Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/Q_TAvvaLH_4zOXnGkNLBJ1WK8DI.roa
File: Q_TAvvaLH_4zOXnGkNLBJ1WK8DI.roa (raw, json)
Hash identifier: PyqQcpLLYN8xMrwNSknnVbGiKeo6PTrxQrnYuTeLZOA=
Subject key identifier: 43:F4:C0:BE:F6:8B:1F:FE:33:39:79:C6:90:D2:C1:27:55:8A:F0:32
Certificate issuer: /CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Certificate serial: 01857356289988FD3A6A107F460A9A7A23E9
Authority key identifier: BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/Q_TAvvaLH_4zOXnGkNLBJ1WK8DI.roa
Signing time: Mon 02 Jan 2023 16:35:04 +0000
ROA not before: Mon 02 Jan 2023 16:35:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 141180
IP address blocks: 2a02:e0:3138::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:56:28:99:88:fd:3a:6a:10:7f:46:0a:9a:7a:23:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Validity
Not Before: Jan 2 16:35:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43f4c0bef68b1ffe333979c690d2c127558af032
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a9:14:47:64:d2:be:26:9b:be:8d:80:93:15:
5c:c0:c9:21:b8:14:44:25:c1:b3:83:7d:bc:2e:53:
65:67:d7:57:0f:43:7f:f3:e0:f4:f8:5a:07:cb:26:
52:8d:97:be:4f:35:14:c2:57:c3:67:b8:5e:f7:54:
37:06:62:08:94:a7:47:ea:45:f9:98:c0:61:fe:e5:
9c:b6:0b:fd:15:08:ee:db:8a:d3:88:21:40:98:a3:
2a:58:10:0d:f5:7c:9c:c3:81:30:da:b9:2c:b8:c7:
26:34:90:5a:45:d6:7e:0b:73:2f:8f:11:a4:73:ac:
2b:95:c4:51:67:ec:4b:4a:1a:8d:49:0b:96:63:68:
09:bd:39:d7:78:2e:ca:85:f2:be:a3:f0:48:64:a8:
7b:b9:3f:74:9c:d8:80:c9:76:78:f9:77:d0:ad:6c:
68:6c:9f:5e:d4:18:a3:32:90:7a:34:cc:e7:9a:73:
34:d3:4b:48:b4:15:cb:de:07:7d:7e:99:d2:21:96:
2b:4e:9e:40:b2:36:67:44:99:d4:f6:1f:ee:16:dc:
6f:f6:eb:76:e9:50:50:de:df:45:65:f7:c1:27:74:
cb:04:3a:13:96:6e:a1:6b:8b:c4:04:f2:52:bd:5c:
78:73:e5:0e:1a:ad:3b:d9:a4:b3:f3:fc:3f:92:99:
fc:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:F4:C0:BE:F6:8B:1F:FE:33:39:79:C6:90:D2:C1:27:55:8A:F0:32
X509v3 Authority Key Identifier:
keyid:BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/Q_TAvvaLH_4zOXnGkNLBJ1WK8DI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/up0w5gNb6Lg4YGHycUgccH4Ezis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:e0:3138::/48
Signature Algorithm: sha256WithRSAEncryption
40:c9:63:16:2c:6a:77:3b:13:e2:a4:f2:82:87:f6:82:ca:19:
f4:85:f0:c6:ab:35:35:b1:f3:24:01:4d:fb:1c:d1:b2:60:a1:
92:dd:82:61:34:e0:5c:0f:9e:56:40:4d:7e:8e:3b:26:cf:9f:
4e:ca:90:d4:ff:9e:67:8b:64:27:60:42:ba:b0:1e:61:eb:16:
f7:0d:61:c2:9b:36:2f:27:85:f3:14:01:e1:f5:df:0b:f4:0b:
51:89:93:d4:e7:84:c5:e3:20:ca:a1:77:22:8c:18:26:89:19:
9c:90:e2:4b:7a:45:c0:8a:3f:03:30:6d:82:83:20:06:cf:cf:
54:4b:3a:30:de:e7:22:10:94:03:fa:05:a1:ec:48:8f:fd:10:
7b:01:64:1e:fb:39:5c:de:0a:65:77:0f:e0:88:3b:c6:b2:5a:
7e:4c:c2:b3:e5:69:b0:40:a0:47:18:7d:ae:a9:59:e0:2a:fa:
39:ed:5a:7b:9f:91:3d:f9:8d:7f:02:70:f2:73:63:b9:71:59:
84:74:ce:c9:bf:b4:5f:9b:ab:a1:58:22:ed:d1:92:c9:7b:2f:
1d:71:9a:a3:8e:c4:db:ec:1d:ae:f1:f3:ee:54:48:fc:b2:fa:
d7:eb:46:bb:68:c3:56:73:0a:4b:c9:b1:54:a4:cd:3f:3c:96:
77:dd:37:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:35 2024 by rpki-client on console-fra.rpki-client.org