Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/QWSaAoEp9UreP7p7gyYwwTUx2EM.roa
File: QWSaAoEp9UreP7p7gyYwwTUx2EM.roa (raw, json)
Hash identifier: lGiYizQAMLWhT0kNB6UVXuIv9jOO82LFuaVTqHMgcWM=
Subject key identifier: 41:64:9A:02:81:29:F5:4A:DE:3F:BA:7B:83:26:30:C1:35:31:D8:43
Certificate issuer: /CN=4f9ac6fe2031adde03668240e3c5d91ec6711e1e
Certificate serial: 01856EB8F76D100D628193E9691FA9A86802
Authority key identifier: 4F:9A:C6:FE:20:31:AD:DE:03:66:82:40:E3:C5:D9:1E:C6:71:1E:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5rG_iAxrd4DZoJA48XZHsZxHh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/QWSaAoEp9UreP7p7gyYwwTUx2EM.roa
Signing time: Sun 01 Jan 2023 19:04:53 +0000
ROA not before: Sun 01 Jan 2023 19:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202165
IP address blocks: 2a0b:a080:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b8:f7:6d:10:0d:62:81:93:e9:69:1f:a9:a8:68:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9ac6fe2031adde03668240e3c5d91ec6711e1e
Validity
Not Before: Jan 1 19:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41649a028129f54ade3fba7b832630c13531d843
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:18:06:f5:15:19:d1:cc:ac:3d:98:9f:8d:30:
2a:a6:6f:11:b3:3f:62:79:01:2d:4f:68:d4:79:e4:
8b:9a:b2:6b:ef:95:4c:e0:cb:e4:2b:b8:e3:aa:3c:
47:73:60:af:e7:45:96:8c:9e:53:ce:cd:70:a9:86:
61:7d:8e:94:aa:b6:67:e6:5c:99:6b:3c:19:5e:8f:
47:a3:44:af:96:44:d6:61:29:8b:c7:57:7e:be:9c:
eb:71:c4:53:e3:0e:af:ec:2b:14:cf:de:a8:8e:22:
17:76:07:06:6d:76:7f:3c:9f:89:02:94:6e:9e:d8:
59:83:4b:63:36:ce:59:52:dd:b0:b8:a2:d9:c1:d2:
f8:df:d1:78:18:04:11:fd:9e:00:c4:62:ef:1b:ae:
1b:60:88:b0:a3:c1:dd:8c:94:ec:40:4a:21:50:c6:
da:37:33:05:95:22:d0:ae:0c:bb:86:58:cc:ea:7e:
03:f6:44:67:b3:e6:6d:63:86:b0:82:90:66:d3:fe:
56:ff:6d:55:ed:51:f7:8e:79:e9:66:92:e3:d8:a7:
6a:3c:26:44:98:40:ab:33:55:de:aa:90:25:a5:c6:
e8:6d:e9:77:d9:e0:db:f7:46:92:77:d6:8f:e4:e4:
8c:e6:47:95:97:e4:2a:34:87:3a:47:b7:e2:c8:72:
62:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:64:9A:02:81:29:F5:4A:DE:3F:BA:7B:83:26:30:C1:35:31:D8:43
X509v3 Authority Key Identifier:
keyid:4F:9A:C6:FE:20:31:AD:DE:03:66:82:40:E3:C5:D9:1E:C6:71:1E:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5rG_iAxrd4DZoJA48XZHsZxHh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/QWSaAoEp9UreP7p7gyYwwTUx2EM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/T5rG_iAxrd4DZoJA48XZHsZxHh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:a080:1::/48
Signature Algorithm: sha256WithRSAEncryption
0f:2a:d3:81:6c:7b:bc:c5:8a:05:f3:da:56:ac:58:c0:e9:b0:
29:04:44:e9:c0:7c:b4:c2:73:8a:46:36:5c:7c:34:2d:e8:0a:
b2:bd:8c:50:92:9f:6a:21:f1:95:ad:53:99:20:0e:61:e0:38:
35:cf:7f:1d:a9:f6:c9:6e:4a:70:2a:d5:1e:30:1a:81:8d:5e:
9d:e7:e5:8c:15:01:2e:16:75:28:5d:c3:ee:80:a7:1f:4b:2a:
9a:50:77:9e:92:4e:51:07:86:9e:e8:f5:78:91:9c:69:d0:e2:
69:e8:96:58:2b:0d:f0:55:d9:e6:4f:eb:ac:73:04:e6:67:79:
fa:3c:5e:38:99:61:8d:2a:de:c9:61:cc:cf:33:d4:e3:40:b1:
c0:7f:06:bc:b6:7e:09:90:26:e5:95:36:0a:07:f2:61:29:87:
d2:6b:77:41:65:26:db:28:ac:e6:86:ca:2f:ce:4a:4d:23:16:
ad:16:58:11:55:66:84:fd:8e:9d:cd:57:58:39:f4:71:77:96:
59:3b:da:1d:af:b6:e6:5f:84:0a:f8:25:d9:1d:b2:b4:34:10:
e8:35:32:6e:b6:5f:33:78:9b:fc:14:cb:b4:36:23:0a:f5:a6:
23:97:94:e8:27:19:66:f2:c3:d8:b3:95:13:e3:38:24:50:b3:
3d:e5:76:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:33 2024 by rpki-client on console-ams.rpki-client.org