Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/GSIDctHF4tvHrLuTnKLsLY8Qf-c.roa
File: GSIDctHF4tvHrLuTnKLsLY8Qf-c.roa (raw, json)
Hash identifier: yy80WH1H4LyeqddV0+JWVAEr9hffLTwRIqvD2Y9ZXYA=
Subject key identifier: 19:22:03:72:D1:C5:E2:DB:C7:AC:BB:93:9C:A2:EC:2D:8F:10:7F:E7
Certificate issuer: /CN=fdd6ee010b990a33735756b4fe2f3d3c2671dd9d
Certificate serial: 018A353A7A435B96490114191E97E3D9FC92
Authority key identifier: FD:D6:EE:01:0B:99:0A:33:73:57:56:B4:FE:2F:3D:3C:26:71:DD:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_dbuAQuZCjNzV1a0_i89PCZx3Z0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/GSIDctHF4tvHrLuTnKLsLY8Qf-c.roa
Signing time: Sun 27 Aug 2023 04:22:19 +0000
ROA not before: Sun 27 Aug 2023 04:22:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200105
IP address blocks: 2a13:a5c5::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:35:3a:7a:43:5b:96:49:01:14:19:1e:97:e3:d9:fc:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdd6ee010b990a33735756b4fe2f3d3c2671dd9d
Validity
Not Before: Aug 27 04:22:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19220372d1c5e2dbc7acbb939ca2ec2d8f107fe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:37:c4:bf:2c:0c:df:a5:93:7f:e8:e9:3f:70:
3e:13:4e:90:70:0c:85:2c:1f:ed:a2:d6:92:4e:ee:
39:ae:17:73:c5:5e:e7:cc:25:4c:9a:f4:4f:42:d1:
8b:90:18:93:9c:de:d8:a2:2b:2a:35:7a:76:94:29:
04:52:cc:31:46:be:3b:ed:f1:54:1c:00:09:5b:4a:
d4:61:32:35:50:42:fc:d8:af:75:39:24:9a:d9:5a:
b5:d5:eb:4e:fb:0c:a1:a1:e9:3b:92:5a:0d:a5:85:
1f:55:dd:16:c1:38:a8:0a:70:74:ca:3b:a0:a7:73:
cb:61:c6:a7:03:dd:d9:c8:53:de:68:16:23:a1:0a:
74:9c:53:ae:45:c0:7a:a8:2d:51:ab:06:5c:86:a6:
81:b7:99:61:1c:d6:4c:4d:f5:b3:19:3a:e7:dc:48:
76:c8:77:75:33:8b:3c:c3:ba:0a:85:d6:db:26:93:
c0:d1:30:ef:7f:e4:7f:a4:c0:f7:34:df:9d:89:d7:
17:f4:cb:42:f2:58:12:59:d4:6b:1b:af:aa:16:c3:
37:06:70:36:5a:e7:72:4d:ce:4b:29:4f:aa:2c:fc:
be:5b:c5:3b:40:81:30:7f:e9:67:fe:c9:37:69:d7:
a9:22:82:5f:d0:2e:68:6b:53:08:aa:96:e5:62:3f:
13:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:22:03:72:D1:C5:E2:DB:C7:AC:BB:93:9C:A2:EC:2D:8F:10:7F:E7
X509v3 Authority Key Identifier:
keyid:FD:D6:EE:01:0B:99:0A:33:73:57:56:B4:FE:2F:3D:3C:26:71:DD:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_dbuAQuZCjNzV1a0_i89PCZx3Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/GSIDctHF4tvHrLuTnKLsLY8Qf-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/_dbuAQuZCjNzV1a0_i89PCZx3Z0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:a5c5::/32
Signature Algorithm: sha256WithRSAEncryption
2e:61:a3:04:0a:af:d2:7d:73:81:e3:55:b6:ee:51:3c:2b:d5:
f3:4a:7e:15:26:65:7b:1f:3a:d5:9b:0c:bb:af:69:0d:b1:e9:
81:6c:07:1f:0b:d5:47:98:47:c9:34:a5:be:7d:22:d3:15:16:
fd:89:c6:88:63:b4:66:73:bd:e9:85:86:bc:83:6f:1a:7c:1e:
44:ed:03:a2:3d:8f:71:af:d1:25:60:bf:90:0f:5e:a6:bd:77:
f5:44:65:de:6b:de:68:38:af:bb:ae:1f:b3:47:e4:18:f2:95:
3f:14:49:2d:4a:16:7b:94:2e:a0:f7:b6:4c:71:07:c5:1c:ec:
92:b4:55:0f:73:29:96:b2:13:f8:85:dc:4a:f7:de:c9:a4:2b:
65:59:77:8a:b3:1e:d5:f2:a3:3d:bc:7f:43:4f:b7:74:f3:9b:
a9:13:10:68:b2:91:c7:a2:9a:bf:20:3f:72:1f:13:4e:9c:7c:
b4:78:f7:ee:4b:7d:3d:70:59:e3:11:8c:07:24:40:17:3c:3c:
1a:48:c3:97:a3:a4:9e:99:b2:de:0f:17:25:fc:72:4a:ce:c1:
e9:fa:60:e8:fd:21:54:c9:8d:4c:ba:5c:41:14:d8:2e:1e:d6:
2e:c1:81:6e:ea:0b:4b:31:38:f8:6a:97:1d:a0:37:5c:34:fb:
24:c4:fb:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:52 2024 by rpki-client on console-ams.rpki-client.org