Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/gA0DY-ZqfAhRRAjwH9GhD2MzNPU.roa
File: gA0DY-ZqfAhRRAjwH9GhD2MzNPU.roa (raw, json)
Hash identifier: MtSvl+L/TlHmbonFs8gHRx/6tJHIocCGMfEHqcC4F98=
Subject key identifier: 80:0D:03:63:E6:6A:7C:08:51:44:08:F0:1F:D1:A1:0F:63:33:34:F5
Certificate issuer: /CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Certificate serial: 018570B066FB6D3C3B8A518485A2D98923AE
Authority key identifier: C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/gA0DY-ZqfAhRRAjwH9GhD2MzNPU.roa
Signing time: Mon 02 Jan 2023 04:14:46 +0000
ROA not before: Mon 02 Jan 2023 04:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208753
IP address blocks: 2a05:b0c6:200e::/48 maxlen: 48
2a05:b0c6:200b::/48 maxlen: 48
2a05:b0c6:200a::/48 maxlen: 48
2a05:b0c6:200d::/48 maxlen: 48
2a05:b0c6:200c::/48 maxlen: 48
2a05:b0c6:200f::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:66:fb:6d:3c:3b:8a:51:84:85:a2:d9:89:23:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Validity
Not Before: Jan 2 04:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=800d0363e66a7c08514408f01fd1a10f633334f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:12:9f:f8:6b:dc:eb:28:dd:fd:8c:6f:f7:06:
8f:7f:23:12:13:16:04:0f:63:73:19:a6:32:72:34:
c2:ac:11:de:81:aa:4b:b4:28:a7:11:e3:b4:53:92:
e8:bc:0f:31:10:a6:11:ee:65:3b:19:76:65:ff:37:
fd:fb:d9:52:4a:63:cc:90:91:0e:a6:1b:e3:a2:78:
88:af:58:a1:22:c6:25:e7:7c:99:1a:8e:6b:90:e5:
fe:5b:58:2e:be:80:93:de:cf:68:71:1a:d5:5c:ad:
d8:12:93:25:8b:e1:e5:ce:3b:f5:14:8a:41:e6:24:
d1:ca:aa:45:ee:ee:9d:24:87:98:44:c2:99:4a:4c:
cd:72:8f:d0:eb:57:9a:81:bd:3c:36:bf:1a:2e:f6:
a0:93:6a:10:a1:ca:03:71:d1:a4:69:0e:2e:68:75:
13:4b:e2:33:ef:4c:2d:09:5d:46:6a:30:9b:65:4f:
dd:8b:2c:95:e6:f1:cb:41:51:44:47:97:7b:1c:24:
f8:39:cb:4e:3b:b1:75:77:e9:8b:b7:93:18:85:db:
08:34:76:90:c3:10:50:1e:5c:e6:10:a5:34:06:79:
2a:37:ad:5c:54:10:63:cb:31:1e:65:ea:1f:9a:d2:
3a:68:50:74:20:ba:ca:73:0b:cc:1c:20:e1:3f:a9:
09:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:0D:03:63:E6:6A:7C:08:51:44:08:F0:1F:D1:A1:0F:63:33:34:F5
X509v3 Authority Key Identifier:
keyid:C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/gA0DY-ZqfAhRRAjwH9GhD2MzNPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/wig0jpBUlz16X4GTvU5cRPZzmeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b0c6:200a::-2a05:b0c6:200f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
86:21:d6:57:7f:e3:99:89:d5:42:bf:09:33:9d:72:01:7a:44:
78:29:7b:6d:9b:f0:2e:0a:36:c7:88:cb:67:51:53:3e:67:24:
c8:f5:fe:3c:2b:cb:70:30:01:85:e7:74:e4:94:8a:86:06:97:
03:7a:bc:e8:f2:e8:d8:89:7f:bc:35:aa:7e:31:2d:97:dd:f6:
9d:0d:35:09:74:a1:4d:af:71:75:45:2a:47:68:1a:4d:3f:1d:
00:51:00:96:19:ef:ba:12:bf:9b:f4:8f:02:b0:7c:d7:ea:a2:
9a:c6:74:84:e3:53:b6:10:07:67:f9:2b:cb:8e:ba:5c:28:ae:
d3:7a:5f:97:ec:bb:f2:e2:88:1b:6c:f8:79:87:91:ec:0e:b6:
25:5c:0e:53:41:74:94:d4:9f:88:95:b6:30:0b:1b:1d:4c:f1:
d3:8b:2b:0e:44:27:1b:7e:f0:2d:d8:2f:a7:85:0a:8e:5a:2f:
10:b4:b4:c4:0c:08:79:c4:87:c7:87:2f:d8:92:8c:1d:99:8d:
50:af:70:a9:b5:50:80:c6:66:3c:52:0d:46:43:04:a3:fb:a0:
21:93:aa:09:18:95:7a:43:4e:8b:4d:ff:38:1b:92:f1:1e:12:
55:f6:0e:78:5b:d7:0b:e7:eb:c9:fc:23:43:38:9f:af:e9:80:
cf:c4:04:9d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:21 2024 by rpki-client on console-fra.rpki-client.org