Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/ndpPLpRvn6VAIaAjcTQbYMG44gQ.roa
File: ndpPLpRvn6VAIaAjcTQbYMG44gQ.roa (raw, json)
Hash identifier: wk0+QPG7p6RDRa7X1idCaQFsMvh078WQpaZd+ONIJTw=
Subject key identifier: 9D:DA:4F:2E:94:6F:9F:A5:40:21:A0:23:71:34:1B:60:C1:B8:E2:04
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 0187B420CF3EDB09CC83E0789B248A191C03
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/ndpPLpRvn6VAIaAjcTQbYMG44gQ.roa
Signing time: Mon 24 Apr 2023 16:37:41 +0000
ROA not before: Mon 24 Apr 2023 16:37:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35471
IP address blocks: 2a02:d80::/29 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b4:20:cf:3e:db:09:cc:83:e0:78:9b:24:8a:19:1c:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Apr 24 16:37:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9dda4f2e946f9fa54021a02371341b60c1b8e204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f8:b9:54:b7:2e:44:3e:fd:10:7a:3d:04:b5:
5a:c1:2f:c4:8d:34:12:71:9e:0c:af:16:56:09:57:
05:73:7e:2d:b3:67:c7:1f:a0:a8:1e:08:9e:b2:64:
ff:44:ff:d6:ba:5e:91:40:76:55:d3:55:71:9f:a1:
7d:f0:da:9e:c3:98:eb:27:fa:a6:76:47:11:ad:0e:
f4:f4:11:23:c1:f8:11:cd:e7:b7:9d:72:51:a7:26:
29:b4:e4:22:e3:57:5d:19:37:89:50:e9:49:76:20:
c7:88:47:bc:dd:6a:f3:41:23:3d:af:41:e7:13:45:
11:81:7b:0d:90:b2:12:95:e7:30:9b:38:19:64:31:
f7:76:5d:86:3f:26:0d:ea:46:11:71:b8:35:bf:2a:
b8:99:ad:f0:cd:ed:a8:21:61:ec:d7:1b:41:18:0d:
0b:a0:0e:5c:f0:df:3f:9d:8b:8e:ab:54:d2:3c:d6:
3a:ea:ff:91:58:d3:39:b7:b6:01:45:4e:10:b9:95:
ab:82:b0:09:72:8d:af:b5:3d:b1:b4:23:4e:aa:8f:
f8:8f:82:54:44:b4:fe:5d:2a:d4:41:24:07:dc:35:
3e:b9:e7:c1:ef:aa:8b:aa:c0:51:d8:34:92:fe:53:
0c:2d:a5:e9:f5:19:5e:11:38:c2:ab:26:b1:97:41:
45:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:DA:4F:2E:94:6F:9F:A5:40:21:A0:23:71:34:1B:60:C1:B8:E2:04
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/ndpPLpRvn6VAIaAjcTQbYMG44gQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:d80::/29
Signature Algorithm: sha256WithRSAEncryption
18:53:e3:4e:15:c8:e4:ac:1f:27:15:47:69:be:9c:2e:14:a0:
69:f8:95:08:d9:08:b9:bd:3a:64:76:f1:35:d0:6e:7d:e8:f6:
09:63:70:f9:fd:e6:e6:da:ea:9c:52:4b:67:03:0f:97:95:a1:
51:d5:c0:4b:d7:47:98:7a:48:12:ee:4c:cf:d1:45:1c:cd:6c:
f9:f7:49:dc:99:f3:ee:26:d6:8d:31:1f:86:2c:fa:12:cf:1f:
af:da:aa:1f:75:92:e6:2b:8e:85:a2:64:c1:92:0a:f6:61:6c:
81:7c:ca:96:45:08:00:27:02:61:dc:c2:a7:fa:12:33:83:5c:
9d:2c:ec:8b:10:88:44:fb:40:c2:31:b7:11:7c:80:a9:8c:83:
92:e5:9a:f6:98:59:26:44:c0:33:51:81:6e:02:ca:62:f1:25:
ba:3b:6e:bb:64:e9:95:e7:a0:b6:fb:f6:33:81:77:09:d0:43:
27:18:c3:84:6f:32:14:fe:4b:3a:a4:0f:28:81:14:67:05:a8:
de:08:be:96:b1:45:a8:6d:d6:ce:1a:ee:6e:f7:85:8c:83:14:
fa:52:75:56:b8:4b:81:67:b6:49:ce:e7:ee:aa:0d:8a:84:93:
10:5b:90:48:0c:02:c4:9d:dd:2f:30:61:f3:78:32:11:77:5e:
1e:95:29:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:38 2024 by rpki-client on console-ams.rpki-client.org