Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/f7c4a2-b606-4292-b9f7-fa3c4ef5edf6/1/qJwbrzdm-Zkrou5xPabGGgsq72w.roa
File: qJwbrzdm-Zkrou5xPabGGgsq72w.roa (raw, json)
Hash identifier: 4D3EN/+gQYHboGuPW+/0lTP9+BCn/UgnoVI6SnGaEpY=
Subject key identifier: A8:9C:1B:AF:37:66:F9:99:2B:A2:EE:71:3D:A6:C6:1A:0B:2A:EF:6C
Certificate issuer: /CN=3da6e69e65dd0a540599703ed0c92474cb20e939
Certificate serial: 01869383AD014993B81D0CF82FBADF1E76BC
Authority key identifier: 3D:A6:E6:9E:65:DD:0A:54:05:99:70:3E:D0:C9:24:74:CB:20:E9:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PabmnmXdClQFmXA-0MkkdMsg6Tk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/f7c4a2-b606-4292-b9f7-fa3c4ef5edf6/1/qJwbrzdm-Zkrou5xPabGGgsq72w.roa
Signing time: Mon 27 Feb 2023 15:35:25 +0000
ROA not before: Mon 27 Feb 2023 15:35:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25291
IP address blocks: 2001:16e0::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 27 Feb 2023 15:42:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:93:83:ad:01:49:93:b8:1d:0c:f8:2f:ba:df:1e:76:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3da6e69e65dd0a540599703ed0c92474cb20e939
Validity
Not Before: Feb 27 15:35:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a89c1baf3766f9992ba2ee713da6c61a0b2aef6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:01:4e:15:08:02:40:c0:f0:0c:d1:2a:da:b0:
7e:e2:a0:72:41:21:26:bb:0c:a3:5a:8d:bc:72:2b:
4f:a2:63:90:3e:f7:1f:6b:15:a1:ab:02:70:8e:fa:
af:af:28:29:d4:a4:ec:81:3e:54:ef:d6:fb:18:3e:
19:6f:a7:91:72:b0:24:4c:d1:54:88:72:af:6e:0a:
ab:72:ef:da:cd:df:d5:51:05:9f:a4:22:d3:e1:84:
9f:9a:07:b6:4b:dc:93:4a:ce:46:80:be:64:3f:63:
cf:0f:fb:da:c3:14:38:87:2a:38:b3:7b:92:58:50:
af:0c:e2:33:f2:4d:f0:54:e9:26:72:9d:9e:ea:27:
ed:0a:ef:17:92:1b:83:2a:d5:5e:47:c8:76:b9:bb:
46:7a:69:38:99:9a:1f:6b:eb:ba:cc:29:d6:0b:0f:
14:17:94:d4:9f:c1:9f:5f:00:3e:cc:4b:37:da:95:
fc:b8:78:c8:9d:30:91:d4:38:3d:6e:0e:dc:b4:8a:
3c:78:2a:1c:ea:99:6e:98:db:f7:78:70:ce:0f:31:
f5:97:4d:ca:e7:d6:e2:45:36:72:c7:18:9e:82:db:
13:e4:de:41:1d:6d:73:d2:4d:8f:d4:1c:47:e2:c7:
9b:4f:ae:17:dd:37:66:85:d8:4a:5b:2b:28:4d:cc:
43:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:9C:1B:AF:37:66:F9:99:2B:A2:EE:71:3D:A6:C6:1A:0B:2A:EF:6C
X509v3 Authority Key Identifier:
keyid:3D:A6:E6:9E:65:DD:0A:54:05:99:70:3E:D0:C9:24:74:CB:20:E9:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PabmnmXdClQFmXA-0MkkdMsg6Tk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/f7c4a2-b606-4292-b9f7-fa3c4ef5edf6/1/qJwbrzdm-Zkrou5xPabGGgsq72w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/f7c4a2-b606-4292-b9f7-fa3c4ef5edf6/1/PabmnmXdClQFmXA-0MkkdMsg6Tk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:16e0::/29
Signature Algorithm: sha256WithRSAEncryption
8e:fb:5b:68:4f:8e:ac:6f:b9:1f:3f:27:6f:96:ae:bc:0f:86:
a0:3a:2f:de:56:1b:b9:a2:91:ad:da:7a:6b:af:d4:96:be:42:
86:81:34:65:94:90:fe:79:cf:3a:93:b9:35:f5:56:bd:b1:92:
b6:b3:99:89:39:ad:29:43:01:87:56:44:d6:42:8e:f7:5b:94:
72:ec:3a:fc:57:de:7d:d4:92:6e:60:ed:05:86:b6:f5:bf:ad:
50:40:1f:86:0f:12:3f:d1:b5:0e:92:0b:07:2f:ce:e5:d4:5e:
1a:1a:5e:73:22:a9:bc:e6:4b:db:0c:cb:f9:68:bb:68:7c:5b:
11:ef:87:7d:52:a8:4d:db:86:0f:1c:b5:8e:bc:7e:e0:77:95:
75:7d:b9:f5:d0:c7:2b:2c:5b:35:31:78:45:8c:4a:55:ff:d4:
e3:b7:e0:db:a3:41:e3:a7:6b:61:5e:ae:06:11:92:96:8b:21:
33:40:f9:45:eb:61:9d:03:b3:bc:a8:32:79:40:18:13:18:6f:
55:ae:18:4a:2a:a3:ad:2c:99:c8:8f:94:14:cd:14:11:0f:eb:
a0:d8:b9:2f:41:07:48:30:2b:a8:62:c3:54:b8:b6:87:03:25:
33:77:a9:bf:6f:c1:8a:b7:22:9e:52:dd:4a:47:60:24:1c:8e:
35:07:d3:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:50 2024 by rpki-client on console-fra.rpki-client.org