Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/2eb41a-6fa6-416b-8752-36ef73f2c900/1/gZ45P2SZJlvagXUmdAu98GmmcUw.roa
File: gZ45P2SZJlvagXUmdAu98GmmcUw.roa (raw, json)
Hash identifier: uZydE0uVJEw4DTpT7v341WQ0Kb27zF1joCobb7UNnNk=
Subject key identifier: 81:9E:39:3F:64:99:26:5B:DA:81:75:26:74:0B:BD:F0:69:A6:71:4C
Certificate issuer: /CN=acaec954f476f77ef1a33b619d44a5730bebd7bf
Certificate serial: 01856F66EE1D7A3F74A9BC9624B3F9EE632F
Authority key identifier: AC:AE:C9:54:F4:76:F7:7E:F1:A3:3B:61:9D:44:A5:73:0B:EB:D7:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rK7JVPR2937xozthnUSlcwvr178.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/2eb41a-6fa6-416b-8752-36ef73f2c900/1/gZ45P2SZJlvagXUmdAu98GmmcUw.roa
Signing time: Sun 01 Jan 2023 22:14:54 +0000
ROA not before: Sun 01 Jan 2023 22:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41589
IP address blocks: 2a00:1ad0::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:ee:1d:7a:3f:74:a9:bc:96:24:b3:f9:ee:63:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acaec954f476f77ef1a33b619d44a5730bebd7bf
Validity
Not Before: Jan 1 22:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=819e393f6499265bda817526740bbdf069a6714c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:91:35:63:00:c8:6d:fd:ea:b7:df:ca:9d:98:
4b:19:95:7b:50:db:cd:7c:3e:42:87:ca:21:c5:1a:
78:dd:5f:e4:8e:af:e8:de:56:1a:02:0b:ec:7f:e7:
16:fb:46:6a:24:a0:65:54:bc:de:ab:66:74:11:ca:
94:0f:bc:df:d5:80:e9:38:f1:62:ae:d1:c0:5d:f8:
65:b9:97:0b:a6:19:f4:e7:e6:26:28:45:8a:4f:41:
8f:38:3a:8e:fa:b0:bb:03:31:ed:e1:f0:57:e8:1b:
62:ec:29:dd:a4:e3:62:9f:f9:70:b0:0a:6f:cb:3a:
c9:db:9b:ff:64:45:ef:d3:ab:fe:51:fd:01:ad:9a:
4f:b5:9e:da:48:15:51:8e:c2:b3:75:65:7e:b6:5b:
b0:44:ee:40:91:9e:b4:65:5f:dd:1f:37:c1:b7:2e:
91:95:c9:90:c8:8d:9e:49:4e:64:80:07:96:73:22:
ef:5b:c6:58:b4:29:34:df:5e:01:e4:9e:e1:61:63:
2c:94:08:7d:b9:67:ae:4d:4e:98:41:41:76:fe:19:
ba:8a:ce:7d:e0:7b:94:6d:65:61:a2:03:6c:45:b9:
0a:34:f9:0b:88:57:f5:ba:d9:80:e4:db:0c:b0:71:
94:5d:97:60:20:5c:6e:00:b2:9d:c2:c3:1c:14:20:
51:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:9E:39:3F:64:99:26:5B:DA:81:75:26:74:0B:BD:F0:69:A6:71:4C
X509v3 Authority Key Identifier:
keyid:AC:AE:C9:54:F4:76:F7:7E:F1:A3:3B:61:9D:44:A5:73:0B:EB:D7:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rK7JVPR2937xozthnUSlcwvr178.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/2eb41a-6fa6-416b-8752-36ef73f2c900/1/gZ45P2SZJlvagXUmdAu98GmmcUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/2eb41a-6fa6-416b-8752-36ef73f2c900/1/rK7JVPR2937xozthnUSlcwvr178.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1ad0::/32
Signature Algorithm: sha256WithRSAEncryption
0f:bc:22:17:a3:a4:30:7f:10:c9:c0:da:52:f7:ed:01:9e:54:
e8:cd:4a:e0:26:53:10:8d:3d:bf:22:f8:33:0f:b6:87:4e:a7:
8f:25:d5:c8:3d:45:13:5d:0f:2b:43:4f:99:c4:26:aa:eb:0b:
7f:22:46:07:d4:10:cd:db:b4:63:24:dd:64:49:08:c0:8c:8c:
d1:42:98:83:5c:2e:f3:db:93:de:36:72:0e:c4:b4:13:d6:de:
f7:a7:91:a9:90:24:c1:4c:ea:cd:69:ab:6b:9d:e6:cb:74:93:
60:cd:cf:ef:91:5d:45:a8:10:28:4d:31:97:f6:d0:70:69:3f:
71:94:c2:96:5c:72:4b:3c:38:f4:36:77:b5:00:ee:6d:fa:fa:
72:0b:ca:e2:f5:d3:8c:4e:d9:34:fa:c6:0a:a3:37:2a:17:20:
a8:a5:6f:f1:03:01:94:84:22:be:50:29:93:04:0b:2a:d0:c5:
76:6b:c7:d3:b8:14:d5:08:e9:66:ed:90:77:d3:b0:1e:0c:d6:
06:0a:9c:f2:d8:29:1f:81:69:80:d6:cd:6e:23:83:33:e3:fb:
3e:ed:79:d4:d6:7c:7e:8b:8b:9b:a0:74:02:60:b5:5d:94:aa:
cc:ad:00:46:e0:8b:8c:fb:06:cf:90:9b:fd:44:57:74:55:1a:
a3:45:de:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:02 2024 by rpki-client on console-ams.rpki-client.org