Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/t-G0iR97FLb3zGjyLK5ntaAIugU.roa
File: t-G0iR97FLb3zGjyLK5ntaAIugU.roa (raw, json)
Hash identifier: AZxeDCMt4tQNFJ7jRI3TSVEVG1G4NgfCdj2bdYbjwfU=
Subject key identifier: B7:E1:B4:89:1F:7B:14:B6:F7:CC:68:F2:2C:AE:67:B5:A0:08:BA:05
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 0186CB16C850D0F73E910BABA14C83BECCF3
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/t-G0iR97FLb3zGjyLK5ntaAIugU.roa
Signing time: Fri 10 Mar 2023 10:35:13 +0000
ROA not before: Fri 10 Mar 2023 10:35:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 2a0e:8f02:f05a::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cb:16:c8:50:d0:f7:3e:91:0b:ab:a1:4c:83:be:cc:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Mar 10 10:35:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7e1b4891f7b14b6f7cc68f22cae67b5a008ba05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e7:41:bf:6c:4d:46:bc:dd:7c:8a:d7:b1:9d:
bf:89:59:0f:31:1e:cf:ef:e8:e1:54:84:75:07:e8:
fc:65:a6:f4:23:9f:14:bf:83:b4:3f:27:e6:ea:1c:
5d:36:3e:4d:17:6b:94:2b:39:53:ec:2e:38:50:ca:
73:0c:f7:9e:9a:e0:e1:f8:ab:61:a4:af:e7:d2:43:
a4:4a:0d:ef:c2:41:2c:da:dd:9f:75:5a:ab:58:57:
a7:e6:74:93:63:ba:8e:ab:15:fe:86:c4:80:2c:48:
9f:9c:25:04:3b:d7:bc:3f:c2:4c:7d:cb:b7:fc:41:
9e:41:1c:40:85:04:de:a4:af:d3:1c:10:e2:65:72:
dc:66:ec:82:3b:00:10:3d:b4:fd:63:e8:06:2e:be:
37:1e:56:b7:c6:fd:0a:1a:58:2d:e8:c6:26:01:98:
9c:14:71:4f:20:28:de:c4:d3:60:b0:d7:1a:5a:8c:
7d:f9:f7:67:31:86:20:d0:88:a7:70:8a:60:d1:c0:
8f:be:ba:a9:8f:f3:89:50:1c:28:76:56:51:40:c7:
5a:ab:60:3f:8a:17:47:bc:20:b0:40:6d:0f:b5:70:
d8:04:29:ae:86:c2:f9:a6:3a:c0:b3:cf:2a:79:8b:
d5:c2:74:e6:d3:a6:2a:4f:d4:cb:6c:12:39:5d:52:
ea:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:E1:B4:89:1F:7B:14:B6:F7:CC:68:F2:2C:AE:67:B5:A0:08:BA:05
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/t-G0iR97FLb3zGjyLK5ntaAIugU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f05a::/48
Signature Algorithm: sha256WithRSAEncryption
75:1b:d5:82:b0:6c:84:53:12:78:8b:9d:c9:2b:fc:e1:4a:eb:
de:78:93:2b:2d:65:85:b9:89:55:e6:ec:0e:4a:b6:8e:00:ba:
5c:83:dc:b2:e9:17:18:bf:6e:83:24:93:f2:ed:47:60:f8:8d:
c4:f7:bc:d7:bf:da:a2:ed:70:5b:a7:3e:3c:62:eb:81:bd:30:
ca:9d:ab:18:76:4d:2c:ae:b5:7d:97:a9:81:e3:e9:5d:fd:61:
06:65:d5:aa:65:37:7a:6a:4d:a3:3e:bf:d7:ad:b5:b5:70:47:
74:08:a0:27:c6:d5:4a:99:f7:0c:9a:02:65:16:1c:97:bb:b9:
9c:2b:0d:31:7b:c8:43:b4:4f:5f:d6:fe:81:3d:e0:e3:4d:2f:
71:83:84:e2:a6:df:ce:a9:74:1f:61:33:85:46:ca:7c:75:3c:
58:16:35:8c:3e:8d:74:e4:ca:b8:a1:17:6e:97:eb:a1:0f:45:
d7:14:a3:b9:f5:d8:44:ed:d9:e2:ba:ff:e2:c5:f5:f1:e4:04:
68:fd:34:a3:61:ff:07:51:c2:0f:35:52:5b:5a:9c:3c:8c:79:
08:4b:10:df:86:e9:2c:30:b3:e4:95:62:0d:82:3b:fb:c8:52:
b8:47:d4:0a:7d:48:5a:e7:56:87:87:a7:18:d5:6c:ef:f9:54:
1d:d7:b1:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:00 2024 by rpki-client on console-ams.rpki-client.org