Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/xQXugf_Qs96NiaWB5KP50jhV4iY.roa
File: xQXugf_Qs96NiaWB5KP50jhV4iY.roa (raw, json)
Hash identifier: gk6eM4sN4jP44HgC7lau8GDELvG1krt2Kz+KQLcRQWc=
Subject key identifier: C5:05:EE:81:FF:D0:B3:DE:8D:89:A5:81:E4:A3:F9:D2:38:55:E2:26
Certificate issuer: /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial: 018D3BCBD8E57694B8BD1E878A388602E5EE
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/xQXugf_Qs96NiaWB5KP50jhV4iY.roa
Signing time: Wed 24 Jan 2024 14:07:11 +0000
ROA not before: Wed 24 Jan 2024 14:07:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198571
IP address blocks: 2a0c:580::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 18 Apr 2024 13:45:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:3b:cb:d8:e5:76:94:b8:bd:1e:87:8a:38:86:02:e5:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Validity
Not Before: Jan 24 14:07:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c505ee81ffd0b3de8d89a581e4a3f9d23855e226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:f8:23:a9:4c:d5:d0:16:5b:06:c6:46:5f:3a:
d6:00:9b:c9:79:6c:c8:90:6a:42:b6:1e:a0:e4:cd:
4f:4f:76:50:82:50:f7:a1:b5:ad:e6:28:72:0b:7b:
6f:3f:0c:ac:f4:3b:6f:73:57:d4:39:66:44:94:37:
c0:00:9f:a9:02:b1:03:ce:5b:60:a9:61:62:56:a1:
f5:35:8d:a0:4c:87:c5:b4:b1:77:33:44:3a:d6:88:
0f:44:97:9b:83:48:26:17:4c:ca:c8:92:b5:dd:06:
ed:0c:9f:e5:a1:6f:35:c3:cb:a9:76:1d:2e:eb:30:
75:36:90:bf:41:7c:72:bc:58:fa:7a:a1:fc:03:a0:
d2:2e:a8:04:a0:11:73:47:cc:b8:d7:5d:80:b1:0e:
d6:32:71:97:f9:28:e5:ee:c5:d8:f0:4b:61:78:ed:
70:50:4a:ef:da:46:15:e3:81:b6:c6:96:84:9d:11:
6b:8a:46:32:43:a2:c7:6c:b2:fa:f7:7a:c2:fa:c1:
84:7c:f4:74:e3:11:ff:64:a2:2f:ad:ce:cf:2e:35:
1f:7a:62:bf:3f:3f:d9:4e:71:54:f9:d5:7f:cd:1d:
2e:75:a3:8a:22:18:d4:19:ff:3a:63:7b:44:30:8b:
69:9f:0b:87:f3:7d:9b:00:39:ed:42:cf:08:c5:f2:
b3:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:05:EE:81:FF:D0:B3:DE:8D:89:A5:81:E4:A3:F9:D2:38:55:E2:26
X509v3 Authority Key Identifier:
keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/xQXugf_Qs96NiaWB5KP50jhV4iY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:580::/29
Signature Algorithm: sha256WithRSAEncryption
59:68:55:5e:04:2e:1c:f8:6c:b3:dd:ba:d0:ba:8e:5b:a2:b4:
b5:41:7b:30:b7:99:1b:3e:7f:f7:c7:f1:9b:ed:b8:aa:5a:1f:
b9:a6:3a:43:2b:bc:d4:4c:14:76:81:19:b4:44:c2:9b:e9:b8:
0b:c3:2c:ce:93:a3:1c:92:50:48:93:86:db:cb:ac:05:71:f7:
6e:a9:f6:06:14:7e:ce:29:6f:8f:09:3f:ed:99:ca:90:c2:b9:
19:e8:a9:46:47:c4:cc:72:a0:34:63:9c:66:47:c5:9a:39:e1:
33:e6:c4:9f:69:c9:60:0a:5e:8e:e8:89:d4:b0:14:e9:33:0e:
d7:df:17:0c:c8:46:b8:f7:53:8c:81:bd:f1:69:b1:47:64:bf:
b3:35:4f:c0:6e:5a:b6:d9:7f:24:5f:bf:9e:01:43:a6:97:7c:
4c:66:42:61:c4:48:7a:2b:ad:98:e9:5f:5b:50:1f:58:01:97:
6b:45:a7:a9:f1:2b:48:eb:53:64:72:e2:61:46:c1:03:e8:39:
fa:7e:0e:21:e0:00:ef:3b:b4:3a:c2:5e:61:05:d8:3b:98:c4:
aa:2c:ff:39:50:75:64:50:94:e4:3f:92:d8:9c:09:27:25:99:
a6:61:3e:6d:4e:1a:f4:fe:2c:9e:a9:d3:f8:28:3e:7f:cf:9b:
91:73:8e:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:59 2024 by rpki-client on console-fra.rpki-client.org