Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/gH6-9cuMFFBLjUUvQAHGMNFeznQ.roa
File: gH6-9cuMFFBLjUUvQAHGMNFeznQ.roa (raw, json)
Hash identifier: YUhcCfOzvNksZ61AzZPluecVvPDkqMLJudkhV21t54w=
Subject key identifier: 80:7E:BE:F5:CB:8C:14:50:4B:8D:45:2F:40:01:C6:30:D1:5E:CE:74
Certificate issuer: /CN=b61046dcb185b0bfd9976628d69a189d3c3987d8
Certificate serial: 01879B5A0BE39512448E211F400B538408B7
Authority key identifier: B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/gH6-9cuMFFBLjUUvQAHGMNFeznQ.roa
Signing time: Wed 19 Apr 2023 21:09:42 +0000
ROA not before: Wed 19 Apr 2023 21:09:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52209
IP address blocks: 2a13:3cc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 02 Nov 2023 13:10:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9b:5a:0b:e3:95:12:44:8e:21:1f:40:0b:53:84:08:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b61046dcb185b0bfd9976628d69a189d3c3987d8
Validity
Not Before: Apr 19 21:09:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=807ebef5cb8c14504b8d452f4001c630d15ece74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:e7:24:03:92:6e:73:aa:40:0e:c3:b1:aa:59:
4e:fe:42:95:c6:75:05:ae:5b:32:1a:ca:1d:09:95:
83:1a:d9:e4:e0:57:74:e7:55:4f:36:23:40:2d:36:
62:4f:8c:a5:dc:a1:20:1a:f6:15:d0:1a:77:bb:48:
38:2d:2a:05:06:5e:a1:48:95:c7:4a:cc:07:eb:07:
95:eb:a0:26:84:be:c0:1a:30:a1:1e:fa:d1:33:ce:
64:4f:4b:c4:2c:b8:b3:3e:e2:31:db:09:e3:e7:a2:
4c:2b:46:87:c2:31:0a:3a:0b:99:4d:41:62:27:19:
2d:83:4e:43:38:12:c4:20:69:c2:b4:16:ab:df:3f:
8e:4b:85:12:73:98:65:46:ec:e5:b4:8d:98:e1:b2:
b7:aa:56:0a:ff:95:cb:0e:2f:6c:d4:cd:d6:e9:47:
ea:f0:c7:17:37:44:56:23:ad:10:29:46:88:9e:7b:
fd:2b:12:ac:bc:1b:33:01:5e:e8:6a:6f:ef:c9:14:
4a:c6:ac:c8:29:9b:63:71:b7:72:c1:68:0c:c8:6e:
58:b3:0b:47:fc:2d:c2:81:08:18:3f:be:da:ce:28:
b8:43:f5:a3:6d:84:5e:e1:47:ab:8b:d4:9b:fc:87:
47:79:ba:8c:b8:e5:df:1b:ea:ae:ab:0b:d5:ea:c7:
3d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:7E:BE:F5:CB:8C:14:50:4B:8D:45:2F:40:01:C6:30:D1:5E:CE:74
X509v3 Authority Key Identifier:
keyid:B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/gH6-9cuMFFBLjUUvQAHGMNFeznQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:3cc0::/29
Signature Algorithm: sha256WithRSAEncryption
31:5c:9f:54:c3:57:43:d7:c5:de:dc:7e:b6:05:c5:7b:bb:13:
7a:13:78:28:bf:16:e8:64:08:ba:43:0a:f3:93:16:e7:61:df:
8f:93:59:77:99:58:7e:b6:12:76:22:2d:a0:cf:cd:6e:c9:fb:
cb:e5:67:69:bb:b4:c0:f1:1d:b3:83:fc:fe:5f:17:d5:c2:69:
0e:15:34:e9:81:85:36:54:f3:1b:23:03:50:40:70:d4:d8:42:
8d:3d:e5:ed:27:2f:53:41:c5:37:39:d7:cb:9a:d2:15:52:c3:
29:39:42:63:0a:f0:17:57:94:39:1c:7c:df:eb:58:9e:a7:3c:
f4:f8:f5:26:00:3f:51:09:c4:45:ed:bb:df:b9:e9:98:06:6f:
56:fc:80:44:a1:d1:08:31:c5:69:22:3b:fc:d1:64:4b:23:96:
a2:09:87:ba:ab:47:ae:f9:6d:02:c6:04:d3:c2:64:45:3f:9f:
0a:4a:93:81:84:c6:2c:a8:b3:04:45:de:e8:ca:ea:21:13:e0:
4f:7f:12:b9:d8:63:3d:5c:6c:49:92:0f:c5:62:f7:50:08:12:
33:74:85:f8:c3:53:b4:a3:ce:5e:a0:13:03:d7:7f:a6:a1:c7:
2e:76:80:05:46:60:ed:23:10:68:da:0c:d4:6a:3f:36:d9:57:
53:c4:03:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:24 2024 by rpki-client on console-ams.rpki-client.org