Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/GSRCPncw8hbFJJJleFLTLcM7Dvk.roa
File: GSRCPncw8hbFJJJleFLTLcM7Dvk.roa (raw, json)
Hash identifier: 6w67rtWRbUsX6uHeEVn6kO7LlgYUGGvuwijN0PUJqqo=
Subject key identifier: 19:24:42:3E:77:30:F2:16:C5:24:92:65:78:52:D3:2D:C3:3B:0E:F9
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0192169E3543F81BD306E4297ADA9FDD7305
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/GSRCPncw8hbFJJJleFLTLcM7Dvk.roa
Signing time: Sat 21 Sep 2024 22:05:19 +0000
ROA not before: Sat 21 Sep 2024 22:05:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:192:169d:21e4/128 maxlen: 128
Validation: Failed, certificate revoked on Sat 21 Sep 2024 22:08:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:16:9e:35:43:f8:1b:d3:06:e4:29:7a:da:9f:dd:73:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Sep 21 22:05:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1924423e7730f216c52492657852d32dc33b0ef9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2e:a2:ba:87:cd:3e:61:41:1b:85:42:43:b6:
70:5e:ce:06:3a:d0:21:53:12:fa:86:fd:96:56:6a:
04:b8:c4:37:32:46:f7:b0:ab:bd:cd:4a:67:c5:ed:
86:11:5b:4b:0a:81:eb:fb:62:8e:35:93:a6:5b:d6:
72:ae:c4:69:98:aa:0e:5e:ff:6d:98:6b:a6:2b:87:
c2:5d:14:bf:0f:71:0e:bb:05:cf:d9:62:a6:a5:9a:
3f:48:e4:10:35:ba:9f:8c:3c:70:ad:55:81:df:18:
38:de:d1:8a:f6:60:9c:89:d4:f4:0d:eb:13:f5:6a:
f9:52:ba:21:15:35:78:18:5b:1c:a7:a0:18:53:18:
79:da:56:26:9f:f2:91:c6:77:fd:89:85:c8:fd:d5:
ff:43:ed:9e:49:f8:4e:25:d6:40:11:ef:87:ae:c0:
c2:4e:53:aa:68:ed:b4:1c:48:5a:2e:c0:f5:96:ae:
c2:4c:22:96:61:85:9f:e7:7e:97:70:60:96:d3:34:
a6:a3:18:1a:81:8e:f7:98:25:c7:d6:38:0c:a0:25:
27:f3:e6:85:cb:3f:34:8e:2a:78:e7:3b:c8:cd:3f:
19:0e:b9:28:70:09:72:61:6e:3c:8e:6e:a9:9a:00:
13:69:ce:fb:03:d5:0e:a3:71:4f:06:8e:2c:68:64:
f8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:24:42:3E:77:30:F2:16:C5:24:92:65:78:52:D3:2D:C3:3B:0E:F9
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/GSRCPncw8hbFJJJleFLTLcM7Dvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:192:169d:21e4/128
Signature Algorithm: sha256WithRSAEncryption
4a:9c:30:2f:92:b3:04:3b:bf:4a:78:6a:fa:3e:de:b2:8d:f6:
7b:76:a7:c9:d5:c8:22:20:ef:e6:7c:c1:f7:77:ca:bb:5e:10:
9e:46:6b:8d:d1:de:e3:e9:cb:e0:a0:14:fe:9c:5b:9a:c3:65:
cf:d0:bf:62:5b:bc:f5:da:4b:16:30:42:b0:db:bb:f7:6b:a5:
90:ea:79:63:4e:db:64:c6:da:6a:5a:61:ef:0d:27:14:7e:a6:
8e:29:ec:f2:f8:9d:5f:68:a9:65:76:84:74:78:58:62:8a:ef:
32:00:df:d4:1a:73:78:0f:b0:39:15:8b:22:c3:e5:d3:59:56:
d5:fd:ee:84:fe:bb:cb:56:95:b6:94:a3:94:19:a2:05:7e:5e:
d8:d9:a7:23:86:23:42:45:ec:62:be:f3:6f:ee:13:9c:8c:e7:
2e:33:9a:52:dc:55:c5:54:80:d7:fd:33:da:c3:12:fa:1f:bb:
16:3a:97:87:8f:55:ee:1e:26:48:c1:59:e1:fe:3a:bf:54:1a:
b9:40:00:d4:d7:5a:ef:67:c7:e8:ae:8a:1d:2e:0a:50:11:13:
75:8b:e5:42:d7:26:30:f2:a2:89:ec:f2:fd:53:9d:e7:7c:cf:
9d:72:5f:03:cb:6b:98:4d:b5:6b:52:61:87:00:f5:c4:32:24:
40:97:d2:75
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:47 2025 by rpki-client