Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/32cc27-9448-437b-9722-dc9b9c6013f6/1/qcHQgVwg3mI9bQGujjroVKHwNN8.roa
File: qcHQgVwg3mI9bQGujjroVKHwNN8.roa (raw, json)
Hash identifier: CjUC15YUHHAXNd3vgTjYrVwUqW/DoiICZ1WGRTbZNcA=
Subject key identifier: A9:C1:D0:81:5C:20:DE:62:3D:6D:01:AE:8E:3A:E8:54:A1:F0:34:DF
Certificate issuer: /CN=96d95fe2d90943c92f6c28f3b329f82015cd92ae
Certificate serial: 0186D7E9DD22064369AC12B807508F1C7600
Authority key identifier: 96:D9:5F:E2:D9:09:43:C9:2F:6C:28:F3:B3:29:F8:20:15:CD:92:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ltlf4tkJQ8kvbCjzsyn4IBXNkq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/32cc27-9448-437b-9722-dc9b9c6013f6/1/qcHQgVwg3mI9bQGujjroVKHwNN8.roa
Signing time: Sun 12 Mar 2023 22:21:13 +0000
ROA not before: Sun 12 Mar 2023 22:21:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199700
IP address blocks: 2a13:8d80::/40 maxlen: 40
Validation: Failed, certificate revoked on Mon 13 Mar 2023 08:42:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:d7:e9:dd:22:06:43:69:ac:12:b8:07:50:8f:1c:76:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96d95fe2d90943c92f6c28f3b329f82015cd92ae
Validity
Not Before: Mar 12 22:21:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a9c1d0815c20de623d6d01ae8e3ae854a1f034df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:62:e1:a9:77:3d:90:94:0d:68:8a:35:d1:8a:
74:1d:59:7f:23:d4:c8:7d:88:26:da:97:fe:89:7c:
76:9e:4c:df:83:2a:63:eb:d5:3f:64:0f:d8:c3:76:
d1:f4:a5:07:73:13:27:de:79:08:d6:df:d4:ba:ba:
fe:13:3e:55:80:e8:bd:43:b3:09:08:82:5b:c0:0c:
28:49:2a:ba:d0:a1:b1:fc:37:8f:81:d2:82:5c:e3:
9c:a9:4f:25:56:e3:d2:57:81:74:21:15:67:03:5c:
0d:a2:7a:28:9b:64:43:f5:f1:5a:5a:4b:ff:20:eb:
c9:91:e2:e5:11:56:25:e5:df:8e:16:1d:e3:be:6c:
4d:50:72:13:a3:ec:fe:f7:ab:d1:dc:28:5c:ca:2f:
fd:bb:63:a5:03:8e:5e:d2:36:22:95:bf:38:0a:c3:
d0:ba:51:45:be:d8:6b:c7:2b:61:d8:4b:22:9a:8d:
f3:87:78:4e:49:33:ef:69:cf:a0:87:ba:b8:f8:45:
66:1f:e4:c6:2b:a5:8d:c4:77:2c:53:75:de:24:ba:
f3:8a:5a:5c:23:05:ba:1f:76:05:23:0a:b4:a7:16:
c9:59:f1:3d:e0:5b:b5:c1:d7:88:31:4a:6e:03:2c:
b9:ec:37:c1:22:8f:c5:8e:30:85:72:3d:eb:09:1a:
90:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:C1:D0:81:5C:20:DE:62:3D:6D:01:AE:8E:3A:E8:54:A1:F0:34:DF
X509v3 Authority Key Identifier:
keyid:96:D9:5F:E2:D9:09:43:C9:2F:6C:28:F3:B3:29:F8:20:15:CD:92:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ltlf4tkJQ8kvbCjzsyn4IBXNkq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/32cc27-9448-437b-9722-dc9b9c6013f6/1/qcHQgVwg3mI9bQGujjroVKHwNN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/32cc27-9448-437b-9722-dc9b9c6013f6/1/ltlf4tkJQ8kvbCjzsyn4IBXNkq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:8d80::/40
Signature Algorithm: sha256WithRSAEncryption
1a:c4:53:b8:09:39:4d:5b:63:e5:1e:e1:83:80:c2:02:63:32:
51:a9:04:35:f2:d9:f7:f5:6d:b1:22:d5:f1:65:a3:71:73:8a:
21:1a:89:12:b8:a9:d9:f1:fb:8f:e3:8c:75:79:64:4c:fb:66:
30:94:a3:d7:d2:f4:42:26:ec:a4:e0:8d:8f:29:12:6f:44:ed:
e4:7e:91:58:ac:5c:0a:a3:7c:7c:f1:56:7d:c8:ee:17:9d:a8:
16:72:2c:f3:a4:98:92:79:72:20:41:7b:43:41:e9:50:09:7d:
0e:b1:fe:09:38:f3:40:15:07:f4:25:ba:9c:42:db:72:da:b2:
c7:d4:7b:fb:7e:e4:3b:69:66:de:b1:ed:9a:24:b1:a1:9c:5d:
f5:d3:af:d1:5e:d1:21:71:42:d6:be:0e:da:10:b8:56:a1:72:
08:f6:30:00:ab:ac:fb:9f:e2:8b:f1:a6:95:5b:e0:cc:07:69:
a5:9c:56:40:04:3c:9c:5b:e1:35:37:8e:5f:d0:28:a0:5e:bc:
7a:ef:ca:fd:9b:a8:93:39:fe:3f:12:c8:67:5c:41:3c:c1:5d:
d5:0a:b3:8a:dd:a2:c8:af:92:c5:9e:e8:7c:3b:cf:dc:94:2c:
5a:df:72:3d:03:23:95:8f:3a:0a:55:c1:bc:b2:de:3e:5a:b3:
fe:08:f8:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:43 2024 by rpki-client on console-ams.rpki-client.org