Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/gulY006I-RY4fbelZuzlG4xKwOg.roa
File: gulY006I-RY4fbelZuzlG4xKwOg.roa (raw, json)
Hash identifier: 8Se1oJutuBGcb5TwfLPNjZTE18ZGxRoYCdtkaJEs3ss=
Subject key identifier: 82:E9:58:D3:4E:88:F9:16:38:7D:B7:A5:66:EC:E5:1B:8C:4A:C0:E8
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0185738FF34636E90EC6D7971546D7DE33EF
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/gulY006I-RY4fbelZuzlG4xKwOg.roa
Signing time: Mon 02 Jan 2023 17:38:11 +0000
ROA not before: Mon 02 Jan 2023 17:38:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60113
IP address blocks: 2a0b:b86::/40 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:8f:f3:46:36:e9:0e:c6:d7:97:15:46:d7:de:33:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 17:38:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82e958d34e88f916387db7a566ece51b8c4ac0e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:dc:c4:94:90:90:f2:d5:d1:c2:34:ad:c8:64:
17:47:60:23:3d:a0:4d:24:9b:6e:bb:9c:fb:0a:11:
c8:97:a5:65:93:51:d1:2f:ef:5b:13:b4:47:e2:08:
5b:4b:69:70:54:a8:dc:48:00:1d:a4:b1:0a:0d:4f:
7d:19:65:82:ea:81:e3:a7:c3:e6:8e:fc:c7:9d:c2:
b7:7e:f4:5e:c6:4d:d5:80:83:6b:bd:f5:08:a5:a8:
78:eb:f6:29:37:f8:e5:71:9e:b4:0e:6a:5e:59:84:
16:b2:ab:af:49:22:b6:25:59:b2:fe:c5:c6:d7:24:
41:cd:26:e5:72:c4:ba:84:42:cc:c5:b1:ad:97:56:
d6:44:11:cf:56:98:72:1d:bf:2d:0d:a1:da:66:97:
fe:7f:7d:38:0b:4e:ea:ae:2c:86:dc:c8:ef:c6:8c:
12:48:7b:da:65:3a:40:23:3d:0c:a7:1b:a6:8d:69:
8c:06:42:a3:97:63:fd:bc:df:c2:51:a1:d0:d2:10:
ce:67:7f:59:c6:3d:83:a0:28:17:58:1b:72:55:fa:
06:d5:53:1c:aa:08:dc:49:9c:eb:e3:b7:3b:8c:d1:
e0:a6:cc:3b:d6:fa:e7:ba:18:55:26:e8:8f:2b:d7:
ef:bb:bb:47:c6:ae:84:34:fe:2a:99:d6:d2:ad:13:
95:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:E9:58:D3:4E:88:F9:16:38:7D:B7:A5:66:EC:E5:1B:8C:4A:C0:E8
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/gulY006I-RY4fbelZuzlG4xKwOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b86::/40
Signature Algorithm: sha256WithRSAEncryption
d3:00:f7:59:d3:e0:34:62:e6:31:37:8e:d1:da:2f:8b:6d:eb:
28:7a:74:00:19:e9:25:2f:12:91:a7:64:d2:24:ea:c1:ed:a6:
a2:0f:08:bb:4e:61:0d:5b:a2:ae:c7:cf:10:37:e1:4d:e8:33:
fa:60:2d:ec:af:d4:aa:95:b8:68:26:ae:a9:5a:50:b5:76:4d:
3b:ed:93:57:56:f0:2c:df:5b:48:9b:7a:4e:5c:2c:f1:eb:ac:
da:ec:9e:e2:4b:d1:09:83:dc:c2:dc:ee:0b:c4:53:f4:36:27:
cc:a8:53:d9:aa:25:7c:91:fb:db:e2:2b:f2:fd:9d:1d:66:98:
1e:a4:8c:4f:1a:ea:b0:e5:57:bb:22:37:cd:51:38:84:f0:c7:
44:ad:75:3b:57:64:80:a3:d0:4d:59:78:a3:f6:cd:80:be:ac:
c2:6d:d7:98:00:d9:62:44:c4:f3:1a:c2:64:48:3a:df:6d:a2:
82:88:fa:c7:f0:38:c5:d1:7f:e7:02:60:9a:f7:44:ff:71:eb:
32:86:6a:39:6a:31:07:9d:7b:98:f2:d8:85:cd:cc:1a:39:a8:
1d:1a:0d:07:1e:b5:0a:da:a0:e9:c3:3a:41:ec:4b:d6:2d:d3:
b5:66:a1:ed:aa:15:85:76:c3:e8:96:df:8c:89:93:16:2f:90:
29:56:7b:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:39 2023 by rpki-client on console-fra.rpki-client.org