Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/GhOM_yUxu-jfN6_b5FgPtfA6nV4.roa
File: GhOM_yUxu-jfN6_b5FgPtfA6nV4.roa (raw, json)
Hash identifier: przrD9TqOzpfOpFFRjk93VyRkRkmV64yh7g0sodt8lg=
Subject key identifier: 1A:13:8C:FF:25:31:BB:E8:DF:37:AF:DB:E4:58:0F:B5:F0:3A:9D:5E
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 018A07CE737AC2241873EA1110DB8E59A439
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/GhOM_yUxu-jfN6_b5FgPtfA6nV4.roa
Signing time: Fri 18 Aug 2023 08:41:24 +0000
ROA not before: Fri 18 Aug 2023 08:41:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207252
IP address blocks: 2a0d:2682:9000::/36 maxlen: 36
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:07:ce:73:7a:c2:24:18:73:ea:11:10:db:8e:59:a4:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Aug 18 08:41:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a138cff2531bbe8df37afdbe4580fb5f03a9d5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c7:28:dd:24:95:49:a2:52:75:b1:b0:84:d6:
7f:47:eb:81:27:2b:3f:02:24:16:89:cd:d9:e5:0c:
d6:29:7e:84:9c:72:8c:5d:9a:64:7a:43:b7:58:49:
88:00:e2:c3:9f:b5:6c:50:f0:6a:b1:5c:2b:0f:9a:
c1:6d:b2:ad:fc:52:83:1a:69:e0:25:0b:a2:e2:47:
3b:96:bd:68:08:cf:c6:85:97:65:7c:47:9d:63:5e:
db:34:30:98:60:ac:dc:f5:a4:5e:8f:01:4a:c6:b8:
72:d0:9f:82:11:ef:7e:58:29:77:ab:f6:17:6f:3e:
d3:5f:34:2e:ab:05:80:84:8b:61:57:92:90:59:1f:
e3:49:09:1d:95:59:9a:7b:41:be:03:dc:10:48:58:
4d:7a:15:ec:8e:4b:47:e1:10:e2:cc:ff:55:27:1d:
52:82:f1:06:32:8f:4a:9e:81:e5:fb:69:92:2d:ae:
ce:cc:cc:c7:21:31:af:2c:9c:ff:43:8a:6d:d6:35:
d1:e9:47:65:75:b1:6c:ba:1a:95:b8:26:f7:62:a3:
46:25:76:d5:3f:f5:29:6f:99:78:b9:8a:4d:11:d2:
59:42:fa:64:64:b0:15:18:cb:34:ca:bf:dd:83:4a:
78:ee:5f:2c:90:6b:5c:28:99:c6:ed:b7:05:02:95:
6c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:13:8C:FF:25:31:BB:E8:DF:37:AF:DB:E4:58:0F:B5:F0:3A:9D:5E
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/GhOM_yUxu-jfN6_b5FgPtfA6nV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2682:9000::/36
Signature Algorithm: sha256WithRSAEncryption
22:f2:4d:ad:71:78:98:85:ef:b3:79:83:33:5c:6d:6a:9b:13:
ac:e4:57:d8:57:0b:47:ad:60:78:a3:20:81:e0:ec:d3:35:15:
2c:4d:60:54:07:88:b6:75:59:86:de:71:61:55:97:d5:a1:33:
5a:a0:42:22:8a:04:75:b6:9b:c2:9c:97:a6:22:c3:dc:01:11:
24:6a:38:b0:f6:c4:2d:9c:09:59:bb:3c:04:85:ea:88:d5:b2:
a7:ed:a7:13:41:a8:62:15:49:f1:fb:5e:6c:28:73:64:4a:d2:
76:67:9d:58:d7:81:ee:57:f0:c3:00:71:68:2c:83:69:20:9f:
e6:61:1c:b7:b2:9b:aa:86:95:5f:87:b7:e8:d9:a1:78:f9:80:
fb:3d:50:d3:7a:08:7b:d0:66:f7:ec:1f:d9:84:27:58:96:70:
d0:ce:c5:0d:33:78:ea:89:6a:9a:32:b8:7b:56:9b:38:6a:98:
7d:95:55:35:e0:37:68:54:48:ac:db:58:72:a7:bf:69:0f:6a:
58:06:4a:14:1d:e4:d7:a5:41:f5:c7:6d:11:d7:d6:69:ef:4d:
f1:c9:c7:35:bb:27:f4:ba:44:4e:d0:08:20:fd:54:d7:cb:aa:
db:6a:08:5b:aa:37:28:df:b9:ec:3c:56:a2:78:e5:dd:1d:ff:
26:0c:5e:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:35 2024 by rpki-client on console-ams.rpki-client.org