Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/qakVjOW7Tnv8nWstPxuuZhkwCD8.roa
File: qakVjOW7Tnv8nWstPxuuZhkwCD8.roa (raw, json)
Hash identifier: qyZCwcgW3iyo4S107iO9jFxmVns4um3gDaoHQgUl3b0=
Subject key identifier: A9:A9:15:8C:E5:BB:4E:7B:FC:9D:6B:2D:3F:1B:AE:66:19:30:08:3F
Certificate issuer: /CN=3a778b82baa9788a1acaf2ec368b61981ef51df2
Certificate serial: 01856E6665EC678FDF02689995A76CC9E21E
Authority key identifier: 3A:77:8B:82:BA:A9:78:8A:1A:CA:F2:EC:36:8B:61:98:1E:F5:1D:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/qakVjOW7Tnv8nWstPxuuZhkwCD8.roa
Signing time: Sun 01 Jan 2023 17:34:42 +0000
ROA not before: Sun 01 Jan 2023 17:34:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212789
IP address blocks: 2001:678:53c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:66:65:ec:67:8f:df:02:68:99:95:a7:6c:c9:e2:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a778b82baa9788a1acaf2ec368b61981ef51df2
Validity
Not Before: Jan 1 17:34:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a9a9158ce5bb4e7bfc9d6b2d3f1bae661930083f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:4b:0e:0f:93:77:dc:fc:be:9e:38:d9:e0:78:
ae:be:59:de:79:cb:9d:5b:ec:d3:d6:b8:87:fd:06:
0b:db:16:8b:b4:98:9d:ac:a0:e2:2c:22:bf:7e:6f:
bb:0e:f6:84:8d:6d:98:b0:bc:a0:49:16:3d:05:f7:
5a:b8:f2:aa:8c:7d:99:0f:0c:53:4e:75:f0:65:de:
9b:f6:5d:b7:b9:d7:50:cf:51:49:7b:bb:43:a7:d8:
94:71:00:f8:ee:82:4a:d6:1e:98:da:66:93:8e:0a:
3d:03:31:09:c0:ed:99:50:6c:a9:a1:96:cd:f2:0e:
cb:c6:a3:24:f8:5f:c2:23:25:13:1d:73:b1:36:2f:
23:da:3e:ad:37:8b:0c:25:43:d9:f9:b3:81:9c:b6:
9e:35:eb:dc:93:14:8d:50:0a:73:b7:b4:1b:e0:ad:
d2:38:0d:a0:24:6f:97:0d:0f:9b:19:75:aa:9b:a4:
5c:df:9d:a4:34:51:17:17:ab:42:16:a5:dc:ac:bd:
46:7d:59:53:91:f0:cd:6f:9f:c1:25:3c:eb:9b:90:
07:0e:66:ed:79:3f:37:b3:a8:c8:cb:81:4f:f8:a6:
00:1b:08:1c:78:fd:52:b5:6b:78:df:6f:f1:32:8f:
d1:61:72:38:3c:c9:f5:42:28:1a:cc:89:27:1c:14:
61:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:A9:15:8C:E5:BB:4E:7B:FC:9D:6B:2D:3F:1B:AE:66:19:30:08:3F
X509v3 Authority Key Identifier:
keyid:3A:77:8B:82:BA:A9:78:8A:1A:CA:F2:EC:36:8B:61:98:1E:F5:1D:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/qakVjOW7Tnv8nWstPxuuZhkwCD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:53c::/48
Signature Algorithm: sha256WithRSAEncryption
18:c3:21:ba:19:d3:b9:7f:e3:97:c6:65:06:4e:de:8a:31:6e:
89:b6:5a:2c:da:fc:62:c4:76:9a:d0:f8:19:42:3c:73:e0:33:
34:fa:66:07:76:c8:93:1a:77:6d:bf:af:9c:b3:94:89:d7:d6:
c6:f0:49:7d:9f:18:3e:b9:6c:97:c6:bd:e2:f5:0e:3b:fd:03:
56:1f:d4:4c:ef:1c:bb:5c:1d:7f:28:dd:35:ac:c4:82:76:17:
38:3f:f2:ff:79:22:86:ea:ee:4c:c2:ea:c6:20:1e:1c:3f:c5:
85:e3:44:d7:91:79:30:b6:17:98:f4:0d:57:8a:4c:1d:20:83:
dd:7d:f3:2c:8a:f4:86:82:80:93:7a:13:41:46:21:25:a4:4c:
9e:71:a3:1d:47:73:55:2b:3a:2a:33:e7:cc:03:0b:f2:df:6a:
be:da:74:ee:67:8f:1a:61:00:3f:bf:3e:4c:eb:31:ca:1b:29:
c0:25:b9:46:34:fb:fa:35:cf:ea:28:bf:a4:e4:f0:44:d2:c9:
00:d3:38:94:d5:3b:6b:61:9b:ba:51:54:b2:a3:55:26:3b:d2:
ba:56:57:70:2b:ce:ce:19:cf:29:79:15:a3:95:bd:f5:d5:0f:
7e:e7:85:f3:6a:1f:13:1e:aa:90:e5:a6:32:78:f0:ea:8e:fb:
6a:b3:f4:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:58 2024 by rpki-client on console-ams.rpki-client.org