Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/a0b395-61ff-457d-8ff8-ec084137e242/1/gLMtxJ9dp0SrV5n6N9gwjW0GK8Q.roa
File: gLMtxJ9dp0SrV5n6N9gwjW0GK8Q.roa (raw, json)
Hash identifier: iJOTzCLPPWj8wFv3O9Z4G5hQDdCh8cuFmC+LTsPOYt8=
Subject key identifier: 80:B3:2D:C4:9F:5D:A7:44:AB:57:99:FA:37:D8:30:8D:6D:06:2B:C4
Certificate issuer: /CN=74bf07f04cc76a90ad97f9f1749fabcf05c35d62
Certificate serial: 01874CE739AEE56B0D37335FFDD72317F6B8
Authority key identifier: 74:BF:07:F0:4C:C7:6A:90:AD:97:F9:F1:74:9F:AB:CF:05:C3:5D:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dL8H8EzHapCtl_nxdJ-rzwXDXWI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/a0b395-61ff-457d-8ff8-ec084137e242/1/gLMtxJ9dp0SrV5n6N9gwjW0GK8Q.roa
Signing time: Tue 04 Apr 2023 15:33:54 +0000
ROA not before: Tue 04 Apr 2023 15:33:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205384
IP address blocks: 2001:67c:11e8::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4c:e7:39:ae:e5:6b:0d:37:33:5f:fd:d7:23:17:f6:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74bf07f04cc76a90ad97f9f1749fabcf05c35d62
Validity
Not Before: Apr 4 15:33:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80b32dc49f5da744ab5799fa37d8308d6d062bc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a3:63:34:2e:4d:e8:33:3b:51:f3:1c:b8:4b:
a5:29:23:0e:e7:35:9e:1e:b5:c9:14:3e:e9:2f:ac:
d1:5a:bd:bd:40:36:67:f2:e3:29:2e:a8:5e:be:25:
05:e9:69:ae:82:68:cc:fa:71:2d:61:ea:fc:7c:56:
34:5a:89:55:2c:b2:5a:c3:a4:9b:33:fe:3e:72:4d:
1f:f1:17:c8:ee:a6:55:60:e3:24:49:d9:b1:4f:f1:
3a:a9:4c:2e:e9:97:ce:21:fd:7a:53:e1:f2:99:65:
8b:c7:9c:cb:5b:d4:fb:ec:86:12:ad:05:5f:a1:62:
98:53:6a:fa:3b:ca:5d:19:ca:3f:b9:f7:63:63:98:
ba:2b:07:cb:f3:5c:ae:a1:ce:12:ee:66:d1:47:f6:
d8:08:3d:e4:9b:ea:c1:fc:a6:eb:c7:54:e4:e6:70:
7a:71:b6:54:7e:fa:b3:58:2f:ed:e5:99:61:eb:5f:
85:2b:c8:d3:4a:43:66:20:f4:44:ca:34:1f:ec:d8:
4f:f6:f2:1d:6f:e7:8c:40:4e:60:c7:66:08:3f:16:
92:f5:a5:93:8b:06:d1:5f:60:87:22:62:75:4d:47:
18:10:1d:1f:eb:31:5f:b2:cb:11:6c:f5:8d:81:b2:
a6:7a:f0:5c:8c:96:3b:8f:ad:45:b0:35:a2:37:f1:
1f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:B3:2D:C4:9F:5D:A7:44:AB:57:99:FA:37:D8:30:8D:6D:06:2B:C4
X509v3 Authority Key Identifier:
keyid:74:BF:07:F0:4C:C7:6A:90:AD:97:F9:F1:74:9F:AB:CF:05:C3:5D:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dL8H8EzHapCtl_nxdJ-rzwXDXWI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a0b395-61ff-457d-8ff8-ec084137e242/1/gLMtxJ9dp0SrV5n6N9gwjW0GK8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a0b395-61ff-457d-8ff8-ec084137e242/1/dL8H8EzHapCtl_nxdJ-rzwXDXWI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:11e8::/48
Signature Algorithm: sha256WithRSAEncryption
85:c4:e5:4f:22:a3:d3:bf:18:af:16:bb:72:99:ad:33:53:f4:
9c:e5:24:18:e3:fb:2e:d6:bd:ea:a5:5f:61:96:be:70:b7:99:
3b:f9:fd:82:33:88:6f:05:dd:08:6f:26:66:77:28:43:0e:47:
e8:2f:f4:cb:8a:1a:79:34:45:24:e3:ab:a6:db:74:28:90:48:
75:95:a9:1a:e0:e6:20:21:ba:d2:4c:55:68:6d:d8:18:c8:29:
1d:5f:64:e9:47:23:ba:d8:84:01:95:95:80:53:3d:66:2e:fb:
80:b9:1e:e6:6f:c4:4a:4f:27:78:e9:a1:ce:5b:1f:35:0d:3e:
6c:74:89:98:2c:f1:09:7c:ee:18:22:b7:dd:57:c7:96:28:32:
68:b0:6a:c0:e2:1c:d5:8a:eb:e0:e0:f6:98:5f:ce:29:26:b0:
d5:89:47:30:10:8d:e8:2a:58:a6:87:44:45:78:2f:ad:5e:02:
6a:dd:d2:09:53:c4:ea:e4:1b:86:ab:49:f3:e0:48:ae:8d:24:
37:48:67:f9:b9:b5:52:1c:b5:5b:81:70:55:bf:a9:5f:0e:35:
b7:54:bb:d8:3b:f8:10:00:27:07:75:5e:bf:03:f8:84:d3:34:
81:7f:f1:12:1f:f7:f4:02:5d:41:b3:87:bf:91:4e:5e:fb:fa:
34:94:d4:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:48 2024 by rpki-client on console-fra.rpki-client.org