Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/Qp7THjZTFhg3gCtu6kOyal_oGf4.roa
File: Qp7THjZTFhg3gCtu6kOyal_oGf4.roa (raw, json)
Hash identifier: 0glcTAE5dU6b7gO7jfAqMMbzZvgtpTqXvupdotcQkY4=
Subject key identifier: 42:9E:D3:1E:36:53:16:18:37:80:2B:6E:EA:43:B2:6A:5F:E8:19:FE
Certificate issuer: /CN=62beaa57c67aeb5bafd99793ab4846850a796c28
Certificate serial: 018CC5DBE0FC4DCF48C7C33C096035B17666
Authority key identifier: 62:BE:AA:57:C6:7A:EB:5B:AF:D9:97:93:AB:48:46:85:0A:79:6C:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yr6qV8Z661uv2ZeTq0hGhQp5bCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/Qp7THjZTFhg3gCtu6kOyal_oGf4.roa
Signing time: Mon 01 Jan 2024 16:29:30 +0000
ROA not before: Mon 01 Jan 2024 16:29:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58192
IP address blocks: 2a13:d000::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 06 Aug 2024 19:48:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:db:e0:fc:4d:cf:48:c7:c3:3c:09:60:35:b1:76:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62beaa57c67aeb5bafd99793ab4846850a796c28
Validity
Not Before: Jan 1 16:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=429ed31e3653161837802b6eea43b26a5fe819fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:47:e5:8c:c0:dd:d5:b6:7b:41:98:45:6b:04:
3c:f3:2f:b9:bf:87:e2:59:ba:bf:ea:26:7f:5f:76:
25:93:80:5c:6d:31:2b:29:b4:9f:9a:09:4a:13:b1:
e9:41:9c:e3:2c:64:83:06:e3:9c:dd:d0:86:a1:38:
06:68:cc:90:d1:77:67:ab:d3:7b:af:5a:7d:b8:14:
51:4b:6d:20:d6:f0:2a:6a:27:47:8a:a2:b8:b4:ee:
3d:7b:68:06:cc:b6:64:87:a2:64:2a:a0:46:84:b2:
2e:02:ef:72:4f:46:f4:11:69:9c:fc:80:aa:72:5d:
c1:83:80:05:ed:ef:cc:81:d9:dd:db:c0:f7:6c:a7:
fa:c7:14:de:f8:18:2d:4c:0e:0e:17:d4:18:ee:06:
6a:13:5f:00:bb:82:b5:65:52:d7:1d:87:a5:0e:58:
17:23:a5:bb:6d:d8:71:2c:76:e3:10:0a:d7:48:d8:
be:0c:9d:21:de:73:03:97:24:b6:70:61:a1:bb:b9:
92:2e:63:e1:3b:b0:15:dc:53:0e:7e:24:c3:17:70:
98:7b:0b:c7:b7:29:d6:c8:36:58:06:aa:a3:d8:2f:
32:53:6f:dd:8f:75:3b:a6:c3:18:43:21:eb:9c:6d:
8d:27:88:7d:97:f8:ba:f2:b4:1b:9b:1f:d9:38:81:
64:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:9E:D3:1E:36:53:16:18:37:80:2B:6E:EA:43:B2:6A:5F:E8:19:FE
X509v3 Authority Key Identifier:
keyid:62:BE:AA:57:C6:7A:EB:5B:AF:D9:97:93:AB:48:46:85:0A:79:6C:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yr6qV8Z661uv2ZeTq0hGhQp5bCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/Qp7THjZTFhg3gCtu6kOyal_oGf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/Yr6qV8Z661uv2ZeTq0hGhQp5bCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:d000::/29
Signature Algorithm: sha256WithRSAEncryption
8a:74:a2:b2:d3:be:92:b9:fa:9c:c9:d3:68:ac:f9:db:30:87:
74:9e:00:2b:71:4a:05:8d:d6:53:c7:49:d6:e8:d8:ea:89:06:
75:08:c4:16:31:cf:7a:5f:75:34:8f:95:57:a6:72:d8:2a:7b:
6d:cc:1f:61:dc:07:79:33:9e:da:b7:48:5e:9a:cb:ca:34:81:
8b:bc:77:bb:9b:2e:05:0d:58:46:68:70:38:09:02:05:c4:19:
38:e3:48:64:19:4f:47:5d:91:97:1f:0b:f6:ef:7d:92:91:1d:
a8:ca:45:08:53:56:54:17:64:db:a9:cc:cb:41:42:c6:ac:30:
93:70:9a:72:c9:0c:43:ef:96:85:ef:76:da:58:04:fe:7c:6b:
4d:8f:78:6f:b6:7a:3a:d8:e5:28:1c:51:02:e5:9d:a4:37:0b:
ed:26:27:a8:42:9e:0b:a7:05:8f:e0:84:2d:dd:f3:c1:26:56:
97:7f:b9:c0:5b:0a:16:92:32:69:74:b7:2f:01:eb:67:34:af:
dd:1b:6a:a0:2a:38:ae:69:04:fe:17:ab:d5:87:b1:f1:7e:08:
66:f6:f5:4b:80:41:35:4d:c4:2a:02:7d:05:ca:03:a5:43:b4:
3e:fd:14:bf:d1:03:03:35:c2:ae:75:72:fc:9b:af:5c:99:8f:
55:d4:97:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 6 22:17:04 2024 by rpki-client on console-fra.rpki-client.org