Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/4f0335-e860-4619-9380-e341b0f915d3/1/q43BNMoOuPGd7n4QYSXwMfpFJ6c.roa
File: q43BNMoOuPGd7n4QYSXwMfpFJ6c.roa (raw, json)
Hash identifier: MUMORc2dIQ+cbK+sYmzj8pUd6wUNJPtrHTWh04fLQis=
Subject key identifier: AB:8D:C1:34:CA:0E:B8:F1:9D:EE:7E:10:61:25:F0:31:FA:45:27:A7
Certificate issuer: /CN=4a63dc6753a8cbd74b74452c1536f37d9c4dc70c
Certificate serial: 01856F2FF5EB8411E611DD707CEF006D86F2
Authority key identifier: 4A:63:DC:67:53:A8:CB:D7:4B:74:45:2C:15:36:F3:7D:9C:4D:C7:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmPcZ1Ooy9dLdEUsFTbzfZxNxww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/4f0335-e860-4619-9380-e341b0f915d3/1/q43BNMoOuPGd7n4QYSXwMfpFJ6c.roa
Signing time: Sun 01 Jan 2023 21:14:52 +0000
ROA not before: Sun 01 Jan 2023 21:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25528
IP address blocks: 2a13:16c0::/29 maxlen: 48
Validation: Failed, certificate revoked on Fri 03 Feb 2023 07:33:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:f5:eb:84:11:e6:11:dd:70:7c:ef:00:6d:86:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a63dc6753a8cbd74b74452c1536f37d9c4dc70c
Validity
Not Before: Jan 1 21:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab8dc134ca0eb8f19dee7e106125f031fa4527a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:57:ec:1c:9d:84:d5:64:90:39:c3:de:64:d6:
4f:42:43:37:ca:5e:fe:72:61:08:1d:27:3f:fc:47:
9c:56:38:e8:5e:ac:97:d4:0c:32:73:81:2b:bb:96:
83:3c:b1:9f:9e:4e:25:79:4f:95:06:bf:68:c3:b8:
b1:f3:7c:b6:ea:89:25:33:eb:f1:3c:fb:f8:11:28:
65:98:64:2a:0d:b9:e8:99:f7:39:71:a0:5d:62:41:
51:44:b0:e4:30:50:d8:3f:20:c1:2c:cb:3f:72:80:
3e:c1:6d:48:c3:4d:5b:90:a7:36:70:a8:cf:40:bb:
49:83:87:6d:f8:bb:4f:b5:35:ad:4e:b8:ee:8a:66:
ce:27:fe:b4:2c:ac:4b:e2:ca:e1:82:04:5d:55:da:
8f:96:21:97:06:0f:30:de:61:db:94:5a:22:64:0d:
d0:bf:e9:ee:2b:4a:ad:65:a8:cf:a6:6e:f2:67:24:
64:ec:ab:0a:02:24:95:04:ff:96:3a:8c:d7:17:42:
05:eb:9a:21:28:d9:91:db:27:bc:c0:28:9f:03:39:
70:62:88:5a:60:6b:1b:b4:75:3c:af:2f:6e:7c:69:
b7:bd:5e:b0:7c:ca:a6:d6:67:d5:a0:e0:10:b5:10:
fe:6c:90:78:1f:47:56:5a:72:4e:14:d7:b8:83:d1:
c2:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:8D:C1:34:CA:0E:B8:F1:9D:EE:7E:10:61:25:F0:31:FA:45:27:A7
X509v3 Authority Key Identifier:
keyid:4A:63:DC:67:53:A8:CB:D7:4B:74:45:2C:15:36:F3:7D:9C:4D:C7:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmPcZ1Ooy9dLdEUsFTbzfZxNxww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/4f0335-e860-4619-9380-e341b0f915d3/1/q43BNMoOuPGd7n4QYSXwMfpFJ6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/4f0335-e860-4619-9380-e341b0f915d3/1/SmPcZ1Ooy9dLdEUsFTbzfZxNxww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:16c0::/29
Signature Algorithm: sha256WithRSAEncryption
ce:44:d0:0c:6d:0c:74:d4:61:2b:94:db:4d:80:f5:50:b4:cc:
ec:e0:1d:99:7e:29:aa:2f:f9:c3:d2:14:75:c7:05:38:9b:8e:
50:4a:1f:aa:c5:34:e0:a6:b3:d1:d4:eb:ea:c3:1f:7b:61:90:
d9:e2:43:b4:5f:20:7c:f9:3c:0f:31:bc:24:95:4b:54:1a:e5:
0b:a0:c2:49:bd:2a:4b:57:7e:91:e1:13:2c:37:f9:3a:18:87:
1b:37:95:e1:1c:31:f9:46:2c:70:0b:47:b2:7b:60:21:4d:7f:
0b:27:2b:c4:2d:5e:ea:c6:4f:62:d5:a9:5a:34:1f:48:93:92:
65:81:2b:92:3d:a9:34:9f:93:29:5a:85:ee:10:74:13:65:17:
9d:a9:6b:dd:b1:02:ec:34:bd:4b:e0:23:82:a7:36:b1:39:38:
46:03:fa:87:37:0c:b7:1f:7b:af:08:e3:43:9a:fa:54:77:31:
3a:f0:5e:5a:33:e6:8a:ef:74:43:5e:fe:f8:3f:2c:93:07:f0:
4b:06:bd:d5:7c:dd:02:4e:2c:a4:cf:c8:c4:e8:2e:f3:3a:41:
81:d3:03:0a:69:16:da:55:43:7f:b6:51:3e:0a:4d:09:19:a9:
48:d8:94:7c:1e:4f:58:22:83:3c:29:a8:e3:6a:f8:1b:3f:39:
49:29:31:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:25 2024 by rpki-client on console-ams.rpki-client.org