Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/8c0c00-5fce-45cb-bbb7-01d9e9d31943/1/gpIq3ozirwZ88Lq9rwDes1iJn9w.roa
File: gpIq3ozirwZ88Lq9rwDes1iJn9w.roa (raw, json)
Hash identifier: ihe0eARjpOT3Czns4LEELa1Z5Z14NDXaUPGwb/P/FLA=
Subject key identifier: 82:92:2A:DE:8C:E2:AF:06:7C:F0:BA:BD:AF:00:DE:B3:58:89:9F:DC
Certificate issuer: /CN=cff5dc76eb6f814ed601568fdd2c8110edef8c17
Certificate serial: 018C9787E8C3BB18501721B9BB066BC566CA
Authority key identifier: CF:F5:DC:76:EB:6F:81:4E:D6:01:56:8F:DD:2C:81:10:ED:EF:8C:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z_XcdutvgU7WAVaP3SyBEO3vjBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/8c0c00-5fce-45cb-bbb7-01d9e9d31943/1/gpIq3ozirwZ88Lq9rwDes1iJn9w.roa
Signing time: Sat 23 Dec 2023 16:35:15 +0000
ROA not before: Sat 23 Dec 2023 16:35:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60504
IP address blocks: 2a13:82c2::/32 maxlen: 32
2a13:82c0::/32 maxlen: 32
2a13:82c5:2000::/36 maxlen: 36
2a13:82c5:1000::/36 maxlen: 36
2a13:82c5:6000::/36 maxlen: 36
2a13:82c5:5000::/36 maxlen: 36
2a13:82c5:4000::/36 maxlen: 36
2a13:82c5:3000::/36 maxlen: 36
2a13:82c7::/32 maxlen: 32
2a13:82c1::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 23 Dec 2023 16:45:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:97:87:e8:c3:bb:18:50:17:21:b9:bb:06:6b:c5:66:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cff5dc76eb6f814ed601568fdd2c8110edef8c17
Validity
Not Before: Dec 23 16:35:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82922ade8ce2af067cf0babdaf00deb358899fdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:54:9f:42:83:1a:c9:be:24:d3:c0:60:4d:14:
af:32:5c:2b:b1:e6:f0:a7:da:1c:cb:88:23:ee:4d:
79:5e:17:1e:20:19:a7:99:dc:19:05:e0:12:65:13:
45:82:9c:ea:00:37:dd:81:40:fe:91:ea:b1:21:3b:
ad:08:3b:f4:aa:7c:39:85:09:54:45:1c:0f:53:c1:
ee:f7:2f:26:ae:11:79:76:92:80:d0:c9:47:3e:34:
af:77:9a:89:c0:c1:4c:87:26:0d:43:70:ca:24:cb:
4f:9e:fc:ba:cb:10:7e:9f:0d:b4:e6:80:46:7b:9d:
13:a1:99:b4:59:62:ef:23:02:ee:83:28:70:a7:01:
f8:d6:6b:45:7c:2d:7a:ae:d2:6f:85:9e:8c:17:be:
a5:c6:03:65:f2:b4:e4:8d:c2:47:08:80:a8:b1:db:
8d:29:69:53:e2:83:db:30:a1:00:b5:5e:9b:ab:b7:
ad:58:52:e9:49:a9:85:70:8b:d6:aa:88:a2:95:11:
a6:01:e6:27:46:89:f9:89:f9:b1:92:86:0d:53:67:
12:b2:38:ac:a0:f4:82:97:74:ac:00:bb:88:26:7a:
8f:31:86:7d:41:f6:18:7f:72:c6:b0:0f:d1:81:4f:
9d:cd:a8:11:05:65:e0:ac:8b:24:3f:b0:13:10:27:
af:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:92:2A:DE:8C:E2:AF:06:7C:F0:BA:BD:AF:00:DE:B3:58:89:9F:DC
X509v3 Authority Key Identifier:
keyid:CF:F5:DC:76:EB:6F:81:4E:D6:01:56:8F:DD:2C:81:10:ED:EF:8C:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z_XcdutvgU7WAVaP3SyBEO3vjBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/8c0c00-5fce-45cb-bbb7-01d9e9d31943/1/gpIq3ozirwZ88Lq9rwDes1iJn9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/8c0c00-5fce-45cb-bbb7-01d9e9d31943/1/z_XcdutvgU7WAVaP3SyBEO3vjBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:82c0::-2a13:82c2:ffff:ffff:ffff:ffff:ffff:ffff
2a13:82c5:1000::-2a13:82c5:6fff:ffff:ffff:ffff:ffff:ffff
2a13:82c7::/32
Signature Algorithm: sha256WithRSAEncryption
23:21:44:19:45:7d:2e:47:64:27:b4:da:62:bd:11:2f:4f:8a:
a2:d8:94:d0:3c:0b:dd:b9:9d:5a:af:89:00:70:ca:12:fa:7f:
78:d5:cd:3a:4a:7e:7a:6e:26:c5:6b:fc:19:21:5a:99:f9:be:
96:64:64:16:f5:65:4d:cf:84:8c:42:53:62:38:82:fa:3e:91:
ce:c9:d7:2e:2d:80:cf:4a:70:c4:75:5a:73:1e:69:46:46:bc:
0b:b5:8a:4b:a9:dd:b1:6b:9b:cc:d6:a7:9e:88:20:13:96:c4:
e4:a2:0f:db:01:a0:af:2b:d5:f1:c5:ae:14:18:7b:54:83:23:
ed:66:02:a8:36:a5:b5:24:c5:20:7e:ca:43:f7:36:c0:4e:c9:
48:c8:38:8b:5d:5c:f1:ee:0e:72:16:ad:04:c4:93:13:4f:c5:
95:eb:3e:15:9c:96:1d:10:03:ad:c5:58:d2:af:72:bb:65:88:
9f:2e:92:16:4f:8b:d7:61:d6:e3:2e:32:8f:74:51:28:ce:0a:
f8:66:ce:0b:a7:4e:a9:5b:cf:ee:6c:6f:f6:af:ea:a6:75:e8:
e1:b8:9c:aa:46:8d:59:4a:91:72:fa:43:6b:34:4b:59:c8:ff:
6d:0a:c8:38:35:66:43:f5:44:88:e6:b3:82:0b:ad:25:3c:ea:
93:50:53:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:46 2024 by rpki-client on console-ams.rpki-client.org