Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/27e1ca-e61f-4e8c-ad9c-145c36e38276/1/QJE-aXo88Z9zdEn5MxRD8jHIM2E.roa
File: QJE-aXo88Z9zdEn5MxRD8jHIM2E.roa (raw, json)
Hash identifier: u4zK4EZg4cVuSUI3LpW3twLVdHfjJCX7QbI/etw7xWE=
Subject key identifier: 40:91:3E:69:7A:3C:F1:9F:73:74:49:F9:33:14:43:F2:31:C8:33:61
Certificate issuer: /CN=4de2dc2c1c93847bf979f9b010edc4cda849f4f8
Certificate serial: 018570B068FF9699B31BB19A5B25FC33AAE6
Authority key identifier: 4D:E2:DC:2C:1C:93:84:7B:F9:79:F9:B0:10:ED:C4:CD:A8:49:F4:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TeLcLByThHv5efmwEO3EzahJ9Pg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/27e1ca-e61f-4e8c-ad9c-145c36e38276/1/QJE-aXo88Z9zdEn5MxRD8jHIM2E.roa
Signing time: Mon 02 Jan 2023 04:14:47 +0000
ROA not before: Mon 02 Jan 2023 04:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15542
IP address blocks: 2001:67c:2e64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:32:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:68:ff:96:99:b3:1b:b1:9a:5b:25:fc:33:aa:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4de2dc2c1c93847bf979f9b010edc4cda849f4f8
Validity
Not Before: Jan 2 04:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=40913e697a3cf19f737449f9331443f231c83361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ac:07:85:4d:30:9b:d9:e2:2d:84:3e:df:69:
77:5a:25:d1:1d:8d:51:0c:90:a3:1e:34:fd:44:a8:
61:d1:a5:2a:0a:3b:82:ec:3d:3a:38:3f:d8:07:39:
0c:04:d3:7b:1d:88:ee:f5:b0:52:23:05:0d:3d:6e:
94:31:bf:7a:99:86:95:9b:49:05:46:47:be:75:4a:
7b:0e:2d:93:b5:da:07:14:04:86:b7:4d:4e:28:16:
a2:25:0a:f9:68:4f:86:50:6d:a5:a5:44:2a:1b:50:
ef:89:28:2f:e0:92:69:24:b9:44:9f:d2:3a:99:f1:
66:d3:8c:a3:89:9a:83:57:15:b7:68:3a:ca:e7:5b:
c9:f5:77:78:f7:c4:f5:9a:fa:fc:f1:3a:5a:4c:6a:
d5:ea:e3:c3:fb:b3:b5:be:cf:11:49:f6:05:91:dd:
3e:d3:90:e4:dc:94:46:a3:70:e0:25:f9:95:8d:be:
84:df:b6:4e:f0:60:82:89:ec:e7:61:42:8e:24:06:
03:49:7d:92:fc:37:c3:e4:d1:08:ec:be:62:77:b3:
d5:8f:3a:4b:72:b8:5c:ec:43:8c:76:24:09:95:e2:
19:12:e2:00:f7:cc:20:0c:81:90:c7:b8:84:3b:12:
56:e3:5a:1e:50:80:9f:d2:a7:ea:ae:28:27:03:32:
96:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:91:3E:69:7A:3C:F1:9F:73:74:49:F9:33:14:43:F2:31:C8:33:61
X509v3 Authority Key Identifier:
keyid:4D:E2:DC:2C:1C:93:84:7B:F9:79:F9:B0:10:ED:C4:CD:A8:49:F4:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TeLcLByThHv5efmwEO3EzahJ9Pg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/27e1ca-e61f-4e8c-ad9c-145c36e38276/1/QJE-aXo88Z9zdEn5MxRD8jHIM2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/27e1ca-e61f-4e8c-ad9c-145c36e38276/1/TeLcLByThHv5efmwEO3EzahJ9Pg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2e64::/48
Signature Algorithm: sha256WithRSAEncryption
47:50:37:45:ca:5a:c1:14:c3:00:5a:49:a4:21:d8:7e:6a:e3:
e6:d3:68:20:49:87:a6:24:bc:56:1e:e9:5f:2e:89:a5:b1:88:
97:08:da:b0:29:cc:94:89:38:50:92:c0:d2:05:ca:c7:f6:16:
b7:68:78:2d:a2:e2:63:8c:40:5d:9d:cf:aa:32:25:31:d3:27:
92:08:1d:a0:eb:f1:9c:a5:70:43:89:eb:53:2b:f7:f0:87:ba:
b3:fc:35:e3:57:5d:45:1d:c1:ef:5c:44:c4:64:a7:5f:c2:40:
48:8d:23:f9:1c:0f:25:d8:8d:24:38:94:2c:8c:e8:cb:3d:a6:
21:41:52:c2:4d:45:8d:b0:66:5a:79:b5:f7:1f:2c:19:50:66:
ac:45:f4:7f:1e:da:0a:92:5b:0b:5c:ad:0f:47:ba:f6:e3:3c:
19:e3:ac:81:9d:27:88:ba:8f:f6:aa:46:fa:19:53:49:81:98:
74:83:a7:71:e5:b1:32:00:ca:18:21:10:ce:ee:0c:2a:32:65:
af:4b:95:e5:ed:3d:a3:0d:11:32:22:fc:69:28:d6:b0:43:af:
99:a5:25:8d:31:85:4e:6e:b4:50:c6:16:00:ae:50:4c:a9:9f:
ba:f7:dc:c8:c8:ef:75:3d:16:70:33:5b:f3:13:af:19:55:f8:
89:c9:ac:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:38 2024 by rpki-client on console-fra.rpki-client.org