Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/qm2DPoRYWpgFLTNr0x9S1bURj3Y.roa
File: qm2DPoRYWpgFLTNr0x9S1bURj3Y.roa (raw, json)
Hash identifier: dfi0bRz11pCSWEmEFvLq9+xKENssr/nf9ZsjCe6vbw0=
Subject key identifier: AA:6D:83:3E:84:58:5A:98:05:2D:33:6B:D3:1F:52:D5:B5:11:8F:76
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 018572BA698C878BFFB1E9B95DD87CA97088
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/qm2DPoRYWpgFLTNr0x9S1bURj3Y.roa
Signing time: Mon 02 Jan 2023 13:44:57 +0000
ROA not before: Mon 02 Jan 2023 13:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34681
IP address blocks: 2a0f:5701:3200::/40 maxlen: 48
Validation: Failed, certificate revoked on Fri 15 Sep 2023 04:11:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:69:8c:87:8b:ff:b1:e9:b9:5d:d8:7c:a9:70:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 2 13:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aa6d833e84585a98052d336bd31f52d5b5118f76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:7d:84:5f:13:43:cc:16:ae:3e:f1:6f:e4:8d:
66:a7:ff:c2:33:38:f8:b9:74:b8:06:48:de:00:a1:
cf:a1:ff:2c:70:1b:64:c0:f6:15:16:d0:8a:6b:0b:
b4:dc:0c:20:94:bf:90:c6:0d:3c:21:84:0c:2a:73:
94:d3:bf:74:21:ac:3c:30:81:1b:32:ad:89:3d:ba:
f1:da:7f:1e:2f:10:4d:b7:b1:03:b5:59:a7:ac:b8:
2d:50:8b:f1:9d:bc:dd:63:de:02:b8:29:86:14:19:
37:26:5b:25:9f:e5:8b:8d:c3:63:ef:40:9f:c5:f0:
2d:31:bd:cd:9f:8e:00:67:da:09:b6:06:36:27:4f:
39:0a:0a:c0:5a:21:aa:da:20:ac:fe:30:cd:e8:e1:
26:2f:b6:05:10:8d:42:f1:69:a8:f2:fc:25:21:15:
a8:0d:4f:51:cf:26:c3:9e:b8:04:62:ad:98:8b:87:
06:59:ec:ea:3e:6a:e6:29:47:2d:9d:e6:7d:e6:97:
a9:66:cc:44:1e:89:33:96:11:d1:d2:41:5b:b9:dc:
4c:f2:6c:f6:a4:81:8e:19:73:dd:1e:2d:9a:69:f0:
4c:24:a2:b6:d6:4b:c8:d8:29:e0:d0:a0:bb:7c:90:
a0:24:0d:44:53:ee:90:fb:29:54:c7:ad:32:77:93:
89:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:6D:83:3E:84:58:5A:98:05:2D:33:6B:D3:1F:52:D5:B5:11:8F:76
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/qm2DPoRYWpgFLTNr0x9S1bURj3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5701:3200::/40
Signature Algorithm: sha256WithRSAEncryption
06:87:41:d0:3f:8f:d7:56:a1:6b:ce:b3:0c:b9:34:1b:ca:94:
34:4a:91:8e:c7:a3:6f:7f:29:46:a1:e0:30:94:6a:db:4b:51:
28:d2:a7:c2:77:f0:29:98:fc:3e:19:2a:0e:80:f5:a8:fe:a9:
b4:34:83:7b:34:37:50:7e:e0:6a:11:b8:f1:59:aa:00:8e:ac:
04:ea:3e:40:42:41:91:c1:88:3c:5b:5a:dd:b6:06:51:97:aa:
a4:ba:7e:c0:e1:62:0c:c3:2b:61:9c:b7:bf:ce:8c:86:28:41:
ca:79:90:8c:9d:50:08:f3:06:35:4b:92:94:d4:da:c3:34:62:
e0:4a:83:bb:4c:b3:2a:87:8b:54:30:f1:6a:a8:6c:a3:28:b3:
8d:9f:b7:56:cf:aa:b9:64:76:05:4f:a8:53:b7:bc:5a:55:f2:
d5:de:92:0e:30:d8:08:14:58:bd:b4:c0:68:f7:08:01:22:27:
75:4f:f2:6c:45:90:55:af:2e:f2:c2:20:01:bd:19:01:a8:7a:
83:88:4c:27:3a:7d:ad:59:4a:78:17:4e:89:b7:db:81:1d:87:
22:2a:a6:2c:75:3c:c2:b0:52:aa:c8:67:50:ec:12:a5:cf:46:
db:90:2c:95:46:23:ee:3f:ae:46:a5:43:50:6f:39:99:63:1b:
bb:5f:25:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org