Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/QaL02-h8csW86v5Kv-cVFD7tZ6Y.roa
File: QaL02-h8csW86v5Kv-cVFD7tZ6Y.roa (raw, json)
Hash identifier: iBeJZsywhNMvRYJOQCHlM5vMfMGNSY3cbBfRti5EJLw=
Subject key identifier: 41:A2:F4:DB:E8:7C:72:C5:BC:EA:FE:4A:BF:E7:15:14:3E:ED:67:A6
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 019027AFDCA0567665507EE77BCEA8DEB6FA
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/QaL02-h8csW86v5Kv-cVFD7tZ6Y.roa
Signing time: Mon 17 Jun 2024 19:32:34 +0000
ROA not before: Mon 17 Jun 2024 19:32:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215536
IP address blocks: 2a0e:b107:12d6::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 17 Jun 2024 21:13:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:27:af:dc:a0:56:76:65:50:7e:e7:7b:ce:a8:de:b6:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 17 19:32:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=41a2f4dbe87c72c5bceafe4abfe715143eed67a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c7:cb:38:46:30:4a:86:05:83:81:56:9c:01:
d1:81:5b:b5:34:47:32:d1:28:fb:f0:93:5c:0c:3f:
87:fe:d4:a7:a9:a2:a7:c2:a0:c1:16:74:8e:fb:56:
96:65:2f:cd:2a:6c:1c:9b:15:14:23:c0:7e:33:d2:
2d:9f:cb:13:3e:c7:3d:51:51:b3:12:c7:ba:d6:f2:
8d:7b:da:5b:41:23:df:99:d8:0f:bb:c1:55:fc:6d:
7d:16:a5:95:68:81:85:b1:39:00:06:d2:53:d8:1d:
83:83:e0:2c:1d:5f:02:e2:1f:5d:28:00:55:f8:2a:
19:c1:bc:99:7c:b0:67:d2:fe:d0:fe:4c:84:89:63:
a5:f5:be:85:52:64:b0:44:52:93:33:1e:1f:63:a1:
03:11:47:5b:59:14:d9:10:f7:d2:b5:42:6e:84:ce:
cc:55:ce:b6:62:11:26:80:f9:ce:1c:b0:3a:ad:54:
4f:ba:20:a2:fd:30:06:e4:f5:24:d9:b3:6d:42:51:
87:8d:f3:23:62:f3:76:f2:8c:02:8d:00:82:3c:4a:
eb:0a:c6:be:a3:24:e5:74:7d:82:ec:09:b5:2c:76:
ad:0e:87:a4:a2:53:c7:9a:94:32:ba:c2:2f:9a:ed:
c2:9d:48:84:24:47:1d:5f:dc:1f:42:57:2e:0f:d3:
15:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:A2:F4:DB:E8:7C:72:C5:BC:EA:FE:4A:BF:E7:15:14:3E:ED:67:A6
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/QaL02-h8csW86v5Kv-cVFD7tZ6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:12d6::/48
Signature Algorithm: sha256WithRSAEncryption
ad:30:ad:cb:29:d2:e6:14:06:72:5a:43:38:8b:56:c9:d1:7c:
12:d2:02:5e:04:63:32:9b:60:10:0a:f7:d4:6e:62:94:90:85:
4d:78:46:c3:07:5f:5d:54:03:09:cb:88:7d:5d:6a:f8:de:2e:
c8:88:5f:e8:8c:72:21:00:b6:cb:94:62:bb:c1:bf:8d:82:5f:
ca:65:61:c6:e2:1e:ff:e5:f9:7a:dc:35:1d:ce:22:7e:01:cc:
4e:ae:34:33:19:ae:f3:55:66:ed:30:12:a1:b4:24:a3:e6:81:
4b:6d:2b:8b:de:58:5b:d2:43:f3:73:10:eb:92:03:81:cb:b2:
bd:f6:ee:f9:ad:01:f8:d0:49:8c:00:ab:91:eb:97:3c:a1:45:
5f:65:ce:d6:2a:a4:7e:5b:8a:66:65:db:2b:9f:a5:3c:23:0d:
98:a0:04:3a:11:77:75:9a:bc:d7:73:62:8e:e8:f4:e4:d8:0d:
2d:67:1c:74:30:49:50:e5:e5:a3:a4:64:ad:d7:7a:3b:4c:67:
ef:84:63:d7:eb:37:c8:fe:05:bd:3f:a6:c6:ce:86:6f:64:af:
ad:ee:cb:9c:a1:a1:ad:7a:63:af:19:14:f1:19:99:31:c5:63:
86:cf:f0:25:30:d9:2e:85:8a:f2:a6:38:74:e2:5b:23:b6:9a:
c5:be:68:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 18 00:15:20 2024 by rpki-client on console-fra.rpki-client.org