Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/GvchnbdR9jkQfvTN_VJ4CNGJcW0.roa
File: GvchnbdR9jkQfvTN_VJ4CNGJcW0.roa (raw, json)
Hash identifier: tpHXzPjprId9zzTucSLFLKRLxHduxcG8n97NG72fbXo=
Subject key identifier: 1A:F7:21:9D:B7:51:F6:39:10:7E:F4:CD:FD:52:78:08:D1:89:71:6D
Certificate issuer: /CN=65a665b90069bd71850602e7400c529793269e39
Certificate serial: 018E7AF11BA01FA29BF1272E28339D53B000
Authority key identifier: 65:A6:65:B9:00:69:BD:71:85:06:02:E7:40:0C:52:97:93:26:9E:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/GvchnbdR9jkQfvTN_VJ4CNGJcW0.roa
Signing time: Tue 26 Mar 2024 13:26:45 +0000
ROA not before: Tue 26 Mar 2024 13:26:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215633
IP address blocks: 2a09:2b80:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 09 Apr 2024 15:05:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7a:f1:1b:a0:1f:a2:9b:f1:27:2e:28:33:9d:53:b0:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65a665b90069bd71850602e7400c529793269e39
Validity
Not Before: Mar 26 13:26:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1af7219db751f639107ef4cdfd527808d189716d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:52:05:28:b4:b5:40:7e:0f:ea:b7:c8:45:b8:
ae:30:23:9b:bd:12:cc:11:b9:14:82:02:95:68:39:
6a:15:45:d4:0e:63:8e:df:39:9c:8e:a7:53:53:d1:
5c:ea:9a:3a:a6:90:39:f5:ba:b4:e9:6e:5d:ee:ed:
c8:2d:b2:8d:0f:2f:51:73:e2:d6:fc:8b:7d:27:3a:
17:6d:4f:d9:b9:a6:87:4f:21:a8:dd:a2:f6:08:e2:
95:30:22:ad:37:56:ae:51:d5:f7:76:ce:38:e7:3a:
2b:87:5f:cb:7e:11:cf:93:36:da:06:2e:93:20:8f:
e2:b0:3a:b4:80:55:fc:36:87:19:7f:2d:17:1e:c9:
54:bb:86:75:0e:d9:0c:13:0e:95:3e:09:1c:e8:06:
ce:aa:30:c9:d6:d0:db:f2:0e:19:9f:0e:83:be:50:
9e:3e:cd:da:03:fb:a2:d7:37:e4:9e:e4:83:af:35:
81:bf:5b:99:23:09:8f:a2:0b:6c:c7:03:91:25:44:
35:cf:f6:63:81:99:b4:06:92:4f:2f:f6:aa:8f:b8:
85:aa:b7:e2:d3:15:21:52:58:55:0f:1f:d3:72:37:
ed:53:46:cb:00:3b:16:c4:94:db:8f:1d:bf:3d:2f:
f4:4a:ea:5d:0e:b4:e9:cd:40:20:1c:bd:cb:f2:7c:
f4:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:F7:21:9D:B7:51:F6:39:10:7E:F4:CD:FD:52:78:08:D1:89:71:6D
X509v3 Authority Key Identifier:
keyid:65:A6:65:B9:00:69:BD:71:85:06:02:E7:40:0C:52:97:93:26:9E:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/GvchnbdR9jkQfvTN_VJ4CNGJcW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:2b80:1::/48
Signature Algorithm: sha256WithRSAEncryption
b1:f1:f6:1c:c1:08:24:95:6c:23:00:c7:c4:c3:26:0d:45:6a:
12:0b:23:a9:ad:e4:7e:c8:70:a3:18:81:68:56:7a:29:04:96:
70:4d:b2:cd:4c:ed:e6:ac:e4:ff:02:c1:fe:01:3a:63:ad:17:
5b:80:ca:62:fa:7a:22:38:9f:e0:d4:60:bb:1b:bf:d0:25:b9:
1b:07:40:9c:fb:e2:db:ed:55:bb:ae:92:11:c2:d4:a3:3a:c5:
91:b5:35:56:53:8f:e8:6d:2c:2f:24:3c:7b:71:97:b5:81:67:
c1:ac:57:a6:cd:e2:ec:c8:60:55:12:5a:5e:93:c4:4c:b2:97:
9b:39:22:3d:14:f5:0b:04:b5:41:61:33:87:2b:50:23:59:a5:
42:65:3c:21:68:36:22:19:e8:22:c2:59:ad:7c:9a:bf:a6:8a:
af:0b:34:84:ca:ef:d0:d1:e1:39:51:19:47:c2:1c:10:3a:60:
55:0d:7b:bb:30:aa:d0:14:a9:1f:4f:61:d4:49:64:47:e0:6f:
8c:4c:6a:2c:8a:93:60:65:38:f6:be:47:25:ab:9f:50:0f:69:
4c:4a:69:5b:41:b0:ca:5f:8c:b0:1f:f3:fc:cd:19:04:08:fd:
4f:79:14:53:45:ca:f3:78:9c:6c:1e:1b:3e:7d:7a:c1:0b:25:
06:af:5b:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:31:05 2025 by rpki-client