Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/Q6XD9pIJuq34rYpWd4uAUZQ3r7w.roa
File: Q6XD9pIJuq34rYpWd4uAUZQ3r7w.roa (raw, json)
Hash identifier: SWjR1Rv8SNTE/qeh7CDFFbiC5o5KkijHzXLLeP5PN0w=
Subject key identifier: 43:A5:C3:F6:92:09:BA:AD:F8:AD:8A:56:77:8B:80:51:94:37:AF:BC
Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071
Certificate serial: 01863A103CDBB123056B40C23839339AB74E
Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/Q6XD9pIJuq34rYpWd4uAUZQ3r7w.roa
Signing time: Fri 10 Feb 2023 06:43:07 +0000
ROA not before: Fri 10 Feb 2023 06:43:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21286
IP address blocks: 2a07:3502:1120::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:3a:10:3c:db:b1:23:05:6b:40:c2:38:39:33:9a:b7:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071
Validity
Not Before: Feb 10 06:43:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43a5c3f69209baadf8ad8a56778b80519437afbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:83:11:cf:56:2b:2e:c6:d0:6a:ee:7c:34:5e:
fd:7e:d1:6b:2f:89:a9:20:9d:67:d0:5b:6a:8d:93:
f8:dd:16:87:62:1d:60:61:dd:8f:24:c1:b0:4c:a1:
d6:83:ed:36:94:98:03:8f:ba:13:23:92:b5:d5:7e:
c1:5f:f0:df:57:02:b7:4f:20:b9:30:bd:ac:e6:39:
63:1f:ac:39:4a:29:40:14:72:df:31:e0:4c:15:1e:
83:b4:06:e8:23:8c:bc:aa:6b:7d:76:cf:7f:8d:9d:
96:9e:4a:25:11:9a:0f:74:14:96:27:aa:14:7e:0a:
8a:e6:d1:9d:8e:79:92:ee:a9:0b:80:00:47:36:17:
3d:f0:f5:fc:99:27:14:4c:9b:8c:fc:62:c7:93:49:
f0:f6:d3:3a:be:2d:31:c1:30:3b:29:63:6a:0c:3f:
54:3b:79:32:3f:43:e3:25:96:ce:a8:7a:fb:37:0e:
2b:b6:b1:2d:87:ce:5b:4d:3d:b6:de:93:fc:2d:71:
d4:ad:64:b3:ec:3d:53:54:a4:37:dc:bf:59:59:af:
d5:c5:d2:bd:94:eb:dc:15:93:c8:96:d7:6a:84:f7:
66:29:b6:10:7f:57:4d:4d:dc:61:08:e9:ce:aa:11:
70:6b:7b:81:e5:df:cb:2f:a9:49:47:c9:66:60:b2:
6d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:A5:C3:F6:92:09:BA:AD:F8:AD:8A:56:77:8B:80:51:94:37:AF:BC
X509v3 Authority Key Identifier:
keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/Q6XD9pIJuq34rYpWd4uAUZQ3r7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:3502:1120::/48
Signature Algorithm: sha256WithRSAEncryption
8b:27:b0:a9:05:23:78:5c:30:b2:b2:79:11:bc:af:9c:0b:0f:
97:fa:cf:1a:40:bd:cf:90:b7:1a:5c:3a:a3:23:bf:89:89:90:
bf:c6:30:86:6a:d5:5d:04:b0:c4:56:d9:26:d8:5c:f9:9f:ac:
f6:b7:62:ce:2d:0b:c1:9a:1e:e9:d8:fd:ce:3f:ac:83:f0:be:
c0:64:cf:fd:22:20:de:4b:1f:fb:31:80:46:71:da:91:1b:e6:
4b:3d:54:46:2b:bc:89:05:a3:ef:35:4f:38:78:10:80:ed:5f:
0d:20:94:0e:8e:9a:4b:44:93:44:6b:0f:1f:81:4e:bd:48:ff:
a6:7f:05:f7:33:c1:77:55:cb:0e:af:85:12:1d:ad:72:3f:9a:
7b:d4:f6:98:26:f8:6b:77:08:4e:eb:72:bc:80:1f:89:56:71:
c3:4e:27:73:f6:7f:e0:2c:1e:64:48:a5:cd:b0:a2:5a:57:d7:
ca:7b:76:39:86:44:75:da:ea:72:5f:5d:0a:e5:00:9e:fe:57:
be:d4:7d:49:34:c5:78:e4:af:cb:e3:71:ba:a1:51:61:51:09:
bd:ef:e4:77:a4:0f:23:ca:f9:52:93:96:a6:6d:04:6b:a6:c5:
7b:b3:61:fd:05:2a:cd:78:2b:8c:76:4f:db:ce:bc:16:74:f7:
4a:66:2e:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:49 2024 by rpki-client on console-ams.rpki-client.org