Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/qqaWKWVrqXLgNIhqOLqOLT6vALw.roa
File: qqaWKWVrqXLgNIhqOLqOLT6vALw.roa (raw, json)
Hash identifier: YuUNHeQHN/9ykZpKsd3M2YuT1W91P1nT66R/m2ce9kU=
Subject key identifier: AA:A6:96:29:65:6B:A9:72:E0:34:88:6A:38:BA:8E:2D:3E:AF:00:BC
Certificate issuer: /CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Certificate serial: 018CC7271F17857718B61AE0BAB985F39237
Authority key identifier: 2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/qqaWKWVrqXLgNIhqOLqOLT6vALw.roa
Signing time: Mon 01 Jan 2024 22:31:18 +0000
ROA not before: Mon 01 Jan 2024 22:31:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 151338
IP address blocks: 2a12:8fc5:190::/44 maxlen: 44
Validation: Failed, certificate revoked on Wed 31 Jul 2024 12:40:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:1f:17:85:77:18:b6:1a:e0:ba:b9:85:f3:92:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Validity
Not Before: Jan 1 22:31:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aaa69629656ba972e034886a38ba8e2d3eaf00bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:62:5b:6f:8a:27:66:af:f1:11:0f:32:6d:b5:
ea:b8:dc:f2:46:80:94:04:96:b9:45:34:05:93:1a:
f4:e9:4a:1e:c1:da:3a:f7:9d:84:f8:93:ce:53:f9:
cf:9a:f4:d2:26:f4:df:26:e1:5d:b6:30:de:10:48:
b4:34:0a:58:33:d1:f6:ae:57:e9:91:62:2e:a3:2d:
c4:8a:76:7e:53:3c:3c:32:7f:a8:94:be:71:d9:fa:
23:e7:0b:12:dd:80:2b:fd:be:42:90:d6:d1:92:e9:
60:54:7a:c6:2e:6a:b5:6d:f4:36:0a:d7:74:df:f2:
c0:74:cb:4a:7e:d8:57:40:66:33:f5:39:10:a8:14:
65:be:aa:5b:81:25:78:cd:56:1a:a2:66:ee:7c:e5:
5b:50:b7:4f:3a:4d:eb:71:b4:40:9f:9c:9d:43:a9:
ac:b1:2d:bd:cc:2f:ad:69:75:ba:c0:fd:4a:89:8a:
8d:67:74:b8:a4:a0:a9:db:92:0e:e7:eb:64:59:d9:
15:55:db:a9:81:37:8b:61:ca:cb:5d:63:0a:f2:24:
52:ad:7a:b1:61:48:32:64:7d:dd:3c:c3:65:5d:ea:
13:e1:8b:97:cb:d5:40:e4:0a:8e:67:fb:10:c2:87:
22:be:90:a5:67:13:d7:f0:11:57:90:71:86:c6:7f:
f4:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:A6:96:29:65:6B:A9:72:E0:34:88:6A:38:BA:8E:2D:3E:AF:00:BC
X509v3 Authority Key Identifier:
keyid:2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/qqaWKWVrqXLgNIhqOLqOLT6vALw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:8fc5:190::/44
Signature Algorithm: sha256WithRSAEncryption
93:28:b3:08:2f:3d:06:5d:6e:11:c1:5c:d9:e6:c2:d3:c8:1b:
7e:3e:4b:b2:4d:ee:14:28:08:5e:1a:22:b7:17:31:df:4b:7a:
3d:d1:b2:5c:a8:25:8a:e9:f2:39:61:9b:2c:09:38:86:a2:96:
e2:00:b6:8f:53:42:0c:34:22:a6:e7:dc:b1:35:2c:48:dc:aa:
08:18:6e:f5:2a:5c:eb:02:f2:31:28:ba:32:ea:f9:32:d3:fd:
3f:d4:db:33:5a:6b:80:b4:b4:7e:72:a1:e6:fe:eb:ab:ed:9a:
fa:b8:5c:1c:30:13:0c:a1:62:57:15:5a:bb:d9:1e:5a:cd:4e:
6a:b4:7e:c2:f6:90:06:2c:43:73:fa:bd:c4:bc:d1:30:08:ae:
b9:bc:99:ea:77:8b:b8:49:b2:fd:8d:24:e6:e9:91:b3:43:55:
49:13:9a:0f:6a:2a:75:16:d6:08:fe:f6:fe:e2:58:57:35:e6:
e5:93:1f:dd:d7:8d:28:3e:bd:3f:f4:d1:99:45:7e:6e:e3:c1:
2e:a2:2e:62:13:e0:f1:68:35:fe:b8:4a:aa:f8:6a:e9:51:5a:
94:48:30:b0:33:fd:3b:d2:03:3e:3e:38:29:e3:e7:cc:9c:d5:
e4:6e:61:2e:9f:a3:11:1a:13:64:8c:1d:02:5c:13:4b:ac:f2:
f0:0b:5e:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 31 14:18:39 2024 by rpki-client on console-ams.rpki-client.org