Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/b8-GLmldOdQoCAnPJujrGEjLY7E.roa
File: b8-GLmldOdQoCAnPJujrGEjLY7E.roa (raw, json)
Hash identifier: HmMGJmCqjt9/LZepm4/ZfkDzUJ30QtcQ9nfkxqiKPQQ=
Subject key identifier: 6F:CF:86:2E:69:5D:39:D4:28:08:09:CF:26:E8:EB:18:48:CB:63:B1
Certificate issuer: /CN=76670236cd0e038684a33194bde7d4b95adc66f7
Certificate serial: 0189F4C60F8E9DB1E6440A9141E37B35CD96
Authority key identifier: 76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/b8-GLmldOdQoCAnPJujrGEjLY7E.roa
Signing time: Mon 14 Aug 2023 15:59:28 +0000
ROA not before: Mon 14 Aug 2023 15:59:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 2a05:541:131::/48 maxlen: 48
2a05:541:127::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 14 Aug 2023 17:35:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f4:c6:0f:8e:9d:b1:e6:44:0a:91:41:e3:7b:35:cd:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76670236cd0e038684a33194bde7d4b95adc66f7
Validity
Not Before: Aug 14 15:59:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6fcf862e695d39d4280809cf26e8eb1848cb63b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:44:34:85:e5:39:67:24:c7:22:23:c9:75:18:
b9:dd:f5:6b:1b:ae:9e:65:c6:37:0c:5d:89:2b:24:
7e:ca:f3:88:87:18:ac:2f:15:6b:61:c3:40:92:06:
c1:96:87:f7:b3:8d:e5:43:f2:6f:ad:2a:37:a2:65:
b9:ff:1a:f8:f9:eb:38:f3:d9:c4:70:b8:97:62:51:
a9:40:76:f1:5a:7b:84:0d:7d:f3:07:1a:88:0b:04:
e6:8d:e8:6f:9d:0b:52:59:b7:bf:18:99:46:11:75:
ea:e6:e0:a4:dc:d1:aa:36:32:84:f8:7b:c8:00:4a:
a0:52:03:35:06:26:45:53:48:d5:77:1d:30:96:22:
20:83:2f:e3:c5:86:60:5a:7c:db:31:10:00:f1:c3:
79:45:88:16:ef:db:c2:dd:43:20:45:17:14:cc:38:
30:74:29:d2:8e:44:eb:ec:3e:55:40:48:a2:8f:a0:
29:f2:c6:19:2c:4d:86:c0:42:16:7a:43:f5:3c:a0:
1b:27:52:88:8f:30:3e:24:cc:e8:0a:ca:80:0c:30:
29:f2:19:b6:fb:54:a8:b1:08:d4:79:9b:62:b4:f2:
6f:db:e9:e7:7d:95:ea:fd:f6:57:19:69:68:f7:8a:
95:ea:e8:4a:ce:5c:bd:f8:4b:16:d0:53:a0:60:7e:
67:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:CF:86:2E:69:5D:39:D4:28:08:09:CF:26:E8:EB:18:48:CB:63:B1
X509v3 Authority Key Identifier:
keyid:76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/b8-GLmldOdQoCAnPJujrGEjLY7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/dmcCNs0OA4aEozGUvefUuVrcZvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:541:127::/48
2a05:541:131::/48
Signature Algorithm: sha256WithRSAEncryption
93:d1:fa:db:24:5c:9a:4d:b6:97:62:e9:ad:f6:22:ee:41:de:
8c:55:ed:63:8a:db:fe:12:7b:4c:c2:bd:02:55:25:50:80:7a:
47:dd:e3:ac:8d:b1:1d:ce:67:d4:48:d0:8d:c7:43:55:b4:09:
83:96:34:6c:d0:0e:7a:2a:7b:c2:03:3a:80:61:03:6c:e7:7a:
25:74:d6:81:6b:6a:5c:e5:ab:d5:22:a5:68:38:50:4a:9d:eb:
ef:b9:f6:31:3e:27:a0:bd:b0:0c:ae:ed:8d:da:d1:ce:94:e6:
8a:3e:ff:55:c3:51:4a:49:bb:85:d1:4e:64:c5:72:66:e8:5f:
58:25:18:1c:f2:ee:eb:a5:d5:a7:1d:5a:1e:41:6b:d3:ce:66:
f5:6d:38:bc:0a:cd:0a:75:88:5b:73:ae:b5:dc:ab:69:2f:fa:
25:e1:45:45:d1:40:4a:73:6e:6f:d0:6a:68:17:52:64:f0:a9:
39:8a:dd:b2:e7:2f:a7:cc:4d:f6:6a:82:95:c5:91:2f:ce:23:
f6:29:cc:a7:e1:35:0d:f7:c8:f9:75:8c:3f:b3:58:38:b1:03:
c4:e0:6c:ee:fd:eb:c6:88:68:0f:76:19:41:03:80:93:e2:1a:
0b:16:e3:1c:39:52:27:ab:e3:71:06:7e:cc:82:55:a7:a7:11:
f0:aa:8f:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:42 2024 by rpki-client on console-ams.rpki-client.org