Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/232047-b2e8-4fba-bdd5-c3fec45ed056/1/QbR3f-_UH7OVBs_CGmR--asMVGs.roa
File: QbR3f-_UH7OVBs_CGmR--asMVGs.roa (raw, json)
Hash identifier: vgwAcAWQXT/8FDx0roydPrFg06FcRbBwWwKNNitfHQk=
Subject key identifier: 41:B4:77:7F:EF:D4:1F:B3:95:06:CF:C2:1A:64:7E:F9:AB:0C:54:6B
Certificate issuer: /CN=07077969a8b6a55c461adde106c006486a26359f
Certificate serial: 018D504CFE435EE21AE58DAEBAFEFEA69CE7
Authority key identifier: 07:07:79:69:A8:B6:A5:5C:46:1A:DD:E1:06:C0:06:48:6A:26:35:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bwd5aai2pVxGGt3hBsAGSGomNZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/232047-b2e8-4fba-bdd5-c3fec45ed056/1/QbR3f-_UH7OVBs_CGmR--asMVGs.roa
Signing time: Sun 28 Jan 2024 13:40:39 +0000
ROA not before: Sun 28 Jan 2024 13:40:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215679
IP address blocks: 2a14:7780::/29 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 13:49:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:50:4c:fe:43:5e:e2:1a:e5:8d:ae:ba:fe:fe:a6:9c:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07077969a8b6a55c461adde106c006486a26359f
Validity
Not Before: Jan 28 13:40:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=41b4777fefd41fb39506cfc21a647ef9ab0c546b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:98:d3:a0:4f:4d:b8:0b:d6:a2:1d:6a:59:cd:
7d:b3:2b:3f:7b:e7:ab:3a:53:93:15:1a:e8:7d:cb:
38:fa:26:8d:b7:8a:7c:34:23:ad:7f:9e:61:00:1d:
ae:7d:53:30:97:cb:62:74:a3:63:81:61:af:b9:0c:
1c:6a:b2:36:ba:4c:1b:66:8e:ba:5e:3b:1a:2e:89:
6e:6d:bb:89:91:f6:74:07:61:d7:91:df:f1:fc:5f:
ab:c0:6f:b1:4b:92:ff:44:dd:0a:57:48:60:ce:31:
ec:a2:31:ff:4b:de:d1:57:9b:c4:73:5f:64:bc:e2:
d1:0a:14:c7:d9:5b:df:4f:fb:7f:ab:fd:79:d9:e6:
68:5a:8a:a7:5b:b2:42:c8:70:e4:5d:b5:4e:d7:d3:
d2:78:e3:d3:e1:3a:49:59:52:6a:35:7d:74:e6:4d:
09:ea:d9:6f:31:1c:c1:e4:29:64:eb:1a:29:8a:a2:
74:ff:0f:df:af:59:57:1e:06:f0:0a:dc:ee:90:aa:
89:63:c9:6d:42:55:0b:0b:bf:d7:bb:f5:29:01:db:
93:f9:21:e2:e5:d2:0e:86:2b:ce:61:cb:26:cf:8c:
cb:2f:cc:c2:00:48:b5:3d:e6:88:4f:af:69:68:6b:
f4:c2:45:86:e9:31:ba:88:9f:3c:c8:9d:60:6d:05:
a3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:B4:77:7F:EF:D4:1F:B3:95:06:CF:C2:1A:64:7E:F9:AB:0C:54:6B
X509v3 Authority Key Identifier:
keyid:07:07:79:69:A8:B6:A5:5C:46:1A:DD:E1:06:C0:06:48:6A:26:35:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bwd5aai2pVxGGt3hBsAGSGomNZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/232047-b2e8-4fba-bdd5-c3fec45ed056/1/QbR3f-_UH7OVBs_CGmR--asMVGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/232047-b2e8-4fba-bdd5-c3fec45ed056/1/Bwd5aai2pVxGGt3hBsAGSGomNZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7780::/29
Signature Algorithm: sha256WithRSAEncryption
08:f2:8e:bb:7b:e6:55:76:cb:20:16:20:9f:2b:0b:4b:29:b5:
a4:a4:ed:02:73:65:00:9c:2a:98:26:3b:4b:bf:37:c8:e9:3e:
ea:70:83:b0:12:3f:12:08:37:9d:96:e4:d8:11:c7:17:5d:c7:
e0:a9:12:6e:29:53:6d:75:0e:d5:fb:d8:50:01:8e:d1:f2:19:
42:47:1d:0d:dc:43:ef:d2:df:00:21:23:c7:4a:3c:2d:47:ab:
f6:62:1b:64:89:98:56:88:1c:09:3b:10:6d:cb:11:94:d2:bf:
ad:2c:b4:d7:5f:07:9a:53:72:f6:77:80:d7:60:69:2c:e7:d2:
3b:2e:9e:1c:d0:f2:6c:70:81:04:5a:e5:72:a1:38:00:4c:58:
ac:38:9c:4d:9a:3a:8a:9d:11:b9:a6:a0:53:fa:c1:2d:45:b6:
5a:41:12:a9:d3:86:f7:d2:84:f9:9a:14:cc:31:5e:ea:32:ce:
5d:d8:4f:1f:e8:71:6e:02:b3:12:55:0f:41:2f:95:99:52:ba:
56:cd:a8:e3:6a:55:8f:81:ae:93:3c:79:a1:e1:62:2b:bf:6a:
1e:8f:bf:0a:24:80:f9:a7:e3:e6:b8:31:03:73:7f:c8:b4:d8:
d6:5f:d1:54:ed:b4:48:d2:52:af:2c:29:c0:20:24:57:78:89:
95:e5:58:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:23:01 2025 by rpki-client