Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/d61f73-ac0b-45bc-a5a4-1a8301b7e6de/1/gDHy_NG0CWW-rwMQEQHrpjrJyQo.roa
File: gDHy_NG0CWW-rwMQEQHrpjrJyQo.roa (raw, json)
Hash identifier: lT7plTKcnFmM0+K1YC1JfqSitnEuOEhhH01VBgiBkjo=
Subject key identifier: 80:31:F2:FC:D1:B4:09:65:BE:AF:03:10:11:01:EB:A6:3A:C9:C9:0A
Certificate issuer: /CN=75905949e963d3577be076326ca0b91ff32f9684
Certificate serial: 018A8D523828E25F26F224588623A63A7633
Authority key identifier: 75:90:59:49:E9:63:D3:57:7B:E0:76:32:6C:A0:B9:1F:F3:2F:96:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dZBZSelj01d74HYybKC5H_MvloQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/d61f73-ac0b-45bc-a5a4-1a8301b7e6de/1/gDHy_NG0CWW-rwMQEQHrpjrJyQo.roa
Signing time: Wed 13 Sep 2023 06:54:50 +0000
ROA not before: Wed 13 Sep 2023 06:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2a0d:d600::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8d:52:38:28:e2:5f:26:f2:24:58:86:23:a6:3a:76:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75905949e963d3577be076326ca0b91ff32f9684
Validity
Not Before: Sep 13 06:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8031f2fcd1b40965beaf03101101eba63ac9c90a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3e:9a:69:34:40:7b:b7:2b:60:42:e2:c8:89:
9d:ba:3a:b2:94:ca:f1:99:60:39:76:99:9e:d3:b7:
4d:7d:fe:17:ee:a7:80:f6:39:92:99:11:36:30:f8:
11:55:a3:24:13:c4:c1:36:c4:cf:da:d0:48:a2:a0:
38:9a:5d:77:64:f1:a1:26:e9:85:dc:4b:9c:ed:76:
4d:96:4a:03:34:d5:cb:f0:df:10:0f:e3:2a:f6:ef:
e0:3d:eb:f4:18:1d:5d:cf:1d:93:f5:38:3f:00:4f:
69:6d:fb:14:26:86:84:ad:97:17:0f:2b:b8:6e:db:
05:3f:ac:92:e3:db:fb:e2:02:d5:cf:3b:19:47:99:
ac:14:00:d2:36:c8:7a:17:31:2d:dd:72:98:a6:5c:
a4:2d:8b:37:b7:fa:14:4d:36:f6:0b:04:7b:54:c7:
26:ac:ab:be:99:cd:18:a1:fe:b7:9f:da:eb:29:e1:
b9:17:6f:6d:8d:45:4d:c8:88:66:ff:08:c4:fc:68:
13:cd:88:f6:6f:0b:a5:0a:15:f5:ac:03:9e:14:69:
49:20:f1:ef:d6:2d:ab:91:b7:eb:1a:f5:cd:b4:f8:
04:49:a8:29:c4:04:ea:d4:c4:a3:6f:d0:d7:0a:3e:
c6:65:fc:48:84:38:43:32:08:a7:61:1b:12:8b:e4:
87:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:31:F2:FC:D1:B4:09:65:BE:AF:03:10:11:01:EB:A6:3A:C9:C9:0A
X509v3 Authority Key Identifier:
keyid:75:90:59:49:E9:63:D3:57:7B:E0:76:32:6C:A0:B9:1F:F3:2F:96:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dZBZSelj01d74HYybKC5H_MvloQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/d61f73-ac0b-45bc-a5a4-1a8301b7e6de/1/gDHy_NG0CWW-rwMQEQHrpjrJyQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/d61f73-ac0b-45bc-a5a4-1a8301b7e6de/1/dZBZSelj01d74HYybKC5H_MvloQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:d600::/32
Signature Algorithm: sha256WithRSAEncryption
2b:89:5d:cd:8a:51:8e:f3:c0:d6:42:d7:3d:65:90:d8:8c:c6:
52:ec:9f:c0:eb:4f:ef:ab:a3:29:25:81:f3:d2:1b:47:80:53:
b1:0b:76:95:c8:fb:39:26:3a:07:90:3c:48:f9:53:25:b5:95:
72:86:4d:dc:b1:38:06:8f:2b:8f:74:41:c5:4d:92:d8:04:73:
aa:e5:b2:b3:71:f4:52:99:f4:dd:ba:16:3d:72:cb:90:60:93:
d9:a8:dc:e4:6d:e3:8e:e2:e0:01:54:8a:55:c7:c6:bd:3c:8d:
b8:70:6d:6f:db:53:96:0a:07:ac:e0:f4:19:af:53:00:4f:a1:
06:09:8e:61:71:54:f6:75:16:42:ac:74:ab:1e:b5:26:49:be:
dd:b3:a2:33:fa:24:e9:85:8c:54:73:af:bd:5a:0e:5c:ea:c0:
ec:25:56:47:31:ac:d8:cb:27:ef:6f:c0:67:fd:71:6c:10:a0:
e1:f7:d0:a0:57:11:7a:63:f7:3d:1f:d4:04:6f:98:c2:8e:5e:
de:ad:cd:fd:25:eb:d6:3c:f8:e3:74:0b:ac:c5:be:9c:48:03:
52:82:8a:6f:95:32:8c:42:e2:1a:f3:61:5d:3e:9b:e9:16:6d:
7c:f8:bb:f1:dc:5c:2a:8f:94:ef:10:f9:ee:67:4c:08:a6:4b:
f5:43:7a:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 13 12:09:09 2023 by rpki-client on console-fra.rpki-client.org