Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/9fa093-43d6-4aa0-8a95-f7fa8e2ff95f/1/q0dw3KPYqjtUtFFvbdTbqojQ9n8.roa
File: q0dw3KPYqjtUtFFvbdTbqojQ9n8.roa (raw, json)
Hash identifier: 0WSJWMHKiPF1PWrIsUI+56Ov1x7TCkmO/JBK4Oq2qE0=
Subject key identifier: AB:47:70:DC:A3:D8:AA:3B:54:B4:51:6F:6D:D4:DB:AA:88:D0:F6:7F
Certificate issuer: /CN=aec709c7cd25445cb183cfcfebd4b2bfc784c318
Certificate serial: 01857139F42118A7FE1B52BDEB832A4D42C1
Authority key identifier: AE:C7:09:C7:CD:25:44:5C:B1:83:CF:CF:EB:D4:B2:BF:C7:84:C3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rscJx80lRFyxg8_P69Syv8eEwxg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/9fa093-43d6-4aa0-8a95-f7fa8e2ff95f/1/q0dw3KPYqjtUtFFvbdTbqojQ9n8.roa
Signing time: Mon 02 Jan 2023 06:45:01 +0000
ROA not before: Mon 02 Jan 2023 06:45:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47937
IP address blocks: 2001:678:c70::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:f4:21:18:a7:fe:1b:52:bd:eb:83:2a:4d:42:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aec709c7cd25445cb183cfcfebd4b2bfc784c318
Validity
Not Before: Jan 2 06:45:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab4770dca3d8aa3b54b4516f6dd4dbaa88d0f67f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c2:91:16:5f:ac:fd:56:35:cc:84:4d:a8:0a:
fe:fe:96:a2:3f:af:54:05:f9:da:e6:ef:e5:e5:08:
33:48:47:5a:38:4d:06:61:2f:83:24:8a:14:89:cc:
64:48:55:7d:cf:61:d6:25:e5:b6:e4:b6:95:c3:9c:
18:c9:63:79:fb:65:92:32:46:ae:42:53:9e:77:0b:
c4:09:e5:ed:da:b6:08:d6:2a:d8:f9:87:41:9f:dd:
97:d1:4f:8f:a2:db:6d:b6:de:f9:c7:1b:4e:93:72:
4c:c5:43:b8:28:ae:9e:96:ef:a3:9a:1b:bb:cd:c2:
af:6f:11:f5:d6:62:04:5f:9b:1d:ad:19:e5:8f:f6:
a4:8d:ec:d1:84:b3:e4:58:b2:a1:32:67:dd:20:f7:
eb:63:d6:1a:f3:9a:b9:b5:66:9b:7c:b3:77:48:0d:
92:d3:f9:aa:9b:15:fa:05:38:34:73:66:f7:f0:31:
a9:a0:b4:ba:42:f4:ac:e4:53:f1:56:1d:7d:52:4a:
13:b3:fd:51:a7:70:03:ce:f4:c2:5f:3d:49:7d:b1:
b9:e8:f4:c6:2c:82:1d:34:a4:53:cc:7c:f9:9b:18:
8d:23:c6:85:a6:34:bc:73:79:c6:ae:6c:96:ce:02:
37:30:ae:65:01:d3:cf:49:74:dc:ac:f5:8d:a7:0d:
b0:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:47:70:DC:A3:D8:AA:3B:54:B4:51:6F:6D:D4:DB:AA:88:D0:F6:7F
X509v3 Authority Key Identifier:
keyid:AE:C7:09:C7:CD:25:44:5C:B1:83:CF:CF:EB:D4:B2:BF:C7:84:C3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rscJx80lRFyxg8_P69Syv8eEwxg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/9fa093-43d6-4aa0-8a95-f7fa8e2ff95f/1/q0dw3KPYqjtUtFFvbdTbqojQ9n8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/9fa093-43d6-4aa0-8a95-f7fa8e2ff95f/1/rscJx80lRFyxg8_P69Syv8eEwxg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:c70::/48
Signature Algorithm: sha256WithRSAEncryption
a3:7c:34:82:24:ca:7b:a0:ea:0e:a8:ba:12:97:a8:3a:b3:b2:
38:00:fc:c4:1c:af:28:a3:e6:65:b1:b3:10:79:72:99:7b:02:
1d:da:7c:3e:05:ae:4e:26:21:12:16:d2:36:4e:a8:5b:d6:b2:
64:65:30:e9:3d:5f:5c:7f:34:a3:54:02:5e:5e:99:a4:cb:c5:
d3:46:d5:3b:f7:a4:f1:e4:9d:22:29:9d:49:b4:46:9f:92:a1:
b4:18:a4:c3:32:01:78:4b:bc:17:56:1f:46:02:67:1c:2e:a7:
0c:d8:df:7e:b0:23:be:ca:ec:32:18:18:1e:aa:d2:9a:a2:47:
27:44:a5:c8:d8:ea:75:e0:54:ce:d1:a0:84:6a:52:a3:0b:4f:
09:7b:21:09:1b:13:ab:d7:74:64:b6:88:48:2e:7a:4a:68:42:
79:27:0c:d4:84:3f:c4:e1:22:64:68:75:a8:a6:5f:52:ff:79:
be:f0:1c:b1:e9:6e:2b:58:3b:79:c1:f4:7a:13:5e:2e:63:4c:
ce:78:cd:64:78:46:dd:bf:ae:43:bc:3c:29:35:a5:e8:75:6d:
3e:a6:dc:fd:d8:42:c4:3f:23:21:79:f3:1a:ff:51:c4:c1:3e:
18:c4:ea:eb:80:11:7d:f8:a6:93:59:5e:25:23:6e:c8:bb:bb:
bd:7e:7c:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:58 2024 by rpki-client on console-ams.rpki-client.org