Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/qNw-1YhFIu6qOJbSAw35n30xcJY.roa
File: qNw-1YhFIu6qOJbSAw35n30xcJY.roa (raw, json)
Hash identifier: V6E0lLfumiHWcYhtLL4lE2abGbu6O7QpRtkcGjR6llY=
Subject key identifier: A8:DC:3E:D5:88:45:22:EE:AA:38:96:D2:03:0D:F9:9F:7D:31:70:96
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185E48ABB26708F2885382D825BB4F48502
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/qNw-1YhFIu6qOJbSAw35n30xcJY.roa
Signing time: Tue 24 Jan 2023 16:09:35 +0000
ROA not before: Tue 24 Jan 2023 16:09:35 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31898
IP address blocks: 2a0e:b107:f50::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e4:8a:bb:26:70:8f:28:85:38:2d:82:5b:b4:f4:85:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 24 16:09:35 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8dc3ed5884522eeaa3896d2030df99f7d317096
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:25:31:d3:6e:cc:e6:ae:e9:41:74:5c:17:fb:
83:1a:8b:e1:a5:49:ac:4c:ad:69:25:08:35:8c:f7:
bd:48:6e:06:50:fa:44:b1:e8:7e:a5:0e:23:8d:a4:
b3:66:63:30:34:fb:d1:15:eb:df:e1:66:68:df:18:
fe:89:79:f6:18:b2:02:e9:90:c1:a1:b9:d7:80:03:
03:da:65:ac:d7:9b:29:ba:7a:9d:2b:1c:7b:71:6b:
9a:e2:ff:03:8b:be:cd:dc:30:c1:ad:b3:fa:56:54:
a1:b2:4a:27:b3:28:b8:3e:7a:f9:6d:ea:b6:0c:8f:
6a:fe:88:1e:fb:4f:97:28:44:cd:51:0c:c1:d0:c4:
a7:7f:db:a7:9f:ce:77:37:e3:f5:c0:24:87:c7:1e:
e5:f6:eb:f9:e9:99:34:5d:11:c5:6b:94:47:2a:a4:
14:93:f5:ad:15:51:26:2c:4a:0a:5d:2e:52:4b:a4:
de:a0:79:78:73:af:07:ef:5d:28:5f:bd:84:ac:40:
4e:24:a9:5c:df:df:30:05:c7:79:2a:c5:87:aa:f6:
1d:2d:7c:e9:9a:19:5b:f9:9e:7d:75:bd:00:5b:6f:
66:22:2d:c8:cd:d9:f8:f8:34:cd:2c:7d:8f:0b:f0:
78:ee:04:cf:c6:89:43:df:4f:7b:c4:f3:0a:d0:31:
76:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:DC:3E:D5:88:45:22:EE:AA:38:96:D2:03:0D:F9:9F:7D:31:70:96
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/qNw-1YhFIu6qOJbSAw35n30xcJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:f50::/44
Signature Algorithm: sha256WithRSAEncryption
25:2b:e1:24:93:00:20:8e:c7:e8:c6:cc:bf:b8:37:ab:f3:31:
53:f5:f8:75:1e:49:94:53:30:99:9f:1b:9e:88:6f:d1:9a:09:
40:90:f6:38:9f:02:90:48:55:a7:1d:11:33:63:78:2a:32:41:
d8:5a:8b:9b:62:c0:0c:a4:b7:ec:49:1c:70:bd:13:1a:78:50:
60:fc:12:ec:83:8d:fa:21:8e:20:88:04:18:cf:07:ac:ec:d9:
e9:75:8d:3c:30:3a:9a:fe:4a:ff:fa:bd:96:a0:65:70:b7:d4:
32:ed:be:4a:29:bd:ec:b4:ac:f3:fd:a4:b3:1a:e5:e1:5e:40:
99:d7:fc:4b:56:6a:df:b7:82:ad:09:fe:c1:36:bc:ec:64:08:
74:97:46:e2:16:bf:9c:74:ff:65:bf:93:30:62:93:c9:52:65:
d8:f3:ea:6c:ef:49:1d:52:27:54:e0:6a:92:ed:06:3a:37:a3:
a8:34:8d:44:a2:37:57:c2:80:e9:9a:bc:e6:9f:36:4e:13:fd:
d8:e8:97:dc:cd:8c:2e:bf:67:16:8e:94:93:48:ab:e4:3b:09:
33:9e:fc:d7:5b:db:29:f9:d4:30:44:31:d8:e1:ac:79:5a:85:
da:b7:af:1f:37:f3:22:2f:81:3e:22:e7:4a:71:b7:fa:b7:62:
4f:d0:d3:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:03 2023 by rpki-client on console-ams.rpki-client.org