Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/HG7fnISIwVxvld6GQGmEHBIQSGI.roa
File: HG7fnISIwVxvld6GQGmEHBIQSGI.roa (raw, json)
Hash identifier: 74+ele2S22P5HFWgs83NeN4eXlkq5g2pWlWRLWKgr4U=
Subject key identifier: 1C:6E:DF:9C:84:88:C1:5C:6F:95:DE:86:40:69:84:1C:12:10:48:62
Certificate issuer: /CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Certificate serial: 018B9187782D3BCFED4CF6FA052E918768CF
Authority key identifier: C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/HG7fnISIwVxvld6GQGmEHBIQSGI.roa
Signing time: Thu 02 Nov 2023 19:34:16 +0000
ROA not before: Thu 02 Nov 2023 19:34:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199962
IP address blocks: 2a05:b0c7:101::/48 maxlen: 48
2a05:b0c7:103::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:91:87:78:2d:3b:cf:ed:4c:f6:fa:05:2e:91:87:68:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Validity
Not Before: Nov 2 19:34:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c6edf9c8488c15c6f95de864069841c12104862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:cb:5c:5c:07:71:f9:6e:0d:85:d4:d5:0e:ba:
54:9d:d3:b6:89:83:28:05:0e:92:a7:6e:c5:b9:df:
6a:c1:3c:59:1a:8b:3e:16:d2:d9:d0:ca:a7:ad:52:
b6:ba:90:d6:90:6e:94:e8:28:15:9d:39:d9:8f:58:
1a:8f:4c:0d:dc:74:6e:9f:f6:c4:9d:2f:28:96:4e:
af:c8:29:cb:79:da:0d:3c:6d:61:2e:6b:17:8e:12:
a6:96:31:2f:73:00:18:a8:32:5b:a8:c0:c9:89:73:
a5:3a:b5:a9:9e:49:3b:79:c0:6d:b6:6a:ca:b7:21:
4e:eb:71:d3:f8:9f:dd:4d:b3:1e:50:0a:30:bc:7b:
ee:44:4b:f5:b8:57:07:61:b4:73:21:a3:f7:d0:b2:
fe:e4:b1:30:1b:30:17:ea:ef:e2:fe:d9:90:01:31:
1f:83:fb:6c:2b:44:af:23:ce:86:35:1e:8e:49:dd:
f3:42:ab:51:1e:84:eb:f6:55:33:d1:75:39:e1:d7:
06:8a:ec:ed:fc:42:4c:c6:05:d8:fe:71:c8:86:f6:
1f:72:de:2b:ee:26:c3:68:84:03:62:a3:d4:8e:bc:
c1:08:44:c7:b3:d4:ad:b7:ca:b4:97:0a:d9:a2:01:
ba:07:8d:92:44:1f:2d:4f:10:52:11:56:93:39:bd:
a1:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:6E:DF:9C:84:88:C1:5C:6F:95:DE:86:40:69:84:1C:12:10:48:62
X509v3 Authority Key Identifier:
keyid:C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/HG7fnISIwVxvld6GQGmEHBIQSGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/wig0jpBUlz16X4GTvU5cRPZzmeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b0c7:101::/48
2a05:b0c7:103::/48
Signature Algorithm: sha256WithRSAEncryption
53:d7:3a:a0:ef:86:6f:6a:3b:62:e0:c0:cc:0d:7b:6c:85:10:
c0:82:ec:2a:d7:be:0a:cd:c4:03:04:98:b1:0a:ae:42:59:e0:
f5:da:67:e5:cc:d0:80:f5:8c:2f:11:7a:b7:9c:75:ea:b8:26:
54:c6:d9:51:19:0c:72:99:90:f6:47:e2:d4:30:5f:ba:5f:00:
70:46:f8:20:91:a3:2f:4a:14:53:c0:3b:f4:ff:aa:de:8b:3b:
39:dc:b6:d6:8f:41:ac:6e:c9:eb:8a:ba:ad:61:f8:be:95:88:
0b:85:59:4d:8b:98:95:5e:35:d4:30:44:b1:1c:6e:f5:79:25:
32:f3:54:6c:b5:db:75:79:e6:fa:42:cf:eb:2b:98:0a:b2:66:
18:ee:b8:84:b4:e5:d1:a3:1c:57:b5:c5:ab:ae:f6:4c:1e:1d:
64:8f:0d:c9:6d:ca:75:a9:dd:8d:f7:ff:7e:79:7c:c4:fb:16:
98:ad:04:57:12:9c:1e:0a:37:5a:50:2a:f7:22:ce:cd:a8:30:
7c:70:54:a9:d5:fd:d0:4a:f1:fb:eb:2c:c9:f4:3b:d4:50:d2:
ad:a8:65:0b:49:84:9c:74:c0:e4:1f:37:72:ec:16:91:ba:0b:
27:a6:01:38:67:51:a9:38:86:0e:eb:60:4d:ba:ac:01:1b:e9:
19:c7:cf:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:21 2024 by rpki-client on console-fra.rpki-client.org