Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/qCmgu_a6jBLzhGv0iRkjtLReCXI.roa
File: qCmgu_a6jBLzhGv0iRkjtLReCXI.roa (raw, json)
Hash identifier: fjLcDVDASBDeFpu/Q5zx6VkL96rwybC3z08cKCXkD0k=
Subject key identifier: A8:29:A0:BB:F6:BA:8C:12:F3:84:6B:F4:89:19:23:B4:B4:5E:09:72
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 018CC2DAFF645B23DE0EF52BB84698944C45
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/qCmgu_a6jBLzhGv0iRkjtLReCXI.roa
Signing time: Mon 01 Jan 2024 02:29:41 +0000
ROA not before: Mon 01 Jan 2024 02:29:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204994
IP address blocks: 2a0f:5707:9000::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 04 Jun 2024 17:51:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:ff:64:5b:23:de:0e:f5:2b:b8:46:98:94:4c:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 02:29:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a829a0bbf6ba8c12f3846bf4891923b4b45e0972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:38:eb:44:b4:33:86:38:17:c9:5c:ea:77:56:
6c:cb:60:76:18:e2:12:b9:90:11:9d:c7:20:a6:db:
1d:3f:07:9e:a2:5c:1b:9c:c7:0a:2d:e8:97:44:37:
8f:cc:7e:78:55:db:00:15:4f:76:ba:84:f4:d3:bf:
db:3f:90:51:cd:4e:57:0d:5d:d2:58:c3:d2:ac:eb:
04:51:57:d3:02:53:d4:82:83:96:29:4c:32:5a:b6:
1d:ab:af:23:a9:29:0e:2c:a8:58:d2:73:ac:08:9f:
01:2d:bc:37:5b:ba:e2:f9:e5:19:8b:30:94:8a:c8:
b7:a0:4c:54:9d:c4:c7:bf:19:b1:af:37:a2:60:3e:
89:7f:c6:d5:37:9c:ff:18:87:f7:94:aa:a3:ab:9b:
a9:27:44:1c:61:8b:01:82:f3:bb:1d:09:80:2f:ae:
46:da:26:f2:e3:ab:75:51:cf:d6:97:8d:e3:49:1b:
97:6d:5d:4b:6f:ff:20:e0:10:0e:c3:79:45:8c:d8:
65:82:f7:24:1b:6c:1b:b6:06:5b:0b:6e:6d:54:01:
90:3e:65:61:69:6d:86:66:3d:7d:0f:3a:d9:25:26:
c3:7f:44:40:55:77:6a:77:77:87:50:af:28:65:00:
25:7a:30:76:3c:aa:38:4d:b3:f9:fc:51:e6:2d:48:
1b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:29:A0:BB:F6:BA:8C:12:F3:84:6B:F4:89:19:23:B4:B4:5E:09:72
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/qCmgu_a6jBLzhGv0iRkjtLReCXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:9000::/44
Signature Algorithm: sha256WithRSAEncryption
52:07:22:03:e6:f5:02:69:0a:65:39:3b:28:ca:63:da:b6:0d:
6c:94:90:7f:7d:24:12:c4:87:71:34:55:0a:a9:4b:dd:bb:d3:
a4:82:72:b8:d0:d0:1e:71:c5:65:27:cc:e6:5e:b2:b1:65:79:
bb:84:88:30:bb:f9:c9:ba:7e:3c:28:e2:d6:c4:5b:28:ff:4c:
cb:7f:78:6d:eb:5b:4d:d0:b5:46:aa:b6:04:a8:0f:8f:fe:ae:
18:ac:b8:42:dd:87:7a:55:86:8d:d9:a0:98:42:1a:b4:cb:c5:
72:c7:0b:11:19:4c:6f:08:43:89:5f:71:b3:55:f2:cc:46:47:
8c:1d:e1:ed:cd:75:61:70:95:2b:b0:bf:aa:db:49:65:a2:12:
5c:ad:4b:9e:2a:e9:2c:8b:7d:ee:95:e9:b2:6f:b3:dd:92:96:
b0:78:cb:6e:7b:ad:69:2a:0f:12:a2:52:61:08:40:a5:44:42:
54:40:a7:b0:9b:f7:5b:2b:0b:ce:cd:09:93:29:a1:44:4a:05:
e8:f3:27:87:62:fd:e1:b4:76:ab:74:aa:4d:91:5f:b3:44:53:
e0:1c:34:c3:f3:8d:6b:a4:33:c0:86:f8:17:15:0f:61:b0:d7:
e1:d2:3c:68:d1:60:b2:ca:f0:e7:09:45:eb:45:9a:78:a9:2d:
6b:e2:19:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org