Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/qXwqGa2UP10dg6ydBEfYd87roFg.roa
File: qXwqGa2UP10dg6ydBEfYd87roFg.roa (raw, json)
Hash identifier: J5NoFIGcgEg3ZkrFcsWY+2RO1Mud07cketO3wCmIA/g=
Subject key identifier: A9:7C:2A:19:AD:94:3F:5D:1D:83:AC:9D:04:47:D8:77:CE:EB:A0:58
Certificate issuer: /CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Certificate serial: 018843C688AD8779E1209759061BA20326CA
Authority key identifier: 72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/qXwqGa2UP10dg6ydBEfYd87roFg.roa
Signing time: Mon 22 May 2023 14:04:24 +0000
ROA not before: Mon 22 May 2023 14:04:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34968
IP address blocks: 2a0f:4880::/29 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:43:c6:88:ad:87:79:e1:20:97:59:06:1b:a2:03:26:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Validity
Not Before: May 22 14:04:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a97c2a19ad943f5d1d83ac9d0447d877ceeba058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:6a:33:de:c5:1b:63:11:68:bf:22:20:ce:13:
87:b5:3f:0d:15:f4:93:87:bf:20:03:3f:48:1a:95:
ef:e8:88:7d:8e:6b:d2:c6:9a:00:c9:3a:4c:20:27:
73:1c:97:6e:75:cf:7d:2f:27:c8:de:e2:27:8f:b5:
53:47:14:1d:5d:f5:5c:50:39:86:52:4f:c8:99:f4:
b4:81:9b:96:c1:67:f5:96:f5:54:e2:46:2a:bc:c7:
bd:63:96:5c:25:c6:82:73:73:ba:66:41:0d:ef:e6:
95:e6:ed:ab:e7:fb:d6:e1:1a:19:7c:39:49:1c:d1:
7c:f2:20:ef:46:de:40:a0:b0:d1:17:89:ad:26:7f:
87:7e:88:6c:00:28:15:57:ea:32:45:de:97:82:9e:
7a:78:59:25:02:5b:f2:c3:87:0c:bf:6a:f2:f7:75:
ac:19:a4:9e:46:6d:41:a1:9d:03:86:a3:4a:d6:cb:
16:59:54:32:5a:74:6f:d6:d1:58:63:70:d1:a9:2c:
f7:3e:83:a1:7e:90:88:c3:5d:ce:40:19:01:7f:8e:
a6:80:a2:f5:37:3e:98:6a:42:5e:0a:24:34:5e:31:
3e:54:68:32:3f:07:11:2a:04:6f:6c:e0:10:0a:1a:
57:1c:6a:8a:2c:56:0a:6c:34:a6:04:06:b6:3c:9b:
5e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:7C:2A:19:AD:94:3F:5D:1D:83:AC:9D:04:47:D8:77:CE:EB:A0:58
X509v3 Authority Key Identifier:
keyid:72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/qXwqGa2UP10dg6ydBEfYd87roFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:4880::/29
Signature Algorithm: sha256WithRSAEncryption
4e:d9:13:3d:ad:f6:ea:53:b8:25:f8:3c:54:52:8d:ad:94:c0:
6f:28:3e:8c:eb:fe:38:98:7f:55:15:0e:34:32:9f:49:a7:4d:
6b:21:94:d3:34:71:3e:8b:88:be:6d:bd:06:2a:d1:55:87:08:
0b:7f:00:ec:32:ce:19:19:19:7e:62:cf:71:28:11:54:9a:34:
1b:64:95:4a:7c:e7:d6:cb:a0:29:68:66:cc:09:7f:d4:22:a5:
d2:19:82:f6:16:82:ac:0f:ab:14:77:77:61:a2:f8:32:1c:63:
33:9c:9c:b5:4d:14:51:a5:0a:5d:ae:b9:b8:3c:db:2b:fd:d4:
59:df:0a:e1:99:ae:52:b7:24:c1:67:93:3c:b3:ab:32:f3:fb:
f6:f6:2d:6a:86:c6:f1:a5:66:00:78:b8:5f:1b:cf:63:4e:70:
1e:c9:4a:2b:30:8d:7c:06:9f:f6:c4:57:ce:6b:ab:73:d6:24:
7f:0d:79:96:8f:ab:00:c3:02:15:69:38:15:e7:39:01:2e:99:
61:85:3f:01:c7:6b:53:d0:7b:63:f9:96:0d:72:3f:5a:c6:2a:
61:aa:36:d7:5d:9b:d7:f2:70:1d:9f:e5:0d:f0:a7:95:1c:75:
c2:14:75:be:11:d3:7a:84:08:5d:b5:43:b9:cf:8c:ad:03:24:
d5:23:2f:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:53 2023 by rpki-client on console.sobornost.net