Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/GHpM1M7t81nerytJsC61KsOlz6U.roa
File: GHpM1M7t81nerytJsC61KsOlz6U.roa (raw, json)
Hash identifier: NK3TaLc0/cDdNImgSDXpROQxwqpeYS9ixOLhnsmBMWg=
Subject key identifier: 18:7A:4C:D4:CE:ED:F3:59:DE:AF:2B:49:B0:2E:B5:2A:C3:A5:CF:A5
Certificate issuer: /CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Certificate serial: 01856C4135289F13A5C57416141FF2E1F971
Authority key identifier: 97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/GHpM1M7t81nerytJsC61KsOlz6U.roa
Signing time: Sun 01 Jan 2023 07:34:50 +0000
ROA not before: Sun 01 Jan 2023 07:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50028
IP address blocks: 2a0f:d300::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 11 Dec 2023 18:06:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:35:28:9f:13:a5:c5:74:16:14:1f:f2:e1:f9:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Validity
Not Before: Jan 1 07:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=187a4cd4ceedf359deaf2b49b02eb52ac3a5cfa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c8:7c:ec:e4:de:4b:af:ae:91:64:73:6c:7e:
18:57:2b:a1:ab:3c:fb:5e:8c:16:27:34:ff:59:12:
81:81:fb:37:84:14:22:7e:9e:88:62:fe:95:74:f9:
72:4a:e5:b8:4a:d5:22:6b:a6:98:e5:46:dd:c5:b3:
5b:da:54:94:bf:e0:d5:91:24:5c:42:a6:01:28:42:
a1:9e:6b:28:f1:71:62:3e:8d:45:57:ca:29:37:ea:
47:5c:c1:dc:22:c2:08:37:91:d2:58:ca:28:c8:da:
eb:17:ba:f4:31:03:55:02:8a:59:30:0c:c2:28:d4:
e2:ab:31:e5:d4:47:ac:ee:57:67:3a:0c:ef:96:0c:
65:52:1c:0a:a0:a8:21:aa:b3:f8:95:48:24:f3:5b:
97:67:cf:a7:4e:d4:d4:fe:a5:e3:13:c4:6e:70:e8:
74:c4:06:bb:f9:5f:b2:45:8f:6a:85:10:cf:61:68:
b1:f4:fa:d0:8b:97:ff:e6:9e:b0:fd:3b:a5:a7:74:
be:fd:71:39:ce:1a:72:b1:f9:eb:b9:c9:58:a3:21:
58:e9:ba:a9:aa:51:47:a3:72:23:b9:b8:6d:1d:0d:
41:da:cd:21:95:36:ba:d1:e8:c6:ab:4e:9f:d8:52:
0c:1f:1f:8a:ab:cb:c8:0f:4d:aa:22:9c:b1:f7:cb:
2e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:7A:4C:D4:CE:ED:F3:59:DE:AF:2B:49:B0:2E:B5:2A:C3:A5:CF:A5
X509v3 Authority Key Identifier:
keyid:97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/GHpM1M7t81nerytJsC61KsOlz6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/l59cqMM_E0w8FX1IucKuTpG2ML8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:d300::/29
Signature Algorithm: sha256WithRSAEncryption
5e:a4:cc:da:c9:2e:4e:9f:c6:ec:05:57:a7:31:c3:eb:6d:7c:
9c:4c:e5:56:de:1f:85:89:fe:61:8c:1e:91:76:72:07:b7:68:
75:cd:c7:78:5e:04:a5:5a:d1:11:dd:2e:80:f5:03:eb:6e:dd:
5f:33:68:b4:82:69:ce:62:c7:2b:0e:b4:6f:2f:8b:16:ce:38:
3b:8e:27:be:ab:65:8d:1f:bb:a8:13:36:13:a9:68:47:b3:de:
1e:5b:0c:60:05:3d:d7:c9:04:20:39:70:93:be:84:e0:10:14:
4a:27:30:12:16:3b:c9:71:0c:40:74:a2:8b:a1:dd:66:86:5f:
1e:bb:d2:ad:c3:2a:cc:5d:71:96:81:c5:70:90:10:87:56:6d:
42:cf:eb:4b:ef:9d:e4:6f:bb:c3:75:48:92:29:0d:b6:50:ac:
90:69:37:61:44:b5:a8:39:12:f7:a0:66:12:81:28:da:3d:80:
89:b4:ca:4c:80:56:69:3d:66:55:45:41:68:b1:19:48:98:e0:
5a:b0:ae:c3:93:53:b5:cf:b2:7a:9a:58:85:91:8b:05:22:7b:
c1:00:da:76:4c:e2:16:2f:f6:9e:19:76:06:2a:1d:fd:6d:41:
66:16:9e:67:12:24:1a:a8:07:60:17:ff:e3:02:93:e0:b8:8d:
f4:f9:10:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:18 2024 by rpki-client on console-ams.rpki-client.org