Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/a35052-7336-425f-a7ba-87f68b71e44d/1/GDbIADrM3kFWUZPJijAEbXRiWAQ.roa
File: GDbIADrM3kFWUZPJijAEbXRiWAQ.roa (raw, json)
Hash identifier: gHO654DCOF3HCNakzi3Sq3Kw3DLqNhZZULYDny0UPlQ=
Subject key identifier: 18:36:C8:00:3A:CC:DE:41:56:51:93:C9:8A:30:04:6D:74:62:58:04
Certificate issuer: /CN=57b275b9bcc45dce8b3ef0172c96737800947a4e
Certificate serial: 018A3C96A2C815A41141432AE894679166BD
Authority key identifier: 57:B2:75:B9:BC:C4:5D:CE:8B:3E:F0:17:2C:96:73:78:00:94:7A:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V7J1ubzEXc6LPvAXLJZzeACUek4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/a35052-7336-425f-a7ba-87f68b71e44d/1/GDbIADrM3kFWUZPJijAEbXRiWAQ.roa
Signing time: Mon 28 Aug 2023 14:40:19 +0000
ROA not before: Mon 28 Aug 2023 14:40:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216415
IP address blocks: 2a05:cd00::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:3c:96:a2:c8:15:a4:11:41:43:2a:e8:94:67:91:66:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57b275b9bcc45dce8b3ef0172c96737800947a4e
Validity
Not Before: Aug 28 14:40:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1836c8003accde41565193c98a30046d74625804
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a1:83:49:21:21:c2:85:0b:65:2f:f2:8e:69:
76:5d:74:60:cf:d6:b8:bc:8c:7c:3c:13:30:3d:3b:
a3:80:8f:c0:d6:e7:39:73:d7:4a:0e:de:c7:46:b4:
e5:ef:8d:fc:ea:6d:2f:1e:c0:f8:cc:cb:6d:ac:c8:
c3:8f:23:cf:5d:be:39:8f:41:22:0a:70:e7:14:70:
66:fd:d6:5e:33:d4:ad:fd:60:cc:84:75:0d:9e:31:
21:aa:b0:b6:4f:62:8a:7a:b0:e2:bc:dd:fc:f8:c3:
a1:c3:2c:78:5f:35:f2:96:a6:e4:f3:84:e6:85:f8:
bc:41:be:46:04:5f:87:bf:70:02:04:d5:96:8a:2a:
2d:ba:f2:68:11:7e:b1:66:87:42:89:bd:c3:60:f7:
d6:47:ae:5c:4d:f9:56:b3:ca:6b:e1:35:cb:3e:bc:
09:d5:65:c8:df:63:59:48:67:2b:0f:ee:de:d3:2e:
36:5f:92:aa:bc:09:26:8f:37:ff:26:59:32:b8:75:
65:18:6e:1f:0d:0d:0a:e7:83:5c:f5:bc:68:1b:be:
4c:1c:8b:ac:c6:23:fc:c5:4b:30:75:a9:d5:ed:76:
1d:76:59:b0:78:fc:50:f3:da:aa:64:20:cb:bf:6e:
3b:b6:b0:77:e2:28:2e:68:bb:ac:f0:dc:98:59:11:
a7:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:36:C8:00:3A:CC:DE:41:56:51:93:C9:8A:30:04:6D:74:62:58:04
X509v3 Authority Key Identifier:
keyid:57:B2:75:B9:BC:C4:5D:CE:8B:3E:F0:17:2C:96:73:78:00:94:7A:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V7J1ubzEXc6LPvAXLJZzeACUek4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/a35052-7336-425f-a7ba-87f68b71e44d/1/GDbIADrM3kFWUZPJijAEbXRiWAQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/a35052-7336-425f-a7ba-87f68b71e44d/1/V7J1ubzEXc6LPvAXLJZzeACUek4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:cd00::/32
