Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/gGE9hBmq-VDcWIREdbsNoP1rIo8.roa
File: gGE9hBmq-VDcWIREdbsNoP1rIo8.roa (raw, json)
Hash identifier: zhEi7MmCRyrIOd1kBNKVoL5QSrrVaLlXEc1mqQ/MSmo=
Subject key identifier: 80:61:3D:84:19:AA:F9:50:DC:58:84:44:75:BB:0D:A0:FD:6B:22:8F
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 018AA38E0E6A51FD323B98D67F668B2AC6E3
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/gGE9hBmq-VDcWIREdbsNoP1rIo8.roa
Signing time: Sun 17 Sep 2023 14:31:50 +0000
ROA not before: Sun 17 Sep 2023 14:31:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a0c:b641:130::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a3:8e:0e:6a:51:fd:32:3b:98:d6:7f:66:8b:2a:c6:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Sep 17 14:31:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80613d8419aaf950dc58844475bb0da0fd6b228f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:dc:56:4e:4f:f5:08:8d:0d:69:f0:0c:19:a7:
62:28:06:f7:18:42:70:8e:8c:cb:33:cb:cf:78:d1:
83:96:61:3d:df:6c:77:96:5e:c1:88:bb:59:30:06:
86:cd:2f:82:af:b3:2d:dd:27:ed:a2:ba:01:3a:c6:
3c:11:fb:8c:57:db:2a:47:b2:26:15:7a:68:e4:1c:
c4:2a:c5:fd:86:e9:0a:bf:1a:3f:2e:3d:fd:fa:99:
26:32:d3:5a:85:0c:fa:3d:66:41:6f:21:9d:c3:fb:
c9:28:9e:0e:15:31:02:dc:8e:67:26:da:e7:5c:c7:
9a:71:37:01:ad:4f:20:06:65:77:68:9b:b5:44:ba:
b4:80:0b:41:70:0a:49:27:9e:14:7c:49:e6:ce:db:
9f:69:74:bf:a7:94:c3:72:fd:31:46:7f:d8:31:0b:
01:69:0f:d4:af:3f:32:d2:88:30:f6:8c:cd:0e:af:
50:ed:fe:eb:cf:3d:37:e7:45:f7:ec:10:a7:f3:6e:
0a:e8:23:75:1d:f6:29:39:4c:b0:b2:5d:f9:3e:f0:
c6:3e:c4:93:3e:0e:75:f3:47:d9:9a:49:88:db:bb:
be:d1:a5:be:6a:0d:d0:10:84:1f:2d:1c:81:62:3d:
c6:79:94:7b:6d:70:97:78:df:cb:b9:27:20:0c:a6:
98:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:61:3D:84:19:AA:F9:50:DC:58:84:44:75:BB:0D:A0:FD:6B:22:8F
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/gGE9hBmq-VDcWIREdbsNoP1rIo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:130::/44
Signature Algorithm: sha256WithRSAEncryption
23:bd:c9:ff:c8:5e:95:05:fa:38:98:67:1f:1d:36:ef:9c:50:
38:27:b6:b2:cd:5a:68:ef:b5:bf:78:48:cc:6e:63:79:0d:c4:
60:4e:31:03:af:ca:41:2e:47:71:56:19:15:c0:f1:29:07:42:
56:2e:ed:2c:55:f8:88:9b:8b:4e:85:b5:fd:72:26:6e:f3:5d:
4b:d5:79:08:af:0d:b5:cc:41:29:60:d0:4f:59:b5:2e:bf:1e:
c8:55:13:d0:ee:5e:27:27:ca:96:13:6a:04:fe:a0:5a:49:48:
e2:bd:cf:d1:a6:39:2c:08:16:aa:17:bf:f3:c7:12:14:26:35:
91:13:f2:3c:59:6f:eb:3c:02:88:59:88:b2:34:a0:18:45:88:
2f:22:1c:c1:f5:76:62:8e:64:1d:c4:90:ba:81:b3:38:1a:4e:
96:92:66:c2:9b:e7:c2:35:35:df:9a:68:7c:ce:fc:a8:e9:fe:
a1:ad:40:4f:a2:35:18:00:75:0e:b3:49:4b:cf:b4:31:5a:ac:
8a:12:2b:6c:95:b8:74:06:51:34:e9:7e:1f:c9:30:72:68:a5:
13:d2:94:ab:58:c1:ed:93:31:88:b4:0b:d0:cb:38:4c:4f:a6:
b6:4b:5e:6e:78:9e:63:d8:25:45:79:00:b2:3e:a9:e9:1a:d5:
a4:f1:79:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:06 2024 by rpki-client on console-fra.rpki-client.org