Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/a155c9-13e2-4b28-b682-47ea3f874355/1/qiYet2Srn7BajOE7q4vsaT8sXLs.roa
File: qiYet2Srn7BajOE7q4vsaT8sXLs.roa (raw, json)
Hash identifier: 8+i4Ge7maTnlWisKQfwWf0qmz6pZzmvOFrY+qyChjUg=
Subject key identifier: AA:26:1E:B7:64:AB:9F:B0:5A:8C:E1:3B:AB:8B:EC:69:3F:2C:5C:BB
Certificate issuer: /CN=1024e66d7cba77b977685559c2481bb9044c5b75
Certificate serial: 01856D6623D3FA5532C016126AA1B1DCA43F
Authority key identifier: 10:24:E6:6D:7C:BA:77:B9:77:68:55:59:C2:48:1B:B9:04:4C:5B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ECTmbXy6d7l3aFVZwkgbuQRMW3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/a155c9-13e2-4b28-b682-47ea3f874355/1/qiYet2Srn7BajOE7q4vsaT8sXLs.roa
Signing time: Sun 01 Jan 2023 12:54:48 +0000
ROA not before: Sun 01 Jan 2023 12:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203881
IP address blocks: 2001:67c:2ea4::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:66:23:d3:fa:55:32:c0:16:12:6a:a1:b1:dc:a4:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1024e66d7cba77b977685559c2481bb9044c5b75
Validity
Not Before: Jan 1 12:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aa261eb764ab9fb05a8ce13bab8bec693f2c5cbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d6:63:aa:7a:ca:5b:25:12:ca:35:c9:78:31:
5b:39:10:c0:f8:a1:61:ed:82:6a:3d:65:ab:84:40:
f1:5a:cc:c3:59:27:c2:fd:f1:21:a1:a6:42:43:99:
e6:f7:da:ad:ff:f6:07:78:b8:94:b0:df:01:83:20:
88:18:31:75:75:90:8b:2b:75:ca:43:a4:a0:fd:1d:
30:77:99:b0:44:c8:6e:c3:32:10:aa:22:54:31:80:
dd:61:18:d6:1e:29:5b:37:b2:f3:40:d5:94:13:b2:
6d:0b:4c:04:75:ff:e2:46:b3:d4:09:20:7e:24:8f:
79:3f:18:d2:47:9e:81:84:56:9e:f2:a3:c8:65:78:
00:3a:19:f1:7c:6d:65:5b:fa:63:90:3f:18:c2:c8:
54:87:b9:e3:64:68:8c:29:e7:e2:59:1e:02:83:13:
92:84:dc:70:8b:a5:40:5d:68:e1:3a:e3:c7:c1:03:
59:8c:a9:58:55:2c:18:48:aa:5f:f5:f0:68:5f:aa:
d0:02:1b:17:a9:da:ce:37:68:28:0f:87:b2:b1:23:
3a:8c:08:1c:84:fb:2d:a8:df:62:36:21:f7:ad:eb:
cb:4f:76:6c:bf:fb:02:29:2b:06:3b:d6:c7:c9:ff:
17:06:e5:3e:a9:db:78:94:dd:dc:e8:f3:9a:4c:fc:
48:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:26:1E:B7:64:AB:9F:B0:5A:8C:E1:3B:AB:8B:EC:69:3F:2C:5C:BB
X509v3 Authority Key Identifier:
keyid:10:24:E6:6D:7C:BA:77:B9:77:68:55:59:C2:48:1B:B9:04:4C:5B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ECTmbXy6d7l3aFVZwkgbuQRMW3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/a155c9-13e2-4b28-b682-47ea3f874355/1/qiYet2Srn7BajOE7q4vsaT8sXLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/a155c9-13e2-4b28-b682-47ea3f874355/1/ECTmbXy6d7l3aFVZwkgbuQRMW3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2ea4::/48
Signature Algorithm: sha256WithRSAEncryption
87:e3:0e:db:73:0e:0c:8b:6a:2b:c5:f9:c1:64:c1:a9:af:b2:
13:34:f7:fe:b0:fd:8e:2d:31:25:c2:1b:9a:72:70:c6:81:68:
32:10:3a:1e:d9:76:4b:10:8b:86:88:cb:1e:9c:7e:6a:96:d3:
b8:8a:97:01:6a:93:6a:f6:b5:fb:a1:4c:63:02:4f:60:2c:95:
36:f1:96:60:dc:b4:bb:90:f3:ab:97:af:7b:b4:b6:56:77:78:
5b:8c:72:df:7c:35:c2:a5:5f:43:50:15:d8:f1:ad:10:11:fa:
5b:cc:3d:28:ca:0a:b0:24:ff:f8:7d:c5:7e:b6:47:28:c7:b5:
94:0a:ef:ca:f4:6a:e8:c0:12:6f:18:79:5a:35:79:59:ac:67:
8f:3a:d5:bd:e1:ef:1d:a9:bc:36:00:c3:ee:fa:ec:57:4a:5b:
dc:6b:f9:c8:9a:d8:1d:cc:ef:0a:79:36:ef:22:a9:a1:6e:45:
b0:93:8b:de:ce:1d:f7:6b:e1:a6:06:09:32:02:36:65:04:c5:
92:9c:55:90:4c:89:f1:ef:03:c7:68:6d:f6:6b:b5:c9:02:72:
32:01:10:a8:64:50:2a:36:c8:09:63:1f:07:84:f9:f1:14:5a:
d1:a1:fd:98:1b:ee:92:a6:24:b3:89:3b:66:27:53:d8:a5:98:
fb:42:af:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:36 2024 by rpki-client on console-ams.rpki-client.org