Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/gHa1mrg2EY9_4svL1njmgbV5Iqg.roa
File: gHa1mrg2EY9_4svL1njmgbV5Iqg.roa (raw, json)
Hash identifier: Zdc6/eGl4QTpx6Bq63PyahsckKT0yY/r8gNH6UIWhlk=
Subject key identifier: 80:76:B5:9A:B8:36:11:8F:7F:E2:CB:CB:D6:78:E6:81:B5:79:22:A8
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 0193D0387AB17F8440257FF27EE05E835F86
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/gHa1mrg2EY9_4svL1njmgbV5Iqg.roa
Signing time: Mon 16 Dec 2024 16:06:22 +0000
ROA not before: Mon 16 Dec 2024 16:06:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207108
IP address blocks: 2a0c:8340::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 29 Dec 2024 17:09:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d0:38:7a:b1:7f:84:40:25:7f:f2:7e:e0:5e:83:5f:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Dec 16 16:06:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8076b59ab836118f7fe2cbcbd678e681b57922a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b1:31:9e:d8:11:7b:54:fe:c6:23:cf:3b:ad:
da:3a:63:44:6f:13:5e:0a:b3:f8:cf:0c:6b:62:93:
3c:58:a0:c9:e5:25:95:fc:2c:08:9f:74:5d:72:6b:
a9:bf:96:94:bd:0e:70:fd:1e:dc:f2:91:64:7f:68:
99:82:74:46:cc:a8:29:da:ae:4a:1d:13:03:ce:09:
51:09:b2:4f:8b:cf:e7:63:81:ee:c3:82:a4:67:8b:
0d:c9:ba:20:e3:8c:c8:94:85:1e:d7:72:05:f7:70:
39:33:22:6c:84:79:d1:05:12:fa:1b:48:00:81:68:
41:4c:02:53:f9:4f:74:94:c5:cf:95:8c:52:56:61:
d7:c1:09:11:91:61:3a:ba:71:95:11:e0:35:cf:5c:
9a:1f:ec:9a:c1:12:90:5c:54:2d:62:17:a3:da:3d:
73:ad:dc:36:67:b7:47:55:7a:2c:94:ca:03:a4:80:
a6:b9:2d:20:73:4f:b8:64:ed:19:db:52:0a:c5:55:
83:e2:fd:64:a8:a0:5f:16:e1:d2:33:7e:c6:3f:06:
8a:ad:57:95:ce:66:64:8d:74:be:fe:fc:91:7a:68:
d8:48:a6:87:bd:97:2b:30:e7:90:c6:66:aa:c5:a6:
a0:44:f5:a2:74:6b:7e:35:63:1f:13:6f:4f:1e:71:
e3:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:76:B5:9A:B8:36:11:8F:7F:E2:CB:CB:D6:78:E6:81:B5:79:22:A8
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/gHa1mrg2EY9_4svL1njmgbV5Iqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:8340::/29
Signature Algorithm: sha256WithRSAEncryption
9f:f2:72:47:7d:69:81:15:8f:81:c2:41:ec:f8:0e:48:54:f8:
5f:99:d2:83:43:6a:5d:f6:80:13:85:ce:c1:69:99:b0:00:8f:
20:10:87:f7:ef:f4:ea:d8:eb:76:4b:34:fa:79:ae:b2:44:48:
dc:06:cd:dc:19:79:af:18:9d:81:db:55:1a:5b:7e:a2:85:ed:
34:3e:88:c3:28:5a:b5:1c:45:a2:37:79:04:1d:12:26:41:90:
c2:03:ff:c4:9a:ef:2c:8d:5e:e6:26:4c:cd:6a:4c:8d:5c:32:
ea:ba:e2:4b:8e:7b:63:35:f9:5a:b9:d1:ab:d8:ec:d0:e2:e5:
ae:b0:f9:04:ff:2a:a6:39:69:7a:c6:c4:c0:86:2a:7d:48:b8:
7f:65:cc:cd:10:3d:c6:d8:1e:d6:bb:a5:f1:53:77:74:51:8b:
e1:1e:26:90:25:ac:d3:a6:f3:45:b1:34:17:1b:7e:08:b2:d0:
d0:f4:be:a7:0f:78:69:d9:f8:5c:e2:9d:da:08:81:70:28:d8:
19:5e:0f:37:82:2d:7a:ae:e9:89:1b:00:b2:e1:78:c5:92:d6:
a2:16:5a:52:b9:e2:a3:b6:19:b8:82:34:2c:a8:52:d7:d5:e6:
b2:66:1f:d3:b9:c0:20:13:19:ef:04:c1:18:60:fa:f5:bf:0d:
de:22:b4:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 17:55:28 2025 by rpki-client