Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/gfxPHsq74691p1Nmu7qAFcD1REs.roa
File: gfxPHsq74691p1Nmu7qAFcD1REs.roa (raw, json)
Hash identifier: l9gOc/rKJQnvy59odLV2sQBRSTF0TQ7WY68vU9Cbevc=
Subject key identifier: 81:FC:4F:1E:CA:BB:E3:AF:75:A7:53:66:BB:BA:80:15:C0:F5:44:4B
Certificate issuer: /CN=4354a419225d5d79f4a1ae1520a3b1a56d45268c
Certificate serial: 0192D2C40E111934A05F43F50513295BE8BA
Authority key identifier: 43:54:A4:19:22:5D:5D:79:F4:A1:AE:15:20:A3:B1:A5:6D:45:26:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/gfxPHsq74691p1Nmu7qAFcD1REs.roa
Signing time: Mon 28 Oct 2024 10:55:16 +0000
ROA not before: Mon 28 Oct 2024 10:55:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52041
IP address blocks: 2a12:7a40:4200::/44 maxlen: 44
Validation: Failed, certificate revoked on Wed 30 Oct 2024 10:45:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d2:c4:0e:11:19:34:a0:5f:43:f5:05:13:29:5b:e8:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4354a419225d5d79f4a1ae1520a3b1a56d45268c
Validity
Not Before: Oct 28 10:55:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81fc4f1ecabbe3af75a75366bbba8015c0f5444b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3f:c0:67:e4:a6:1c:08:c9:5d:2f:55:8f:d1:
79:c6:01:cd:ac:e7:43:09:4f:ea:25:b9:df:7c:95:
8d:9d:a6:0a:f7:c9:23:9e:e9:00:ad:6a:2c:1d:6c:
03:8b:c8:63:5c:35:ec:00:d8:35:d7:21:46:30:bb:
6d:91:50:47:46:cc:89:fc:39:cc:11:8f:ea:d3:0a:
13:e5:10:b1:76:c9:14:4e:7e:f6:60:4d:a7:28:8d:
3f:85:01:36:61:1a:2c:93:8f:52:3d:fe:37:76:91:
8d:87:80:74:65:1b:3a:c3:be:8e:d5:2f:28:e6:a5:
ec:d9:40:85:46:17:a6:eb:ff:90:cb:02:10:46:fc:
c0:9e:e9:7b:81:29:54:34:8a:6c:14:63:d9:62:a6:
39:a8:45:e2:2e:54:58:44:2e:cb:86:34:79:05:b6:
7e:8a:7d:c5:ea:19:18:bd:7c:20:cf:40:40:fe:e1:
77:4e:b2:bb:23:0b:7e:d5:6d:d5:d9:e5:dc:2c:27:
e4:af:3d:54:e7:38:ac:87:e2:fe:f3:cb:35:dc:16:
0c:c3:e9:bb:62:8d:e3:9c:ab:71:08:0c:29:91:4b:
25:ad:65:94:05:da:7e:64:53:71:45:8e:43:cf:4d:
f7:d1:e4:bb:3b:f2:e6:fb:2a:94:a2:7c:f2:75:52:
48:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:FC:4F:1E:CA:BB:E3:AF:75:A7:53:66:BB:BA:80:15:C0:F5:44:4B
X509v3 Authority Key Identifier:
keyid:43:54:A4:19:22:5D:5D:79:F4:A1:AE:15:20:A3:B1:A5:6D:45:26:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/gfxPHsq74691p1Nmu7qAFcD1REs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:7a40:4200::/44
Signature Algorithm: sha256WithRSAEncryption
44:62:93:d5:1b:58:e3:a4:0e:c7:29:50:dc:11:4e:ce:f9:b1:
a0:84:d7:c1:b8:e9:d6:71:9c:cb:db:29:06:e2:2d:3a:0b:fc:
6b:38:de:2b:8b:b1:98:ca:99:a7:5b:6c:1b:24:01:37:29:20:
46:ab:a5:7b:8c:4d:af:de:24:b9:ed:f9:8d:5c:46:86:5c:3c:
ad:f8:a2:3a:e8:37:2b:bc:7e:2d:99:37:cc:f8:86:ac:55:b8:
4f:99:fe:e0:e7:e8:cf:f6:dd:ec:2e:2a:88:db:6a:36:c2:05:
11:58:61:ea:ef:1e:48:bf:e9:9a:0a:ee:c4:d2:3d:d5:88:91:
d9:a8:37:8f:85:dc:84:92:ac:46:91:e8:37:64:6d:c2:16:12:
2f:49:79:5a:03:a8:e1:0a:2f:6e:a9:d9:81:65:7d:b5:da:05:
b3:c0:16:20:84:ce:2d:a5:4f:b8:02:a0:5a:8d:4b:33:21:88:
cd:5e:d0:0b:83:7f:5f:41:fe:73:5f:7e:f7:b0:52:d7:3d:23:
24:6d:d6:28:87:e5:f9:28:ea:98:3a:09:6f:42:1e:c4:1a:52:
64:85:53:76:c1:4c:bf:0c:bd:97:05:3d:8b:7e:50:4b:c5:00:
8d:7b:5c:69:ce:10:eb:3d:dc:a7:52:31:ad:1e:91:d7:bc:73:
89:59:34:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 30 13:28:29 2024 by rpki-client on console-ams.rpki-client.org