Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/79ef4f-e38e-44da-a657-2159376d3a64/1/0gRiPb5-PFMEDsbw39dMRyUWkRI.roa
File: 0gRiPb5-PFMEDsbw39dMRyUWkRI.roa (raw, json)
Hash identifier: gzjpThwubHNm7o3IEgbbojfje28M69n5tC92gEkzyKs=
Subject key identifier: D2:04:62:3D:BE:7E:3C:53:04:0E:C6:F0:DF:D7:4C:47:25:16:91:12
Certificate issuer: /CN=3ec50ab4ccf72e3d60c09f964019d6c034c50a6c
Certificate serial: 018D8EF4AA5F6CED5804F350EBCC875B682A
Authority key identifier: 3E:C5:0A:B4:CC:F7:2E:3D:60:C0:9F:96:40:19:D6:C0:34:C5:0A:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PsUKtMz3Lj1gwJ-WQBnWwDTFCmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/79ef4f-e38e-44da-a657-2159376d3a64/1/0gRiPb5-PFMEDsbw39dMRyUWkRI.roa
Signing time: Fri 09 Feb 2024 17:40:15 +0000
ROA not before: Fri 09 Feb 2024 17:40:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44812
IP address blocks: 2a0d:b9c7::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 06 May 2024 12:05:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:8e:f4:aa:5f:6c:ed:58:04:f3:50:eb:cc:87:5b:68:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ec50ab4ccf72e3d60c09f964019d6c034c50a6c
Validity
Not Before: Feb 9 17:40:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d204623dbe7e3c53040ec6f0dfd74c4725169112
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:02:77:1b:3e:07:ee:54:7b:ae:4f:04:e8:b8:
a7:a1:2b:57:8e:ce:f8:bc:aa:91:92:60:90:a9:ec:
0a:78:c8:3d:10:ea:0c:c7:54:7d:e2:00:14:35:93:
dc:c8:5f:2a:4b:a9:a8:0e:0c:9a:93:ba:4c:9d:6c:
8d:c3:c8:26:ac:ea:50:91:3c:04:3f:08:47:f2:db:
26:89:0d:ca:fa:e0:b8:61:b4:f8:36:bf:eb:c4:52:
a4:9d:85:57:eb:e9:c8:d3:c9:c4:91:59:0b:ed:0c:
db:b1:7a:d9:e6:b9:b7:b8:89:a0:99:49:f0:84:bd:
80:f2:b9:c5:6a:26:13:a4:7e:0e:86:31:71:c5:5f:
1f:c6:bb:71:9f:46:61:37:bc:a6:d6:52:54:ca:89:
b7:fe:53:4e:ac:35:af:ed:44:c2:7c:ac:80:da:17:
15:07:64:b5:7d:a1:c0:3c:cc:9e:21:40:be:fe:2b:
d8:96:54:e4:61:d1:db:1f:50:69:2d:d9:d8:e3:c5:
80:8d:ac:92:a0:b1:b4:cf:fc:49:12:2b:ec:cd:d6:
c6:3e:89:69:1b:b7:70:61:fa:37:6e:a7:ac:d3:49:
3c:be:6d:f4:80:25:38:e3:e5:e1:b2:1a:26:ce:25:
7f:7d:d2:7e:99:6b:0f:c1:05:e6:50:ba:94:4a:90:
9a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:04:62:3D:BE:7E:3C:53:04:0E:C6:F0:DF:D7:4C:47:25:16:91:12
X509v3 Authority Key Identifier:
keyid:3E:C5:0A:B4:CC:F7:2E:3D:60:C0:9F:96:40:19:D6:C0:34:C5:0A:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PsUKtMz3Lj1gwJ-WQBnWwDTFCmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/79ef4f-e38e-44da-a657-2159376d3a64/1/0gRiPb5-PFMEDsbw39dMRyUWkRI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/79ef4f-e38e-44da-a657-2159376d3a64/1/PsUKtMz3Lj1gwJ-WQBnWwDTFCmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:b9c7::/32
Signature Algorithm: sha256WithRSAEncryption
26:e4:24:a0:57:03:a4:19:97:6e:7c:b4:5c:48:20:57:90:43:
55:03:5c:13:ee:70:ac:63:20:61:d6:d3:75:81:dd:74:0b:4c:
8d:97:69:26:3f:7f:5e:d2:aa:1b:3e:c7:a2:8d:07:2e:a2:e7:
ea:53:e1:54:7b:c5:00:aa:04:92:2a:2e:d3:6a:aa:89:cc:6a:
2e:7f:81:db:34:4f:2b:c3:e2:21:29:5c:18:4d:e1:35:e1:db:
f7:69:85:88:f7:e7:84:a3:26:b8:22:9a:75:2b:bd:84:c4:89:
e3:1f:5c:01:ba:88:9a:4c:8c:8a:8f:5d:43:df:a3:96:af:54:
4a:69:ee:f0:6d:ae:73:73:f5:5f:e7:59:26:02:44:95:64:43:
17:d9:49:8c:45:41:01:a2:e8:47:6d:e7:db:9d:58:4a:0f:18:
39:7c:27:58:a4:3b:38:d9:c9:e1:d2:4a:e9:09:5b:cc:44:51:
6b:aa:eb:45:4c:f0:5b:7f:ee:8a:74:fa:47:68:0e:56:79:cf:
d9:42:10:70:c9:d9:b4:80:77:3f:e9:c3:8c:5c:9f:cb:1b:77:
17:22:41:7f:5a:1b:e6:34:e7:2a:94:c6:58:22:e0:78:62:76:
6f:9c:0c:46:a6:41:99:f1:c7:bd:bb:61:b3:65:fa:fc:9a:4e:
b9:a6:4a:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 16:42:43 2024 by rpki-client on console-ams.rpki-client.org