Signature Algorithm: sha256WithRSAEncryption
97:dd:f8:da:65:2e:e7:27:da:1e:21:e4:e0:cb:48:1b:8f:b1:
ed:33:ed:a1:8b:4a:25:ff:4c:b6:29:b3:58:f8:63:f7:7a:00:
cd:98:2a:2b:4a:46:04:f8:d5:70:7d:e1:66:2a:e7:71:e6:bc:
bb:1d:f2:24:3c:06:85:c3:eb:4c:38:09:f2:44:03:17:be:d8:
33:68:94:1c:31:ee:cd:69:a3:7f:72:a3:d2:b2:d3:d3:31:b6:
66:09:e8:8d:b3:49:cc:ca:cb:11:07:ef:bc:1b:3d:07:20:b3:
91:7c:12:70:ba:9a:bc:76:11:ca:87:c9:2d:11:32:bd:a8:42:
7f:dc:44:72:de:22:fe:fb:d3:f6:94:2c:ce:3f:a7:39:d1:52:
21:ba:83:8f:94:31:9c:25:ba:a1:07:33:45:dc:b8:35:ba:03:
26:6b:a7:52:9d:82:1f:7b:f6:09:5b:19:4b:8e:47:8e:1d:3a:
66:5c:a4:0a:fc:11:7f:c1:80:41:70:01:58:4b:8d:a4:56:a0:
00:c7:4d:1c:f4:1c:f8:1f:36:55:ce:82:4d:5b:e3:af:e7:e3:
62:33:5f:71:11:b2:d0:42:a1:cd:da:55:47:e9:c9:46:ff:6d:
68:b6:d3:b7:c6:5f:cd:ca:83:17:29:0e:4b:52:ef:c3:1a:d7:
d0:c0:27:ec
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYo8lqLIFaQRQUMq6JRnkWa9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU3YjI3NWI5YmNjNDVkY2U4YjNlZjAxNzJjOTY3Mzc4MDA5
NDdhNGUwHhcNMjMwODI4MTQ0MDE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxODM2YzgwMDNhY2NkZTQxNTY1MTkzYzk4YTMwMDQ2ZDc0NjI1ODA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzKGDSSEhwoULZS/yjml2XXRgz9a4
vIx8PBMwPTujgI/A1uc5c9dKDt7HRrTl74386m0vHsD4zMttrMjDjyPPXb45j0Ei
CnDnFHBm/dZeM9St/WDMhHUNnjEhqrC2T2KKerDivN38+MOhwyx4XzXylqbk84Tm
hfi8Qb5GBF+Hv3ACBNWWiiotuvJoEX6xZodCib3DYPfWR65cTflWs8pr4TXLPrwJ
1WXI32NZSGcrD+7e0y42X5KqvAkmjzf/JlkyuHVlGG4fDQ0K54Nc9bxoG75MHIus
xiP8xUswdanV7XYddlmwePxQ89qqZCDLv247trB34iguaLus8NyYWRGnxQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFBg2yAA6zN5BVlGTyYowBG10YlgEMB8GA1UdIwQY
MBaAFFeydbm8xF3Oiz7wFyyWc3gAlHpOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVjdKMXViekVYYzZMUHZBWExKWnplQUNVZWs0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9hMzUwNTItNzMzNi00MjVmLWE3YmEt
ODdmNjhiNzFlNDRkLzEvR0RiSUFEck0za0ZXVVpQSmlqQUViWFJpV0FRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9hMzUwNTItNzMzNi00MjVmLWE3YmEtODdmNjhiNzFlNDRk
LzEvVjdKMXViekVYYzZMUHZBWExKWnplQUNVZWs0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgXNADAN
BgkqhkiG9w0BAQsFAAOCAQEAl9342mUu5yfaHiHk4MtIG4+x7TPtoYtKJf9Mtimz
WPhj93oAzZgqK0pGBPjVcH3hZirncea8ux3yJDwGhcPrTDgJ8kQDF77YM2iUHDHu
zWmjf3Kj0rLT0zG2ZgnojbNJzMrLEQfvvBs9ByCzkXwScLqavHYRyofJLREyvahC
f9xEct4i/vvT9pQszj+nOdFSIbqDj5QxnCW6oQczRdy4NboDJmunUp2CH3v2CVsZ
S45Hjh06ZlykCvwRf8GAQXABWEuNpFagAMdNHPQc+B82Vc6CTVvjr+fjYjNfcRGy
0EKhzdpVR+nJRv9taLbTt8ZfzcqDFykOS1LvwxrX0MAn7A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:13 2024 by rpki-client on console-ams.rpki-client.org