Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/GwBowP25qiA3-k4Vlv16Fk79PuQ.roa
File: GwBowP25qiA3-k4Vlv16Fk79PuQ.roa (raw, json)
Hash identifier: PwX32xuTLaLhse7SZ+UmSV4R4Ex81ArsXqXCZ5RFZ/s=
Subject key identifier: 1B:00:68:C0:FD:B9:AA:20:37:FA:4E:15:96:FD:7A:16:4E:FD:3E:E4
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 018689B6F8C3D940008E7C91EC5FD7FF847A
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/GwBowP25qiA3-k4Vlv16Fk79PuQ.roa
Signing time: Sat 25 Feb 2023 17:55:15 +0000
ROA not before: Sat 25 Feb 2023 17:55:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203868
IP address blocks: 2a0a:280:b000::/36 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:89:b6:f8:c3:d9:40:00:8e:7c:91:ec:5f:d7:ff:84:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Feb 25 17:55:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b0068c0fdb9aa2037fa4e1596fd7a164efd3ee4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:47:d3:5b:67:97:02:6c:8e:8a:d8:39:4b:13:
1b:d1:f7:bb:44:ce:f3:2e:ed:5c:c9:3f:95:00:92:
d1:d6:75:e8:6b:e4:fc:07:63:22:3e:76:a2:bc:7e:
86:8a:14:6e:ed:36:14:a7:9a:0e:d7:8e:1e:7f:d6:
11:ba:5d:8e:c4:70:55:20:11:a6:28:c4:6d:1b:6f:
47:5e:b4:74:bc:db:c7:f0:a9:b0:12:7f:a1:ce:d2:
c8:c3:71:f9:1e:1b:25:89:1a:40:ed:ee:66:17:01:
33:6d:2f:5f:96:ed:3c:79:ee:b3:cd:1c:a3:a4:e6:
7c:37:74:62:5c:7f:be:ea:56:64:e5:37:05:fb:6a:
c5:1a:54:7c:d5:27:0d:f6:87:7d:fe:2b:da:18:f0:
93:bd:82:0e:f1:ef:86:2a:cb:5b:8e:35:48:a8:45:
86:90:75:ad:03:79:1c:09:a6:f5:af:e7:d5:5a:22:
ae:e1:94:b0:04:9c:db:09:4d:bd:90:52:dd:c6:2e:
75:95:39:e9:f4:49:da:e5:4c:21:e9:e8:50:15:5f:
d1:42:62:6f:8f:c8:4f:ad:65:97:7c:1e:0a:d4:4c:
1e:61:a2:fd:72:0a:91:7e:00:c4:20:d2:62:68:3f:
e2:f7:4d:21:cc:60:69:17:93:37:ea:bd:f7:f8:75:
bf:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:00:68:C0:FD:B9:AA:20:37:FA:4E:15:96:FD:7A:16:4E:FD:3E:E4
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/GwBowP25qiA3-k4Vlv16Fk79PuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:280:b000::/36
Signature Algorithm: sha256WithRSAEncryption
51:2b:df:d2:e3:2f:7d:91:66:83:29:74:ca:9e:66:d1:55:cd:
90:29:05:61:5a:77:0c:01:c3:74:9d:07:43:84:3f:05:33:67:
83:d8:6e:e1:3f:9e:3b:7b:f2:82:50:f2:dd:15:4d:26:46:ff:
4a:af:cf:1d:c2:a8:de:8b:e8:ac:94:8d:dc:22:ef:73:2b:94:
d4:9f:27:bf:44:91:31:6d:13:6f:44:71:c3:b9:1d:f7:ea:d7:
9d:76:64:ed:e5:1b:2b:1b:54:1d:65:f3:e7:24:ce:bf:61:58:
1e:00:11:ec:19:8d:4f:36:47:c5:82:e2:91:b6:13:b2:1c:57:
4d:15:09:ff:70:fb:aa:5f:cf:22:45:65:5a:77:5a:ee:9d:52:
3c:66:1f:c5:92:38:48:89:21:06:78:fa:e4:9c:05:60:fb:9a:
61:57:8e:3b:82:4f:83:1a:c7:67:d7:9e:22:3e:46:73:81:a3:
fe:d3:d2:22:bc:4c:ea:46:00:10:26:71:a4:16:d8:79:ba:eb:
f2:ef:f1:bd:bd:39:ec:53:9f:1a:32:56:76:08:18:6f:be:18:
86:ef:21:34:4e:ee:41:c4:69:e0:4d:3f:d4:a4:74:34:3f:c4:
cb:89:db:b9:4a:43:d6:eb:e5:8a:97:28:8f:81:bf:c1:72:1f:
a9:00:60:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:21 2024 by rpki-client on console-fra.rpki-client.org