Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/G1-kDjOOt58ZOgPlHPL2SkE86dg.roa
File: G1-kDjOOt58ZOgPlHPL2SkE86dg.roa (raw, json)
Hash identifier: tZWvo84ZL9YXKFgIgmAMWQ14jvIzm5qwJbQ+tfldqME=
Subject key identifier: 1B:5F:A4:0E:33:8E:B7:9F:19:3A:03:E5:1C:F2:F6:4A:41:3C:E9:D8
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 0191B63E9E1E57B3E41CB6F847D9F0738159
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/G1-kDjOOt58ZOgPlHPL2SkE86dg.roa
Signing time: Tue 03 Sep 2024 04:57:22 +0000
ROA not before: Tue 03 Sep 2024 04:57:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49581
IP address blocks: 2a14:35c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 29 Sep 2024 20:17:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b6:3e:9e:1e:57:b3:e4:1c:b6:f8:47:d9:f0:73:81:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Sep 3 04:57:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1b5fa40e338eb79f193a03e51cf2f64a413ce9d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:41:01:4e:b6:ec:4c:57:4a:ac:8d:bf:92:9c:
42:dc:84:fa:f4:32:90:4d:78:ff:e1:79:4d:e0:de:
9c:94:cb:ca:3c:8f:e4:83:59:6e:ac:bb:76:48:a9:
fe:71:31:38:2e:7d:5d:19:0e:4d:d7:81:b5:31:41:
70:1b:ac:22:42:37:0e:07:cc:3f:32:ec:87:b6:12:
f2:34:83:08:16:41:9b:8b:29:44:e3:1d:9b:93:8c:
6c:de:fd:d6:eb:d5:71:51:a1:88:c3:84:d7:f7:49:
ce:23:94:f1:1b:50:1a:aa:a1:95:3e:43:62:74:c2:
13:f4:59:92:11:ae:19:34:e3:9e:92:f6:55:7f:c5:
49:fb:d2:24:48:23:5d:20:21:2a:20:49:a4:a7:ca:
c1:7d:97:ba:88:88:28:e6:47:68:7a:04:7c:35:ba:
dc:5f:85:35:8e:82:53:b5:27:01:72:37:7d:81:d7:
02:1f:fd:7e:14:ac:f6:ed:32:84:9d:f6:c2:6d:06:
c8:96:bd:e2:13:5a:04:ae:5c:ef:99:64:85:97:40:
25:1f:fa:4c:83:95:89:7c:8a:de:21:e7:5a:24:15:
41:9d:6d:fb:89:1f:75:3d:b4:81:37:0b:6d:b3:94:
9a:c0:f8:7d:58:4b:93:8c:88:3f:85:34:9f:6d:9b:
0f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:5F:A4:0E:33:8E:B7:9F:19:3A:03:E5:1C:F2:F6:4A:41:3C:E9:D8
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/G1-kDjOOt58ZOgPlHPL2SkE86dg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:35c0::/29
Signature Algorithm: sha256WithRSAEncryption
03:b9:a6:37:96:f0:e4:c6:09:37:78:85:d9:f6:1b:06:55:48:
d7:37:9a:f9:c7:53:3a:4f:ff:f2:d7:f8:f7:be:84:e4:bf:ea:
ca:eb:d1:7e:a7:9c:85:80:e7:39:2c:30:3b:9e:58:6d:42:a8:
a9:4a:3e:fb:65:d5:72:d4:38:5f:70:ac:45:f6:2b:9c:70:99:
25:4b:43:cd:97:6b:52:aa:8f:76:93:76:ef:e2:6c:79:28:e7:
bf:5d:dd:49:32:c3:12:95:2f:2a:0a:66:67:f0:a3:64:64:d6:
6e:8b:d7:5d:31:b0:93:d6:08:3f:c9:ae:3f:46:a1:e7:23:9b:
87:15:26:3e:47:69:b2:ec:8c:d5:4f:90:29:94:02:95:01:c0:
b2:dd:db:81:b2:e9:12:db:e0:11:fa:42:e1:0d:d6:82:4e:36:
3e:7b:1a:fc:e8:f2:c1:16:3c:3a:43:31:26:26:84:ce:ed:81:
05:20:80:20:0e:be:61:b7:9b:8e:a9:6d:61:8f:20:9b:9b:de:
ec:b0:06:3c:f6:dd:eb:90:71:e9:81:a6:9c:5a:a2:c1:c2:6d:
78:cd:c4:19:a1:a5:30:94:3f:95:5e:3f:ee:6b:a7:85:02:52:
b2:f4:84:14:70:d1:cb:4d:e9:11:78:de:a7:fb:21:df:8d:1a:
01:74:bb:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 29 22:31:20 2024 by rpki-client on console-fra.rpki-client.org