Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/qs_6YQ97Rj0N3OUi50Dcm4aoE24.roa
File: qs_6YQ97Rj0N3OUi50Dcm4aoE24.roa (raw, json)
Hash identifier: wJgcLnPwbSFq+PlVUkSwnRDJJ5gOpcbmGaSmEh3ticA=
Subject key identifier: AA:CF:FA:61:0F:7B:46:3D:0D:DC:E5:22:E7:40:DC:9B:86:A8:13:6E
Certificate issuer: /CN=7803558ea6e5165b3876097af75bf1e92a142cf2
Certificate serial: 0192826900777B7EAD50A89F5D86AED682D6
Authority key identifier: 78:03:55:8E:A6:E5:16:5B:38:76:09:7A:F7:5B:F1:E9:2A:14:2C:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eANVjqblFls4dgl691vx6SoULPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/qs_6YQ97Rj0N3OUi50Dcm4aoE24.roa
Signing time: Sat 12 Oct 2024 20:26:12 +0000
ROA not before: Sat 12 Oct 2024 20:26:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209641
IP address blocks: 2a0d:cdc5::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 25 Oct 2024 10:49:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:82:69:00:77:7b:7e:ad:50:a8:9f:5d:86:ae:d6:82:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7803558ea6e5165b3876097af75bf1e92a142cf2
Validity
Not Before: Oct 12 20:26:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aacffa610f7b463d0ddce522e740dc9b86a8136e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:0e:23:8a:a7:1b:8a:74:fc:42:34:c4:e2:cc:
94:c4:f2:4b:88:50:5b:04:2f:fa:bf:13:ec:43:78:
5a:cf:09:18:79:be:32:4b:4f:7f:6c:4a:6d:c4:6e:
08:2b:f2:f7:dd:d2:68:81:ac:65:8d:86:0d:bd:72:
d5:5b:08:72:98:65:f7:41:f3:71:5d:8c:30:c7:cb:
c2:47:f5:1e:ca:cc:b2:78:73:42:7f:60:15:3a:75:
1c:53:11:bf:9d:ad:5d:dc:1b:67:7d:5f:2e:c9:40:
8c:7f:5b:5f:11:d9:04:be:01:2e:04:f0:de:9e:00:
7b:8e:1e:49:9e:ad:71:f5:28:0f:2a:c6:76:fe:8d:
c2:ab:fc:61:2b:e8:32:36:a6:2a:1a:76:31:44:60:
cb:6c:3a:82:1a:8c:69:f7:df:e7:8b:35:e4:1b:52:
f2:d8:93:47:d0:de:5d:dd:0b:3f:d3:05:93:e4:3a:
d1:e4:36:06:0e:3d:7a:38:ca:87:dd:6a:83:d0:8c:
c4:49:e8:6f:0b:5e:80:7f:ce:2d:aa:eb:84:ac:9f:
46:62:0a:30:cb:19:79:e6:a1:0c:8b:af:4c:b8:30:
55:3f:93:d2:ec:13:1b:7e:4c:3d:13:58:e8:b0:be:
f1:83:de:30:fd:37:f5:7e:b5:75:67:ca:de:f4:94:
c3:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:CF:FA:61:0F:7B:46:3D:0D:DC:E5:22:E7:40:DC:9B:86:A8:13:6E
X509v3 Authority Key Identifier:
keyid:78:03:55:8E:A6:E5:16:5B:38:76:09:7A:F7:5B:F1:E9:2A:14:2C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eANVjqblFls4dgl691vx6SoULPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/qs_6YQ97Rj0N3OUi50Dcm4aoE24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/eANVjqblFls4dgl691vx6SoULPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:cdc5::/32
Signature Algorithm: sha256WithRSAEncryption
a1:95:9a:1c:c7:46:fc:63:0f:d3:9c:f7:a9:27:78:0d:9d:0d:
24:06:db:3d:47:be:be:ab:58:be:c3:0d:77:58:8b:96:85:21:
66:92:6e:ac:f9:dc:61:83:d9:be:2a:03:68:dc:48:e2:68:51:
e2:8c:5b:40:03:08:fe:5c:e3:90:88:98:0d:83:ef:0a:c5:32:
6c:ac:3d:df:8b:6f:36:c0:e4:07:92:ed:73:de:a4:e1:87:10:
e4:38:97:a6:92:b9:fe:ba:6e:b4:43:18:ed:05:85:fa:04:85:
14:17:27:46:65:50:a5:48:96:8f:2d:33:a8:cf:70:b4:ba:94:
1e:8f:32:8c:54:b9:76:03:24:83:98:ce:3d:3b:a1:03:c4:15:
f4:da:79:ad:49:e0:f2:e6:4d:cb:d5:3c:04:4b:60:26:23:30:
fc:09:f2:3d:ec:92:73:6c:78:b0:aa:ca:cf:e3:ae:ee:c4:f5:
b9:90:47:59:cf:f1:88:a5:d0:f8:5b:81:a9:d6:d0:2a:ef:05:
53:2e:93:65:b5:90:8b:7b:c3:c5:39:99:98:0e:14:ba:97:43:
79:ba:36:a2:44:14:fe:91:cb:cd:05:1a:60:ee:88:ec:58:11:
53:bd:c9:11:12:54:e0:5b:92:d4:18:43:08:17:9f:bf:ac:c3:
87:56:c6:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 25 15:00:20 2024 by rpki-client on console-ams.rpki-client.org