Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/dq4WNHx8KCZZEReMzjXl7wp8I6s.roa
File: dq4WNHx8KCZZEReMzjXl7wp8I6s.roa (raw, json)
Hash identifier: BxBXD246ABW/3PxG8MUDPQQ64zT0drERQqkWp/efdzU=
Subject key identifier: 76:AE:16:34:7C:7C:28:26:59:11:17:8C:CE:35:E5:EF:0A:7C:23:AB
Certificate issuer: /CN=20aa60cb0024332a2db68993f3357158af60c8de
Certificate serial: 0187E1D44C121C7E4F0A40459BCD7AB4325E
Authority key identifier: 20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/dq4WNHx8KCZZEReMzjXl7wp8I6s.roa
Signing time: Wed 03 May 2023 13:36:39 +0000
ROA not before: Wed 03 May 2023 13:36:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a02:3040:4e::/48 maxlen: 48
2a02:3040:4f::/50 maxlen: 50
2a02:3040:43:ff00::/56 maxlen: 56
Validation: Failed, certificate revoked on Fri 06 Oct 2023 06:10:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e1:d4:4c:12:1c:7e:4f:0a:40:45:9b:cd:7a:b4:32:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20aa60cb0024332a2db68993f3357158af60c8de
Validity
Not Before: May 3 13:36:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76ae16347c7c28265911178cce35e5ef0a7c23ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a0:1a:d4:45:fc:e3:ef:d1:fa:a3:d6:4f:ae:
55:d3:49:54:a2:a4:9e:98:27:a2:15:c7:e5:c5:05:
39:66:dd:a3:d7:12:35:81:bd:86:ca:f0:c9:cf:78:
df:ae:59:fd:f8:40:82:7d:99:06:e7:4d:db:e1:b0:
77:e5:6c:92:09:bb:8c:ff:04:00:f7:f8:4c:54:d8:
2c:59:36:01:4e:8d:e5:22:bb:0f:97:c6:a2:78:e0:
ef:c9:24:1c:2f:41:3c:1e:be:10:56:c2:be:9e:19:
eb:95:92:6c:c9:8a:bf:bb:c3:dd:9e:35:76:32:57:
bc:3c:09:20:4a:2e:3f:db:cd:35:cc:40:ad:a3:71:
6a:1d:47:2f:5c:6e:6f:d0:af:03:90:99:71:ac:e0:
22:f2:5a:92:fd:dc:56:bb:63:f2:6c:44:51:3d:c6:
d5:73:37:29:ee:3e:a3:c0:8b:42:d9:ff:b6:60:7a:
0d:e6:71:0d:58:9b:90:c2:e6:b6:8c:41:c9:5f:b9:
0f:ac:f4:f6:bf:bd:33:e4:51:ae:fc:aa:fa:ec:f6:
e3:78:9e:02:fd:33:b2:ed:5c:d9:e8:e8:39:f4:99:
f3:fc:37:95:8e:f1:9b:0a:a5:40:09:e4:72:53:10:
39:ba:ef:62:d7:95:b6:e8:87:c8:7c:7c:6f:d4:91:
4a:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:AE:16:34:7C:7C:28:26:59:11:17:8C:CE:35:E5:EF:0A:7C:23:AB
X509v3 Authority Key Identifier:
keyid:20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/dq4WNHx8KCZZEReMzjXl7wp8I6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:3040:43:ff00::/56
2a02:3040:4e::-2a02:3040:4f:3fff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
5a:44:20:37:50:e5:47:ca:d0:9d:d7:2a:26:99:f6:ad:63:23:
3d:9a:60:97:2c:25:2c:15:f5:33:9a:4b:53:50:3e:d3:8c:5a:
cd:ed:85:31:a4:c8:a8:1d:1b:1f:47:94:93:99:b6:d8:8a:5a:
e0:30:ca:8e:bf:8a:30:87:9a:17:f0:b7:d5:0a:e7:bd:b9:24:
1c:5b:a1:f1:c7:37:06:b3:ac:c7:e3:02:5c:bb:ab:49:86:a1:
b3:57:21:35:51:2a:74:f6:56:4d:5c:7b:f6:b4:38:e8:6c:c0:
c8:28:d5:c2:5f:d2:93:04:31:bf:3e:01:77:90:c2:0c:ec:ca:
25:43:08:08:cf:f5:59:d9:35:81:4e:c5:ec:05:b7:e2:c1:d5:
fe:87:77:29:81:8b:86:0c:70:b7:41:64:1e:f4:db:39:06:f7:
00:15:a1:07:41:4b:68:90:50:ac:57:54:70:98:3a:00:0b:6c:
aa:6b:9f:c0:e8:b6:e4:88:e5:b9:b3:a0:4d:e6:e5:74:12:ef:
5b:c5:31:a9:96:73:82:5a:a7:a8:60:69:c8:d5:d9:d1:03:5e:
9c:b2:be:36:6f:0b:7d:26:ca:4d:bd:88:71:6a:0a:6f:07:a3:
91:ed:78:b6:4f:40:5f:21:88:e0:2e:e9:27:66:98:3f:92:80:
8e:00:b2:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:05 2024 by rpki-client on console-fra.rpki-client.org