Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/QkejxByvcFGhgirjjLwSoGpDvWc.roa
File: QkejxByvcFGhgirjjLwSoGpDvWc.roa (raw, json)
Hash identifier: Fx6e8nzcdTXlCLDTTMv0Ch0YGxPuVsvsc6KAGyPMwzo=
Subject key identifier: 42:47:A3:C4:1C:AF:70:51:A1:82:2A:E3:8C:BC:12:A0:6A:43:BD:67
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 0193ACDE818C79C0D5F7A01123901AEA8DAB
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/QkejxByvcFGhgirjjLwSoGpDvWc.roa
Signing time: Mon 09 Dec 2024 19:21:23 +0000
ROA not before: Mon 09 Dec 2024 19:21:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213861
IP address blocks: 2a0e:8085::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 23 Dec 2024 16:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ac:de:81:8c:79:c0:d5:f7:a0:11:23:90:1a:ea:8d:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Dec 9 19:21:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4247a3c41caf7051a1822ae38cbc12a06a43bd67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a3:11:85:07:52:58:6f:38:88:4b:54:05:22:
2a:fe:9c:b6:8d:cb:c5:97:27:21:19:21:f4:a3:eb:
1b:11:bd:a7:ab:91:1c:ad:c3:08:47:32:26:5d:63:
3c:4b:9b:4b:08:0c:a8:ab:25:e2:fe:e9:73:79:20:
86:71:31:a8:a4:6d:6f:2d:6e:dc:ac:cf:b0:5a:b0:
3c:5d:9b:09:3d:ad:42:d8:9a:6c:f4:22:0a:9b:91:
a0:0a:cb:52:d8:bf:78:4f:66:eb:0a:1d:d2:19:d9:
15:2b:b9:05:c5:d5:c3:25:3c:eb:53:b0:00:63:ed:
6d:b1:eb:22:38:79:de:bd:82:a0:11:7b:73:70:fe:
0b:c4:73:52:ce:66:97:a4:2f:a9:24:69:57:94:ad:
29:43:ae:60:af:11:02:7d:af:8e:2c:57:fa:ed:a9:
e3:d6:ea:20:4e:d8:45:75:9b:7e:9c:12:be:ed:fb:
4f:be:3e:08:88:5a:30:9d:70:64:0f:6f:2a:e5:19:
a8:b1:25:98:e3:08:c1:f8:6c:b9:37:e0:47:09:ba:
6a:c0:a3:66:6f:57:00:d1:5a:2c:e4:29:b0:1b:16:
42:20:f8:d9:d2:d4:3e:a5:29:95:f0:30:7c:1a:02:
a6:b2:42:ed:0a:d9:1b:43:b9:12:c8:e7:8b:f1:70:
35:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:47:A3:C4:1C:AF:70:51:A1:82:2A:E3:8C:BC:12:A0:6A:43:BD:67
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/QkejxByvcFGhgirjjLwSoGpDvWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8085::/32
Signature Algorithm: sha256WithRSAEncryption
4f:96:3c:3c:50:15:cd:21:6a:b4:30:40:49:7f:d9:e3:20:18:
46:af:bc:69:df:d6:30:10:bb:65:a3:f0:da:d2:8e:8d:eb:72:
41:97:44:d4:fc:a7:82:8a:24:c3:98:f6:ba:5b:bb:92:0e:0d:
12:05:37:22:ce:aa:cd:55:3d:e9:94:3e:40:e2:2b:b7:e3:bd:
45:eb:d0:00:4d:30:b7:71:4c:b9:a7:a4:8f:24:c7:62:20:bc:
b7:00:f8:2c:32:50:21:4b:b7:b9:a5:4d:e3:99:4b:05:a7:32:
15:99:d7:4c:32:02:7c:0e:bd:04:80:ea:c0:97:cc:73:ab:25:
4f:d6:73:2c:bb:22:16:3a:2b:ea:7f:c1:41:7c:ec:31:68:9b:
c1:54:6f:fd:7a:09:23:ea:c0:1d:b8:ab:18:fe:3a:3f:47:88:
b0:e3:70:6f:af:ab:30:cd:d6:ab:b2:a0:05:05:75:80:c7:ca:
64:8e:1a:2c:8f:3c:80:50:5e:ea:d5:1c:3d:69:04:82:e3:35:
b3:2c:85:dd:4d:dc:66:bc:3c:82:d8:61:3c:14:d3:c2:86:81:
fe:0b:50:f8:17:3d:a0:41:6b:ab:3a:06:32:b2:35:1f:82:85:
60:ed:74:82:e4:fe:17:89:67:e5:bd:b4:30:4b:24:2f:3c:24:
2c:76:b8:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 24 01:01:29 2024 by rpki-client on console.sobornost.net