Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/GwbUjlUZNhH7P6E5NLLrpPNIt9I.roa
File: GwbUjlUZNhH7P6E5NLLrpPNIt9I.roa (raw, json)
Hash identifier: fZPpYvG1t5BdS1ixI15mHwEF4pFESchoAWljnO8nWUQ=
Subject key identifier: 1B:06:D4:8E:55:19:36:11:FB:3F:A1:39:34:B2:EB:A4:F3:48:B7:D2
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 018C5BC637C40114128C3A7C8D1ED1AFD56E
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/GwbUjlUZNhH7P6E5NLLrpPNIt9I.roa
Signing time: Tue 12 Dec 2023 02:06:06 +0000
ROA not before: Tue 12 Dec 2023 02:06:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 945
IP address blocks: 2a0d:2582::/32 maxlen: 32
2a0c:e644::/30 maxlen: 30
2a0d:2685::/32 maxlen: 32
2a0d:2584::/32 maxlen: 32
2a05:1084::/32 maxlen: 32
2a0c:e640::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5b:c6:37:c4:01:14:12:8c:3a:7c:8d:1e:d1:af:d5:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Dec 12 02:06:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b06d48e55193611fb3fa13934b2eba4f348b7d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:13:f7:68:62:31:d8:47:5f:86:66:b9:2e:84:
b0:07:0a:2f:28:a6:ed:eb:68:e7:f3:f8:01:76:ea:
da:3a:d5:4e:00:18:45:e0:87:25:05:78:2b:78:01:
10:ca:d4:0a:c0:ba:3f:8f:8e:71:b4:e1:1a:2a:4b:
4f:06:52:1d:6a:40:71:eb:97:ab:0b:14:49:7d:3d:
7a:a7:fd:1d:15:f1:97:2a:90:b2:dc:c8:ae:b8:f9:
c6:5c:84:e4:25:55:bc:f1:c4:88:18:b1:7e:96:4b:
c1:d8:49:9e:b9:cd:bf:4c:03:f4:50:8e:ec:59:cd:
ad:9e:ba:f5:54:39:93:2d:0f:5d:87:8e:76:fe:fa:
2b:b7:80:dd:7d:5e:a0:b2:f4:64:63:13:24:aa:51:
ec:c2:1b:ff:2b:a5:c4:b5:0c:0c:f6:f8:fa:bf:32:
2e:7d:b2:62:3c:b5:94:42:91:d8:e2:e9:c9:e1:09:
8e:e5:e1:ac:db:1e:12:12:cf:2a:22:c2:dd:fc:b6:
25:c1:f1:0c:a2:a7:c9:32:02:cf:e7:2d:89:df:1d:
ef:bd:7f:df:d8:a9:ac:b3:b8:48:87:f1:43:04:21:
8a:25:5a:e6:e5:f4:0e:4e:a2:5c:60:ef:a6:44:3d:
91:7b:1c:02:fa:4e:05:3b:34:e0:3d:57:15:9a:79:
0e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:06:D4:8E:55:19:36:11:FB:3F:A1:39:34:B2:EB:A4:F3:48:B7:D2
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/GwbUjlUZNhH7P6E5NLLrpPNIt9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:1084::/32
2a0c:e640::/32
2a0c:e644::/30
2a0d:2582::/32
2a0d:2584::/32
2a0d:2685::/32
Signature Algorithm: sha256WithRSAEncryption
0c:49:ad:92:d3:65:b0:6e:0f:71:44:f6:80:4d:23:52:43:d8:
10:fd:d0:27:63:66:df:e8:48:eb:0f:1b:16:8c:65:c1:57:90:
0d:f3:9e:34:5e:85:1a:3b:2c:f1:cf:47:38:65:03:14:4a:66:
a9:9f:d4:6a:ee:92:a4:87:0e:7f:c3:af:c7:b7:a0:05:10:1e:
d1:b5:9a:81:5d:76:b1:71:34:8b:25:ac:bd:06:89:5b:9e:6f:
cf:1a:7e:b9:02:bd:f4:5a:b1:2c:6b:df:2f:a6:6c:20:54:ea:
d3:9f:35:5e:d8:0a:72:30:b1:30:db:e7:a3:14:b1:29:51:98:
09:cc:48:d6:b6:b1:64:5c:b4:6a:12:ed:25:5d:b1:97:b1:ac:
7e:dc:b1:ee:e0:91:58:0b:8d:60:7b:4a:88:70:81:fb:f3:7e:
48:65:e4:89:76:a9:c3:f2:db:d4:3e:7e:e7:a5:5c:81:04:ac:
17:a5:67:57:4e:7d:91:66:80:7a:46:38:a3:9c:da:1c:55:55:
d9:5e:b0:ff:c2:38:a6:02:db:10:93:8d:b2:cd:e3:49:1d:65:
2e:93:7b:c6:8e:7d:f2:5d:45:b9:40:c1:83:04:b3:d7:2f:32:
c7:e2:7b:d4:ad:c2:a6:6a:72:79:9e:5e:60:3e:c2:86:a2:e2:
f8:15:62:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:39 2024 by rpki-client on console-fra.rpki-client.org