Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/130fff-97e3-4ac0-bdcd-5fdc87e6d2a0/1/ga8CGPfjUM_4gIUONzU2LjEvevc.roa
File: ga8CGPfjUM_4gIUONzU2LjEvevc.roa (raw, json)
Hash identifier: VbqDMdx1PNRS39z3tD9oGXTDPLHK61o2SFDXr+v6ArA=
Subject key identifier: 81:AF:02:18:F7:E3:50:CF:F8:80:85:0E:37:35:36:2E:31:2F:7A:F7
Certificate issuer: /CN=e17a1a62248df879133c073ad562ad03a2b92fdc
Certificate serial: 018847DA7AAD146721CFC31E99937619CF40
Authority key identifier: E1:7A:1A:62:24:8D:F8:79:13:3C:07:3A:D5:62:AD:03:A2:B9:2F:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4XoaYiSN-HkTPAc61WKtA6K5L9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/130fff-97e3-4ac0-bdcd-5fdc87e6d2a0/1/ga8CGPfjUM_4gIUONzU2LjEvevc.roa
Signing time: Tue 23 May 2023 09:04:40 +0000
ROA not before: Tue 23 May 2023 09:04:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3301
IP address blocks: 2001:67c:1770::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:47:da:7a:ad:14:67:21:cf:c3:1e:99:93:76:19:cf:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e17a1a62248df879133c073ad562ad03a2b92fdc
Validity
Not Before: May 23 09:04:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81af0218f7e350cff880850e3735362e312f7af7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ea:10:b8:eb:8d:03:f9:ad:d8:e9:d1:6a:6a:
4d:86:52:a7:97:02:75:e1:5c:eb:c8:3d:1b:93:eb:
d9:1b:e7:06:f4:74:72:7c:76:e8:d4:b4:61:b1:31:
f4:c6:50:05:a8:9a:94:e5:fd:51:86:d2:74:2c:1c:
a3:dc:d7:71:8b:e7:0b:f8:fc:c7:e3:d7:80:b7:70:
2e:e2:92:4b:fa:eb:8b:18:11:85:cb:cd:01:45:b3:
46:62:c2:44:ae:8c:43:47:50:59:14:51:3a:c2:0a:
51:7e:06:fe:ea:20:d0:e4:9e:a5:61:20:97:86:71:
4a:6d:ed:05:36:f0:11:f9:85:44:4a:75:96:4c:e0:
2a:03:15:2a:03:ed:48:85:d1:fc:26:1d:b4:e6:13:
a3:ac:74:2d:f9:5e:02:c2:a6:fc:aa:0a:26:fc:6f:
69:2f:1d:5b:6d:9d:bd:c3:df:d3:82:b3:d0:cd:df:
fc:f1:63:36:ed:15:4c:f5:58:99:6f:f8:85:60:bd:
56:97:e7:61:e5:51:1a:8e:f1:20:c9:1c:c9:07:b5:
93:91:2b:36:cc:40:b9:53:f9:5c:1e:ed:96:77:ae:
98:cd:37:6f:05:16:0b:24:55:ac:c4:01:15:c5:2f:
fb:57:b4:dd:96:09:5d:ac:cc:00:af:05:f1:c7:5c:
53:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:AF:02:18:F7:E3:50:CF:F8:80:85:0E:37:35:36:2E:31:2F:7A:F7
X509v3 Authority Key Identifier:
keyid:E1:7A:1A:62:24:8D:F8:79:13:3C:07:3A:D5:62:AD:03:A2:B9:2F:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4XoaYiSN-HkTPAc61WKtA6K5L9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/130fff-97e3-4ac0-bdcd-5fdc87e6d2a0/1/ga8CGPfjUM_4gIUONzU2LjEvevc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/130fff-97e3-4ac0-bdcd-5fdc87e6d2a0/1/4XoaYiSN-HkTPAc61WKtA6K5L9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1770::/48
Signature Algorithm: sha256WithRSAEncryption
04:44:fa:1c:3b:4d:e2:3d:5a:00:d8:17:f5:cd:ca:9e:5b:46:
0a:e5:0a:4f:be:70:60:c8:d1:cd:4e:c7:ca:23:89:a0:ce:10:
c0:7f:22:e0:11:d5:94:86:09:f8:40:ec:cc:32:d9:5d:50:a5:
ed:d7:6b:24:f9:d0:36:b5:47:8e:64:9f:37:20:52:c6:98:14:
fc:e4:57:a4:12:a1:37:b9:18:43:3e:2b:13:0c:59:3d:a2:25:
7c:33:41:b2:22:90:ed:22:47:8e:36:b9:f6:b9:76:4a:13:ef:
9d:a4:ed:c3:a3:b5:f1:a7:90:b1:70:02:d8:00:c0:bc:b4:92:
58:d3:f6:3f:d5:ae:8b:b0:97:a8:63:93:75:18:f5:43:d6:25:
fa:cf:63:30:f8:e9:45:51:be:d1:a6:8e:64:82:d3:b1:b9:df:
ef:3d:db:c6:c4:8c:26:ee:13:9c:8c:d8:a3:df:68:6d:56:a2:
da:7a:db:e7:4f:1a:7c:19:c7:40:1c:53:6a:c3:25:1d:52:ba:
e4:0d:c3:c1:4a:3a:45:cd:79:2e:66:d2:66:c2:a7:c6:40:02:
4d:de:bf:f6:3a:11:5b:d2:6f:56:ea:f1:b3:07:65:b0:77:1c:
c3:ca:dc:80:60:77:e0:b7:1b:19:44:d6:98:17:62:17:02:0e:
a4:46:fa:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:15 2024 by rpki-client on console-fra.rpki-client.org