Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/gdlxOM7MvfodPzT8n7i5Oatmvy8.roa
File: gdlxOM7MvfodPzT8n7i5Oatmvy8.roa (raw, json)
Hash identifier: /nNj9q5aXMmgyMAMkQVm0XvOymTeMFFETubtNQsAWTw=
Subject key identifier: 81:D9:71:38:CE:CC:BD:FA:1D:3F:34:FC:9F:B8:B9:39:AB:66:BF:2F
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 018AB34A2CC201F859C8D1E28E0CB745C414
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/gdlxOM7MvfodPzT8n7i5Oatmvy8.roa
Signing time: Wed 20 Sep 2023 15:51:37 +0000
ROA not before: Wed 20 Sep 2023 15:51:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 2a0c:b642:4002::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b3:4a:2c:c2:01:f8:59:c8:d1:e2:8e:0c:b7:45:c4:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Sep 20 15:51:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81d97138ceccbdfa1d3f34fc9fb8b939ab66bf2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:51:a1:90:9a:a7:ad:e2:c5:81:d5:08:57:71:
94:3d:ec:8d:83:94:78:2a:97:d6:b6:62:3c:f0:ba:
63:8d:da:c5:80:87:30:5a:3b:c3:40:46:5c:c2:97:
b7:01:55:a2:07:9d:3b:e9:70:9b:e3:fb:eb:31:0e:
db:c0:4d:60:b1:62:ef:78:d1:98:1f:b8:68:d4:55:
33:52:71:04:bf:0f:c6:5e:56:47:98:00:81:76:27:
df:d4:bb:7b:7c:fb:1a:bf:c7:0a:8a:03:0f:82:d0:
ae:a1:92:17:0a:2c:09:9d:bf:ec:40:cf:33:e5:69:
1f:03:e3:b5:62:85:04:7a:a5:79:ae:02:01:de:33:
76:61:1c:ec:c9:1f:92:8e:db:df:6f:84:be:82:c7:
2b:81:45:f0:1d:ee:4e:9f:11:a6:2f:02:81:a5:0d:
a7:b3:4f:dd:7b:10:eb:0f:8f:1b:8f:c2:6b:dc:4c:
bf:53:a5:79:db:59:76:1d:67:bf:11:8b:a0:f7:d7:
23:c6:f0:79:2d:9f:3a:85:40:88:44:74:4f:6b:7c:
7b:80:2b:16:a5:89:fe:6f:91:1d:4e:18:47:26:a0:
d3:b0:63:73:33:9c:c3:f6:13:76:90:e3:0d:b3:be:
a2:b5:d1:ea:03:b7:74:26:52:ea:6a:11:8a:39:af:
ab:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:D9:71:38:CE:CC:BD:FA:1D:3F:34:FC:9F:B8:B9:39:AB:66:BF:2F
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/gdlxOM7MvfodPzT8n7i5Oatmvy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b642:4002::/48
Signature Algorithm: sha256WithRSAEncryption
74:a1:4a:27:07:15:f8:3d:13:8c:33:e9:b1:63:bf:65:28:d7:
dd:76:aa:b9:b6:6d:b7:29:73:ca:c6:48:20:d7:60:18:91:c3:
b4:f2:fa:66:0d:5d:a0:b2:c6:cb:fb:82:fc:c8:bb:20:d9:61:
75:0b:c1:0a:9d:81:7c:89:4b:dc:c9:6f:0e:13:ab:f9:36:3e:
9a:ce:92:8c:0d:7d:96:e9:3b:62:05:76:02:4f:37:54:4f:93:
9e:da:5f:55:6f:5a:89:15:3a:7d:12:42:2c:79:32:27:22:9c:
85:08:7d:fb:d7:1f:f7:88:a3:4a:9a:46:44:8a:66:7a:fb:bd:
c1:bd:f1:72:9b:d6:d9:57:cf:55:3d:2f:89:2b:73:36:4e:ee:
ef:ce:39:7c:2a:f1:8b:3a:e7:c8:02:2c:7f:44:3f:8b:99:64:
1f:d1:01:e3:a1:90:32:a9:f3:5a:2f:c1:68:64:49:0c:64:3a:
9f:8c:7c:a2:71:a1:06:f2:51:84:da:f9:2b:3d:24:b5:c5:01:
68:fb:fc:3d:0b:d3:35:a5:e5:de:ba:86:4c:5d:ee:ac:f3:f4:
74:d9:eb:cb:91:2b:0d:8c:d8:da:3c:c5:4d:8e:60:21:2c:a0:
ed:a1:0d:eb:37:7d:b6:a3:f4:ba:29:65:08:0b:85:d0:4b:e0:
39:6d:f8:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 13 16:34:48 2023 by rpki-client on console-fra.rpki-client.org