Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/gsU8JNpyCvxYj1tGUjt6Z6O37h0.roa
File: gsU8JNpyCvxYj1tGUjt6Z6O37h0.roa (raw, json)
Hash identifier: ilowBX+8DQGvrLD51IorRiGVUJI2cu3aAMmAnRi5GJ4=
Subject key identifier: 82:C5:3C:24:DA:72:0A:FC:58:8F:5B:46:52:3B:7A:67:A3:B7:EE:1D
Certificate issuer: /CN=f6af433974df373b70abd76b13e1c70c775f554b
Certificate serial: 0185E9E0AB9AD283FFCE6A42D510686470B4
Authority key identifier: F6:AF:43:39:74:DF:37:3B:70:AB:D7:6B:13:E1:C7:0C:77:5F:55:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9q9DOXTfNztwq9drE-HHDHdfVUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/gsU8JNpyCvxYj1tGUjt6Z6O37h0.roa
Signing time: Wed 25 Jan 2023 17:01:33 +0000
ROA not before: Wed 25 Jan 2023 17:01:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48314
IP address blocks: 2a12:3e80:100::/48 maxlen: 48
2a12:3e80:400::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 15 Nov 2023 14:57:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e9:e0:ab:9a:d2:83:ff:ce:6a:42:d5:10:68:64:70:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6af433974df373b70abd76b13e1c70c775f554b
Validity
Not Before: Jan 25 17:01:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82c53c24da720afc588f5b46523b7a67a3b7ee1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:5e:2b:d3:31:ab:cf:c5:8f:04:77:83:b2:56:
78:82:0b:6e:74:8c:78:5d:e4:f0:0a:a2:a1:5a:5c:
42:7d:bc:fc:26:3f:48:6a:fb:ae:fa:b9:3b:aa:67:
79:a3:16:fc:dc:a6:ab:cb:16:8e:f6:3e:0b:88:a3:
d5:2e:a4:43:71:43:27:96:06:bc:0f:36:84:5d:d4:
60:b4:47:52:7f:d1:43:b0:01:ad:c1:ad:3f:fa:59:
27:12:ba:de:cc:d7:88:e6:5a:e4:0b:32:ec:d2:e5:
ef:31:13:1c:5d:a8:70:7a:ee:da:dc:15:53:5e:45:
98:97:d7:09:a4:54:d6:3c:4a:7b:6e:b2:fd:fb:de:
d8:aa:8f:2b:98:cb:61:9a:07:69:63:49:05:71:b5:
d0:fa:1c:de:40:d5:35:c3:22:d9:31:7a:35:3a:be:
50:fd:2a:a7:09:fe:bb:11:be:4c:06:f4:54:2d:0f:
3a:47:fc:68:25:43:5f:6f:2e:a8:58:b3:f0:da:29:
0b:7f:d0:05:ab:97:39:5e:fc:1c:08:43:a4:b6:16:
00:c9:f0:db:50:27:4b:51:21:06:f7:d1:8b:96:bb:
f5:ef:08:aa:de:15:c9:f7:a3:ea:19:7a:78:e3:d7:
2d:22:28:2f:91:25:42:c5:6b:5b:30:b8:15:2d:96:
08:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:C5:3C:24:DA:72:0A:FC:58:8F:5B:46:52:3B:7A:67:A3:B7:EE:1D
X509v3 Authority Key Identifier:
keyid:F6:AF:43:39:74:DF:37:3B:70:AB:D7:6B:13:E1:C7:0C:77:5F:55:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9q9DOXTfNztwq9drE-HHDHdfVUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/gsU8JNpyCvxYj1tGUjt6Z6O37h0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/9q9DOXTfNztwq9drE-HHDHdfVUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:3e80:100::/48
2a12:3e80:400::/48
Signature Algorithm: sha256WithRSAEncryption
a8:e3:18:5d:9c:26:d0:ff:12:9d:d0:c4:e6:b7:19:c4:40:19:
a3:8e:b2:08:f0:b1:01:72:38:da:a5:77:a2:8e:6f:41:94:e9:
68:66:21:69:32:9e:a5:2e:92:b8:1a:2f:0d:88:a1:a7:42:d6:
02:3d:9b:55:41:37:9f:5b:42:74:10:11:01:5f:72:e5:05:19:
d1:82:17:38:35:b9:18:3b:9e:63:b6:cd:71:1f:5e:39:41:68:
c0:3b:a3:da:03:87:c5:d6:10:6f:79:e4:1e:0f:18:98:fc:9f:
d4:64:48:46:a2:73:e5:e9:f5:5a:82:11:48:dd:8a:1e:92:3f:
e9:77:b2:fc:53:51:3c:67:d2:82:3f:a1:80:fa:1e:10:73:de:
d2:29:88:66:2a:cb:18:6d:0a:fe:97:c5:d8:7e:88:d2:84:d2:
76:cc:1d:c2:6b:9a:64:a6:32:0c:a6:5c:a7:a3:6b:31:22:38:
f7:b8:00:cd:1b:6b:66:e0:7c:d1:7e:77:9d:47:24:ae:59:e2:
a3:41:f2:44:53:97:68:62:a4:aa:c2:15:7e:27:8b:ca:7c:eb:
70:ab:b1:47:6b:1e:8b:b8:6e:f1:14:a5:28:3a:5f:d1:b6:90:
30:82:f8:2c:cb:a0:2b:30:e6:36:9f:48:41:22:1f:cb:f7:4f:
20:90:40:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:18 2024 by rpki-client on console-ams.rpki-client.org