:D3:F7
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Qg4K8qMXS9Bo-7WX_tdUJbtE0_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:360::/44
Signature Algorithm: sha256WithRSAEncryption
97:32:6d:3c:23:9f:ab:2c:90:76:e3:93:40:35:84:53:70:8a:
8a:9a:ed:2e:eb:ca:9b:2d:fb:ba:4c:5f:87:13:59:ef:7b:aa:
30:6d:fd:2d:eb:88:46:e3:83:2d:b6:80:4e:e3:48:bb:3f:0a:
a0:03:3d:6a:43:d6:51:a1:f0:f4:12:14:fd:15:a8:fd:72:c6:
81:0a:e7:39:d7:54:01:56:41:05:d5:af:8c:89:4d:21:07:a9:
d0:bc:26:e8:6d:a8:73:60:13:28:52:c9:fc:8c:41:e0:75:f9:
7c:14:18:68:98:54:bd:83:91:88:3b:87:d5:f5:b8:7f:ae:02:
5a:4c:78:0a:80:11:4b:02:cc:fc:7a:8b:ec:42:7a:ef:ff:dd:
d7:f9:d0:1f:23:18:d2:52:cd:ad:4c:10:a7:af:a6:a0:09:8d:
54:dd:5d:d2:a2:d3:7a:7d:f1:cf:5b:e5:e4:4f:31:36:3d:51:
c0:aa:87:5d:16:b5:44:d2:ad:55:07:8b:c3:bf:c6:de:cd:51:
4e:39:02:89:0c:76:74:60:fe:5b:e0:8c:54:cc:61:75:36:2d:
88:78:1c:53:7e:2c:cc:48:66:3d:06:60:3e:e7:7f:39:35:f3:
68:f1:95:0d:c8:8f:25:61:17:f7:c0:78:c7:64:c6:64:5e:8b:
95:62:a2:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:01 2024 by rpki-client on console-ams.rpki-client.org