Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/gIRQge5Aw8ADGP05W3kNlKUXnZo.roa
File: gIRQge5Aw8ADGP05W3kNlKUXnZo.roa (raw, json)
Hash identifier: ruMH2dn7e6jOfNsSTenJG0yvwtvLBfJQLaMFPR2pnT8=
Subject key identifier: 80:84:50:81:EE:40:C3:C0:03:18:FD:39:5B:79:0D:94:A5:17:9D:9A
Certificate issuer: /CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Certificate serial: 0187DC312DEF59BBCC8CFA3BF715A40EA91D
Authority key identifier: 6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/gIRQge5Aw8ADGP05W3kNlKUXnZo.roa
Signing time: Tue 02 May 2023 11:20:23 +0000
ROA not before: Tue 02 May 2023 11:20:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63949
IP address blocks: 2a02:26f0:1280::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:dc:31:2d:ef:59:bb:cc:8c:fa:3b:f7:15:a4:0e:a9:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Validity
Not Before: May 2 11:20:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80845081ee40c3c00318fd395b790d94a5179d9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b4:20:58:9d:a1:34:84:e6:1e:7f:d2:ed:5a:
b6:ee:8d:8b:de:14:b8:78:2c:6b:3f:61:d4:8c:8e:
ba:63:2c:c1:ec:95:85:18:70:1a:1d:bf:17:3a:2f:
58:c4:ff:b3:de:c7:50:d8:9a:dd:f5:2c:80:ef:44:
c2:ba:c3:07:1e:ac:9a:ba:36:ba:ca:8e:ce:50:12:
ef:04:c9:59:e4:e8:59:88:63:65:65:95:9c:98:59:
d7:8b:be:b3:62:ad:4e:0a:9e:1c:1b:2d:71:3b:0f:
67:8d:e8:f8:fd:a5:0d:b9:96:4a:d6:15:8a:03:72:
d8:fc:89:df:8b:c0:77:91:1c:fe:e5:ef:5f:68:13:
60:b7:79:01:39:48:3f:92:8c:34:87:b4:00:08:da:
67:bc:f7:d5:64:bd:4f:b3:85:98:77:ab:c8:bc:40:
f6:35:2d:f7:f5:e4:33:eb:e4:a6:54:e0:81:af:3f:
19:36:40:27:b4:9d:81:8e:1d:7a:2e:85:c2:b9:8f:
9b:b3:f8:df:ff:5c:f4:ac:b2:16:0c:0d:64:4a:ed:
fb:de:c0:7b:d5:78:0b:4f:3d:2d:c2:c3:88:da:0b:
c8:c6:c3:fa:0e:9a:d0:52:29:a6:4b:09:19:51:5a:
06:da:fb:a8:61:13:b0:b2:66:c1:ca:1a:cb:59:fb:
0d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:84:50:81:EE:40:C3:C0:03:18:FD:39:5B:79:0D:94:A5:17:9D:9A
X509v3 Authority Key Identifier:
keyid:6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/gIRQge5Aw8ADGP05W3kNlKUXnZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:26f0:1280::/48
Signature Algorithm: sha256WithRSAEncryption
4d:5a:59:9f:b7:a4:06:c6:81:09:b2:d9:23:8d:8f:7f:41:0c:
30:ec:87:d4:2f:dc:b6:e3:84:ab:d3:00:5a:95:58:7b:86:5c:
fb:91:e7:36:cc:6c:2e:5c:06:2f:3b:9d:12:3d:b0:da:87:b1:
36:83:26:c9:c9:d4:ab:98:eb:da:df:78:76:cc:86:6f:61:ee:
a8:82:a4:c9:e4:ce:1a:44:5a:e6:ad:d8:e4:61:d9:e3:af:6e:
68:34:8f:20:2c:76:30:7b:f4:75:ab:01:8c:a4:fa:6f:b3:3a:
47:db:4a:ad:cc:13:87:8d:42:2d:97:8f:ce:8f:76:11:ca:72:
43:12:8a:57:dc:00:ca:12:b3:41:34:72:a9:4d:a5:07:ce:0b:
26:37:13:62:c7:02:54:b1:c0:1c:84:13:91:59:db:27:5b:01:
b8:b8:d1:ff:53:37:8c:9f:ee:da:76:39:d6:e7:c4:fd:63:8b:
cb:db:7a:48:10:31:fb:7d:84:91:a8:38:7b:e9:af:64:62:a9:
c0:2f:c3:81:7a:02:bd:6b:d6:27:69:89:2b:1d:1b:5a:d9:70:
00:53:cf:74:8a:72:62:d9:2e:ef:da:3a:86:83:05:c0:ef:bf:
8c:e8:28:05:d6:7f:ca:5e:49:6d:46:45:ca:e0:e7:a1:96:6e:
cf:06:0f:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:39 2024 by rpki-client on console-fra.rpki-client.org