Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/1-gEVypA_BLTULp1RWgb5FcMzkzE.roa
File: 1-gEVypA_BLTULp1RWgb5FcMzkzE.roa (raw, json)
Hash identifier: nvz3AgocvegvKm3LS6TCbtpnxb8OVCDPugm+lDeusnI=
Subject key identifier: FA:01:15:CA:90:3F:04:B4:D4:2E:9D:51:5A:06:F9:15:C3:33:93:31
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 018CC3B67E1CFFEA5D1EC9EA5494EBDA265B
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/1-gEVypA_BLTULp1RWgb5FcMzkzE.roa
Signing time: Mon 01 Jan 2024 06:29:26 +0000
ROA not before: Mon 01 Jan 2024 06:29:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 2a09:ff00:8800::/37 maxlen: 48
Validation: Failed, certificate revoked on Tue 06 Feb 2024 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:7e:1c:ff:ea:5d:1e:c9:ea:54:94:eb:da:26:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 06:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fa0115ca903f04b4d42e9d515a06f915c3339331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:cd:e9:06:3b:c5:29:0b:40:fe:29:6a:a4:86:
49:33:e6:2a:38:f3:f6:88:2e:c7:01:b3:34:2e:5c:
37:d3:6f:cd:cc:c3:b5:08:07:27:2b:a3:38:39:e3:
9f:76:8a:76:db:79:11:f2:38:8f:4e:4c:75:fa:91:
42:f6:fb:b5:8d:c3:5c:f5:ba:f0:58:ad:7f:76:26:
f7:96:38:4f:a1:a6:30:d1:da:c9:65:a5:89:2b:6e:
76:db:18:e0:7c:cb:18:cc:ef:d3:fe:fb:b1:92:92:
e2:8d:a7:ce:98:63:0a:1b:eb:c0:27:96:d7:6d:55:
33:fa:58:c8:8e:1a:f7:50:de:94:6e:07:a2:e4:67:
82:1a:fb:cd:26:e8:e7:0b:0e:3c:1d:eb:ee:ae:aa:
e2:c7:c1:91:23:6a:72:9f:ca:cd:7a:76:54:ef:0d:
39:8d:71:bd:88:59:b0:e0:c1:db:56:72:29:a5:a5:
fd:ce:ba:53:8e:99:4f:67:cb:1d:a8:cd:a6:2f:4b:
60:74:3e:8b:12:ea:66:4d:21:06:d8:04:39:08:b6:
f3:97:9d:38:1d:22:f9:a5:7c:0c:d8:3d:3f:72:15:
f3:9b:10:f0:a3:d4:cd:fd:24:65:bb:02:c8:30:91:
9c:8d:4a:8f:9a:75:b0:5c:f4:d8:66:24:d7:c1:fa:
02:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:01:15:CA:90:3F:04:B4:D4:2E:9D:51:5A:06:F9:15:C3:33:93:31
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/1-gEVypA_BLTULp1RWgb5FcMzkzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:ff00:8800::/37
Signature Algorithm: sha256WithRSAEncryption
55:04:ff:d0:47:a8:37:6c:4b:37:86:69:d0:53:79:c5:97:d7:
ad:de:59:9d:b3:d9:c6:83:06:bc:3b:1a:8b:16:e8:2e:0b:2d:
27:be:d4:a4:33:6a:b0:8f:9a:27:63:9a:48:bc:3d:17:ba:5b:
c9:f9:77:90:83:ea:dc:5e:1f:be:3b:31:a3:48:fe:0d:20:47:
e7:e5:18:98:93:43:ae:7d:7f:81:0a:7b:90:02:b1:43:b9:c7:
11:5a:79:48:c8:2a:48:15:28:7d:4e:6d:0d:2a:57:75:c2:02:
59:7e:5a:98:62:7d:fd:85:ea:4a:ca:b6:10:3d:1f:5b:ed:b3:
5b:0b:c9:af:50:60:c3:95:e7:e5:43:94:c4:b2:a1:ed:0f:9a:
0e:4d:fd:26:02:d2:3c:0b:c1:e7:c8:12:97:b3:ab:11:3f:4a:
9c:35:63:41:59:cd:79:b6:1c:13:89:07:2c:0f:97:d2:4b:e2:
51:cc:42:d3:1c:a2:3e:7f:e0:6f:ed:b6:9c:b5:d6:8a:5b:ae:
00:c5:c1:88:27:92:4b:f8:07:04:e8:db:42:ef:20:19:c1:af:
1e:01:dc:c9:1c:57:e1:9e:c4:bf:18:b7:68:87:a8:26:f8:10:
16:6f:d0:19:e6:26:2b:ae:a7:c9:ca:3f:eb:5c:a0:f3:4b:0f:
e4:b3:8f:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 7 00:25:26 2024 by rpki-client on console-fra.rpki-client.org