Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/gsp2jSCnv5MFh8hnlHCTd6B8014.roa
File: gsp2jSCnv5MFh8hnlHCTd6B8014.roa (raw, json)
Hash identifier: MvrIwqTw4lhhb8qGlXUE0CN4DS3oBciElhE1K8V6J2M=
Subject key identifier: 82:CA:76:8D:20:A7:BF:93:05:87:C8:67:94:70:93:77:A0:7C:D3:5E
Certificate issuer: /CN=037b48449ba1cae15bde2c2f086d94218e0720bb
Certificate serial: 018C415762444A40EF23651218D2BCC9562E
Authority key identifier: 03:7B:48:44:9B:A1:CA:E1:5B:DE:2C:2F:08:6D:94:21:8E:07:20:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A3tIRJuhyuFb3iwvCG2UIY4HILs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/gsp2jSCnv5MFh8hnlHCTd6B8014.roa
Signing time: Wed 06 Dec 2023 22:54:54 +0000
ROA not before: Wed 06 Dec 2023 22:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212722
IP address blocks: 2a10:501::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:41:57:62:44:4a:40:ef:23:65:12:18:d2:bc:c9:56:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=037b48449ba1cae15bde2c2f086d94218e0720bb
Validity
Not Before: Dec 6 22:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82ca768d20a7bf930587c86794709377a07cd35e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:30:1d:c5:22:47:a9:e3:96:ea:d6:e3:fc:6e:
ff:ce:81:b4:5b:49:f7:ab:0e:bd:51:f9:ec:34:aa:
e8:19:b9:8e:e9:7f:66:aa:61:85:92:6d:04:73:8a:
2a:20:6a:56:da:77:e2:10:18:f1:fd:a3:91:e3:73:
3f:69:9a:70:1b:15:9a:29:3f:aa:3d:02:3e:ef:20:
4d:bc:16:c9:bc:b9:bb:0d:1f:63:83:18:c6:83:47:
95:85:0d:1a:4f:f4:6b:b6:7d:86:7a:a1:37:0a:f2:
71:af:da:8d:36:db:e3:2e:e1:cf:5b:eb:33:2c:af:
45:ef:26:e3:97:fc:bf:9e:01:72:fa:25:fc:da:96:
7c:f7:95:36:2a:ae:c1:82:fd:46:e0:4a:97:dc:45:
25:f9:d7:1a:76:85:5d:e9:d7:48:46:84:10:cc:d2:
63:27:4f:2c:e8:d3:15:cb:6b:97:d8:e3:9b:91:0a:
f9:2f:40:f3:b3:ef:71:11:63:8e:cd:27:de:e7:ab:
fc:23:df:52:3b:fe:d5:9f:d1:18:ad:1d:ef:79:d2:
b1:a5:62:67:30:ac:59:47:26:17:be:34:15:76:62:
ab:42:4f:bf:68:4a:3a:7d:07:49:a8:75:f2:98:15:
35:ce:98:35:48:f9:a6:09:8c:a0:0f:e2:8a:cf:bc:
6a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:CA:76:8D:20:A7:BF:93:05:87:C8:67:94:70:93:77:A0:7C:D3:5E
X509v3 Authority Key Identifier:
keyid:03:7B:48:44:9B:A1:CA:E1:5B:DE:2C:2F:08:6D:94:21:8E:07:20:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A3tIRJuhyuFb3iwvCG2UIY4HILs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/gsp2jSCnv5MFh8hnlHCTd6B8014.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/A3tIRJuhyuFb3iwvCG2UIY4HILs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:501::/32
Signature Algorithm: sha256WithRSAEncryption
63:a7:c6:34:72:95:f6:cc:21:c3:52:c2:8f:4b:c3:ab:6b:37:
f6:be:e1:4c:01:11:33:ff:db:a7:43:84:c6:50:7e:6c:77:13:
71:1f:ff:27:fe:dc:2d:d6:50:f1:85:d0:93:7c:dd:11:97:f9:
ea:d7:c8:9b:6e:0b:cb:8d:1d:ba:85:c3:a4:7d:ee:1b:5b:09:
04:0a:16:df:0d:f4:93:73:81:c6:5f:d1:05:50:92:a9:77:56:
83:79:b7:d0:1d:98:54:92:ba:cc:b8:d9:d4:36:be:dd:0c:b1:
6c:d3:da:c6:66:ac:0b:5f:86:06:9d:a7:a9:da:de:98:f3:9c:
16:94:81:8b:df:f8:b3:46:4a:a0:2c:cb:a2:0a:ff:54:18:34:
c3:b1:3d:57:28:56:3b:93:bb:12:d6:c2:7f:ec:89:4d:7b:c4:
d6:64:7e:42:cb:54:51:42:f8:52:cc:8e:b4:57:fd:a0:74:35:
4e:30:74:58:0e:d1:fd:e4:fb:1c:ad:11:fc:42:35:46:ff:9b:
a6:12:d0:b1:25:5e:c6:b2:e0:db:30:37:99:63:2b:76:40:b0:
ab:c4:c3:4d:8e:18:66:9a:34:b1:05:34:c4:df:3a:b6:09:f9:
6c:79:65:92:4f:ed:54:dd:86:5c:29:cc:72:a2:d1:c5:89:a5:
99:fc:7b:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:37 2024 by rpki-client on console-ams.rpki-client.org