Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/0c14f4-9a47-4a5a-a37d-f3555ddf280a/1/S5hwo8ansG1GYYgSD2H01R-M37E.roa
File: S5hwo8ansG1GYYgSD2H01R-M37E.roa (raw, json)
Hash identifier: /+cKFwtjiGam4YWApt5ofz3MS1MM+Nkot5jTCMDA3S8=
Subject key identifier: 4B:98:70:A3:C6:A7:B0:6D:46:61:88:12:0F:61:F4:D5:1F:8C:DF:B1
Certificate issuer: /CN=195a12a0e73482d993260598a25c8f5a5c49d201
Certificate serial: 0186DADB5B2D12ACF02ABCDBFF9D3980BC8C
Authority key identifier: 19:5A:12:A0:E7:34:82:D9:93:26:05:98:A2:5C:8F:5A:5C:49:D2:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GVoSoOc0gtmTJgWYolyPWlxJ0gE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/0c14f4-9a47-4a5a-a37d-f3555ddf280a/1/S5hwo8ansG1GYYgSD2H01R-M37E.roa
Signing time: Mon 13 Mar 2023 12:04:14 +0000
ROA not before: Mon 13 Mar 2023 12:04:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41107
IP address blocks: 2a03:bc40::/29 maxlen: 128
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:da:db:5b:2d:12:ac:f0:2a:bc:db:ff:9d:39:80:bc:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=195a12a0e73482d993260598a25c8f5a5c49d201
Validity
Not Before: Mar 13 12:04:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b9870a3c6a7b06d466188120f61f4d51f8cdfb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ae:23:5a:21:a3:dd:ec:be:29:c2:2a:6e:e9:
9c:c3:09:83:97:a3:fa:43:a2:82:9d:59:5b:a6:00:
41:6e:0a:6f:1d:c5:5f:84:66:d8:0e:a0:80:dd:b8:
4d:5d:de:01:f3:79:e8:0c:62:6d:d8:ce:ae:fb:77:
26:19:37:24:9b:b7:14:f0:b1:b4:b1:db:28:df:9b:
d5:b4:ff:fd:7e:1f:89:0e:2c:84:da:dd:66:69:26:
16:63:11:ac:79:9c:dd:88:6b:dd:49:c1:5a:4b:38:
f1:9e:88:13:7d:ce:68:29:24:08:7f:50:b0:79:73:
46:95:59:da:0e:1d:72:df:e3:86:b6:cb:84:32:ee:
4a:bc:a9:0e:d2:0e:b1:eb:4d:12:ac:0b:bc:19:1e:
10:7a:83:84:15:d7:2e:b6:b3:19:b3:8e:05:b5:93:
ed:49:47:dd:1f:d1:5f:9a:2f:b9:ca:ef:eb:63:96:
2e:43:b2:cb:a7:37:8e:e8:bf:b5:4d:64:3f:9d:da:
44:1f:bc:12:a7:36:94:67:4d:b0:8b:20:f2:04:e4:
e6:aa:ad:d3:c0:01:d8:40:b6:d4:c3:a8:24:09:da:
42:56:13:9e:1c:0a:98:4c:79:25:db:3a:8e:ec:98:
d3:dc:00:7b:db:20:06:43:e7:ae:d8:c8:89:ac:39:
20:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:98:70:A3:C6:A7:B0:6D:46:61:88:12:0F:61:F4:D5:1F:8C:DF:B1
X509v3 Authority Key Identifier:
keyid:19:5A:12:A0:E7:34:82:D9:93:26:05:98:A2:5C:8F:5A:5C:49:D2:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GVoSoOc0gtmTJgWYolyPWlxJ0gE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/0c14f4-9a47-4a5a-a37d-f3555ddf280a/1/S5hwo8ansG1GYYgSD2H01R-M37E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/0c14f4-9a47-4a5a-a37d-f3555ddf280a/1/GVoSoOc0gtmTJgWYolyPWlxJ0gE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:bc40::/29
Signature Algorithm: sha256WithRSAEncryption
42:c5:5e:43:3c:c9:fd:dc:48:8d:e1:3c:47:bf:9b:c6:04:3f:
07:f3:c7:d5:bd:99:79:1c:4a:80:0b:aa:80:f7:88:ef:da:1c:
1e:06:f0:31:9b:ce:c8:2c:5f:24:2f:62:60:d4:3a:ce:4a:e1:
f1:59:38:c5:cb:47:10:1d:78:ef:b4:ed:70:64:da:82:a0:a5:
2f:21:84:58:35:12:de:6d:b7:09:fa:20:58:78:65:73:26:1b:
d1:0e:80:cc:9e:cc:15:b3:1a:08:a8:5a:0e:a5:47:e4:1d:76:
16:0e:91:49:4f:67:be:f8:38:87:14:a6:46:64:ef:8f:57:a5:
59:5b:0e:76:a3:63:ee:53:aa:97:01:bb:40:a5:85:61:ba:33:
0e:ba:fb:bb:a6:30:77:78:b8:56:e5:ab:4b:c6:29:92:fc:db:
84:69:dc:e4:8a:9b:f9:07:4c:d2:f0:ee:06:82:82:47:bb:b1:
e9:d5:64:da:c9:15:92:94:ad:95:e8:91:cd:55:4d:32:27:c8:
50:a4:ec:4b:09:25:8d:02:e9:6f:d0:98:79:78:8c:f6:41:38:
a2:ba:f9:14:58:26:57:86:7c:50:1a:e3:00:b2:39:7c:59:48:
9d:5e:82:2b:9a:54:20:4a:aa:0a:b2:8b:e9:71:5d:cd:bd:1e:
60:07:ca:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:30:59 2024 by rpki-client on console-fra.rpki-client.org