Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/GPsp9n1lnRd7PMo6Qwe092qN6v4.roa
File: GPsp9n1lnRd7PMo6Qwe092qN6v4.roa (raw, json)
Hash identifier: 69DgdlxZA93nLwdpQhXoMnDvGQ/VhuqqZtUG+aC64JA=
Subject key identifier: 18:FB:29:F6:7D:65:9D:17:7B:3C:CA:3A:43:07:B4:F7:6A:8D:EA:FE
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 0185707992681FE4BE4EDE37500BEE18472F
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/GPsp9n1lnRd7PMo6Qwe092qN6v4.roa
Signing time: Mon 02 Jan 2023 03:14:53 +0000
ROA not before: Mon 02 Jan 2023 03:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200351
IP address blocks: 2a12:bec0:c0::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:92:68:1f:e4:be:4e:de:37:50:0b:ee:18:47:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Jan 2 03:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=18fb29f67d659d177b3cca3a4307b4f76a8deafe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:0f:32:2d:83:a3:de:64:94:f2:1c:c6:bb:c4:
e9:a4:08:a0:f9:6d:6d:46:a2:48:c7:63:03:0e:c8:
9b:d9:6d:59:cf:ec:cb:de:9a:6e:fd:d2:c7:e6:43:
f7:0e:25:3a:ea:82:df:db:f9:88:ea:89:f1:74:59:
1c:b0:28:e4:8a:ab:5a:43:cd:88:58:b7:70:0d:f5:
ce:6c:a3:e9:4e:84:58:c9:6c:e0:c8:aa:9d:a9:85:
52:83:b7:a9:fb:24:31:2d:cc:16:8f:1a:66:56:1f:
d5:81:f3:a5:ef:65:90:e6:e6:7c:14:01:1c:5e:65:
61:5a:06:11:1e:95:81:36:83:54:47:43:45:55:fa:
f8:80:c8:fa:f0:12:0b:b4:89:9d:e3:d8:b9:20:e5:
8f:2a:a5:d1:4a:2c:93:a2:34:6a:06:00:93:8f:13:
29:f5:4e:06:85:c0:eb:8f:b6:7e:3b:c4:9e:9c:d4:
83:46:11:dd:f6:fa:43:2c:59:07:3f:3c:03:b5:15:
2c:f5:6a:fa:93:3b:b7:34:5f:4e:cc:94:7c:2f:10:
8f:4b:f8:3c:a5:07:13:60:56:08:81:5a:04:e8:10:
ba:b7:ae:ef:0e:d3:4a:62:ab:0d:90:dd:01:05:74:
0f:85:31:03:64:f0:40:15:ad:4a:63:28:d5:52:2e:
60:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:FB:29:F6:7D:65:9D:17:7B:3C:CA:3A:43:07:B4:F7:6A:8D:EA:FE
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/GPsp9n1lnRd7PMo6Qwe092qN6v4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:c0::/44
Signature Algorithm: sha256WithRSAEncryption
51:a0:b8:99:75:cc:ee:0f:66:30:4c:a9:ff:82:3f:81:f0:f7:
29:36:e8:12:48:0f:17:55:96:b7:09:4d:90:e7:b6:5d:1a:25:
46:a9:30:6c:9f:2a:df:1c:1b:1f:0b:57:37:8e:87:bb:e2:7e:
53:4b:27:ac:4a:2c:9f:d1:45:41:88:a9:e1:1c:d4:7e:cc:c9:
d5:1a:14:11:f8:50:43:ec:f0:b3:3a:40:e4:37:88:57:b2:fa:
7d:dd:59:aa:ff:e1:8d:a3:ab:70:84:45:45:45:19:cd:19:ed:
c9:7a:99:2f:de:e1:41:0f:a3:0b:bd:cc:5d:f7:a4:56:68:36:
7f:2d:52:77:7c:31:e0:35:f0:c3:77:cf:6f:c3:f9:ad:a5:4d:
67:20:94:ff:6c:3a:3f:c8:7f:ca:e1:1f:3e:c3:30:10:93:56:
fe:b0:25:08:65:7e:4c:05:2f:65:15:7e:b7:31:e8:e2:00:25:
6a:d2:e3:49:da:cc:c2:d6:6e:63:c6:a8:5b:7e:1b:ab:3f:b1:
fb:93:e2:87:5f:42:a1:9a:e4:33:df:a4:ea:bf:89:26:8f:d8:
fc:7a:bc:46:3c:41:46:22:4b:ce:2d:35:a7:ea:1e:ec:59:f4:
53:e4:83:40:aa:ad:9c:32:4f:ef:1f:92:fe:ab:07:76:74:ab:
35:97:0a:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org