Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/ca641f-db3a-4f64-a25b-cfa6a91481e2/1/QXJEldL4qtB-V0LF8G_tVK85npM.roa
File: QXJEldL4qtB-V0LF8G_tVK85npM.roa (raw, json)
Hash identifier: q/v4opsvx7hC4LpcZgd+jSfznxSkQfl/3FDnCZuiWNw=
Subject key identifier: 41:72:44:95:D2:F8:AA:D0:7E:57:42:C5:F0:6F:ED:54:AF:39:9E:93
Certificate issuer: /CN=97d23ae28cd860c8edfd618356f8b31f5e4dc928
Certificate serial: 018729858629E390F90368F1BBDB83BCE87D
Authority key identifier: 97:D2:3A:E2:8C:D8:60:C8:ED:FD:61:83:56:F8:B3:1F:5E:4D:C9:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l9I64ozYYMjt_WGDVvizH15NySg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/ca641f-db3a-4f64-a25b-cfa6a91481e2/1/QXJEldL4qtB-V0LF8G_tVK85npM.roa
Signing time: Tue 28 Mar 2023 18:40:29 +0000
ROA not before: Tue 28 Mar 2023 18:40:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208046
IP address blocks: 2a13:29c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:29:85:86:29:e3:90:f9:03:68:f1:bb:db:83:bc:e8:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97d23ae28cd860c8edfd618356f8b31f5e4dc928
Validity
Not Before: Mar 28 18:40:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41724495d2f8aad07e5742c5f06fed54af399e93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:14:72:55:24:cc:05:3a:e5:10:fe:98:8f:93:
7b:07:25:04:25:05:e6:36:da:db:d8:b0:4f:82:e5:
ab:76:7f:2a:cd:40:5f:0b:9d:95:93:bf:16:e7:f7:
f3:26:ad:5b:c5:f1:9f:d6:4e:51:5a:75:48:a6:2c:
5b:b7:47:06:54:19:90:39:d2:d1:5f:5e:fd:85:87:
5c:57:f9:57:30:3b:fe:3e:05:67:21:48:1f:e1:0e:
cf:92:4b:1d:dc:1f:82:80:77:80:27:24:02:f4:7e:
b3:01:c0:77:bf:77:3b:0e:95:6b:aa:91:57:1e:35:
c0:6c:45:6d:81:8d:63:5d:7a:79:b9:0b:6f:f4:b0:
de:44:e5:72:80:87:32:6a:1a:4a:60:66:e6:88:23:
ee:f9:f8:f1:f5:33:4b:57:d4:59:f8:0b:d2:c5:f4:
de:91:8f:57:84:cb:a6:33:f2:31:66:ab:9f:c7:2f:
af:7e:ec:ea:22:ad:7e:99:2c:e6:42:48:fa:69:32:
b4:af:b5:92:30:1d:a7:77:40:ab:9c:9d:f3:58:d0:
01:f8:d6:a2:89:89:46:ed:c8:45:53:8c:c4:2f:a7:
68:ce:0a:7d:1b:06:cd:3b:08:f4:b9:8e:59:21:b0:
bb:aa:1b:a4:a6:5b:23:07:bc:77:92:0e:1f:ac:ba:
b9:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:72:44:95:D2:F8:AA:D0:7E:57:42:C5:F0:6F:ED:54:AF:39:9E:93
X509v3 Authority Key Identifier:
keyid:97:D2:3A:E2:8C:D8:60:C8:ED:FD:61:83:56:F8:B3:1F:5E:4D:C9:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l9I64ozYYMjt_WGDVvizH15NySg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/ca641f-db3a-4f64-a25b-cfa6a91481e2/1/QXJEldL4qtB-V0LF8G_tVK85npM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/ca641f-db3a-4f64-a25b-cfa6a91481e2/1/l9I64ozYYMjt_WGDVvizH15NySg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:29c0::/29
Signature Algorithm: sha256WithRSAEncryption
5a:42:db:0b:50:54:7d:93:fa:c2:5d:b8:a2:d6:91:e5:b5:59:
f4:ff:f4:26:5f:21:69:f4:68:8b:24:60:f9:c1:20:7d:7f:a2:
31:f1:51:e6:29:d4:33:a2:26:02:c8:2f:8f:70:32:c6:19:b0:
0f:9c:9a:06:9b:70:e9:3c:72:f6:6c:6f:2b:70:d3:c8:24:45:
8e:95:4b:c2:ff:db:46:11:06:7e:8d:7b:1e:15:88:88:28:e9:
71:c9:a5:af:43:8f:90:88:e4:ce:73:f5:01:08:d2:30:40:65:
42:ac:0e:3d:9a:21:ec:01:cd:11:e0:7b:9f:95:9e:57:df:84:
cf:a4:c3:a1:e4:05:ec:00:98:e8:c1:ff:a4:d0:a5:a4:ee:0e:
3b:2c:2f:8b:fe:0f:a1:30:49:ff:0a:45:d0:d0:a7:ac:a7:1f:
a3:45:99:65:00:2a:c9:78:e1:fb:ce:83:2b:e6:e0:ec:df:b5:
24:39:5e:6b:08:19:46:ce:9f:d2:06:76:31:80:48:26:06:7c:
5f:92:68:c9:dd:83:50:19:ca:3a:55:0d:d7:a5:ab:53:d0:40:
98:f5:30:7f:f2:9a:76:cd:17:45:69:67:cd:7c:59:b0:f1:4e:
aa:23:e2:e3:67:c8:76:3d:39:5a:3b:03:74:fb:a2:32:10:46:
99:0e:92:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:01 2024 by rpki-client on console-ams.rpki-client.org