Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/Qb8fteaxIevzrnSGFiKw2bkYclo.roa
File: Qb8fteaxIevzrnSGFiKw2bkYclo.roa (raw, json)
Hash identifier: nzq+i2dp0+j+7O5S9alwTQToTjp1dZD4xWFK2t4ORNI=
Subject key identifier: 41:BF:1F:B5:E6:B1:21:EB:F3:AE:74:86:16:22:B0:D9:B9:18:72:5A
Certificate issuer: /CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Certificate serial: 018A507A91B4E765F27580466126D1854785
Authority key identifier: CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/Qb8fteaxIevzrnSGFiKw2bkYclo.roa
Signing time: Fri 01 Sep 2023 11:22:04 +0000
ROA not before: Fri 01 Sep 2023 11:22:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211027
IP address blocks: 2a06:d642::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:30:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:50:7a:91:b4:e7:65:f2:75:80:46:61:26:d1:85:47:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Validity
Not Before: Sep 1 11:22:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41bf1fb5e6b121ebf3ae74861622b0d9b918725a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:8e:98:bf:3c:31:5c:c7:42:c8:c0:d9:f0:51:
fa:13:ec:90:9d:e3:f2:18:44:19:25:d7:31:ba:dc:
2e:bc:4e:01:67:4e:2b:11:27:2d:87:ea:9d:79:ac:
3f:77:2c:ca:be:1c:56:1f:f6:3c:6d:7d:9f:b6:b8:
c9:9c:d3:40:f0:d5:04:8f:7d:82:6e:d1:a8:0c:08:
07:02:94:fa:eb:4f:b9:31:77:97:9f:ed:81:92:74:
e7:42:e5:19:ac:24:5a:47:16:17:41:d7:b7:b5:e6:
00:36:fe:13:ed:8d:45:11:77:89:28:28:b1:43:01:
cd:7d:6d:a2:46:65:72:aa:dd:50:24:69:77:89:66:
bc:aa:70:16:ef:9f:05:41:77:b0:0c:15:1b:3e:ad:
fa:8d:98:5b:05:86:cd:da:37:ac:e7:14:22:84:58:
57:e9:1e:e6:ba:17:a7:44:d2:c3:cb:43:88:9c:e5:
cf:d9:08:13:e4:18:af:c4:b8:cd:6c:00:a3:f2:50:
89:a0:7a:f9:66:be:7f:96:63:62:26:8a:34:95:31:
9c:bf:c5:a2:6f:a1:e2:6e:32:0a:fb:e6:0c:23:8b:
b3:6c:e6:be:c0:11:7d:10:43:dd:58:f0:b9:34:2f:
92:f4:f6:27:30:17:63:d9:4c:c0:ee:0a:d7:bf:1c:
f3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:BF:1F:B5:E6:B1:21:EB:F3:AE:74:86:16:22:B0:D9:B9:18:72:5A
X509v3 Authority Key Identifier:
keyid:CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/Qb8fteaxIevzrnSGFiKw2bkYclo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/zNdhWb_Z4zdSPukw898RHWuucwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:d642::/32
Signature Algorithm: sha256WithRSAEncryption
ae:79:f0:7e:00:cb:47:68:a6:b5:dc:5c:1d:76:30:02:1d:10:
08:f9:dd:eb:86:c7:01:33:6a:94:dd:f8:81:69:23:91:19:23:
57:f1:2d:8e:e5:b8:5a:62:05:17:b6:18:82:ba:6f:e6:cf:59:
e6:dc:a2:6a:e5:51:08:e2:4f:e7:a2:82:2e:f3:fc:21:27:cd:
0b:1e:4d:b5:12:46:9d:f0:9d:98:6a:b2:83:9c:7b:f7:13:97:
d4:7d:89:36:c2:67:85:bd:05:65:57:d6:26:14:72:96:e5:bd:
40:69:22:dc:eb:08:16:e3:77:5c:95:e1:26:86:f0:4e:66:39:
65:f5:11:4c:e1:31:10:fe:08:ec:9d:f3:87:ca:28:d0:9d:90:
8e:4a:e6:e1:60:48:49:6d:c0:b8:82:d8:bd:1d:7a:55:25:73:
b9:59:87:e7:0b:75:e0:ed:a6:df:9e:a2:24:5f:d0:3a:c0:44:
0e:7e:44:54:63:89:a0:a6:ea:8e:df:10:0d:bf:1a:ad:0a:0a:
3c:26:8b:24:bd:43:13:7c:6b:f0:9c:ac:28:b0:9a:41:48:85:
c0:15:62:59:7c:a1:51:51:49:df:a1:6a:4d:10:fc:03:68:63:
43:44:5c:71:38:2c:58:8b:85:0e:f8:b5:77:d8:c6:b8:2b:1c:
25:98:6f:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:46 2024 by rpki-client on console-ams.rpki-client.org