Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/0f1f9f-5a51-4bd6-bf30-39a24388a5e8/1/G0WLKXy9g2TmGjLRfCrs9DeSyT0.roa
File: G0WLKXy9g2TmGjLRfCrs9DeSyT0.roa (raw, json)
Hash identifier: HabaeO0i4Xy9tCLgB9MeDlA3dJ+L/IYwwNyvLBT66/I=
Subject key identifier: 1B:45:8B:29:7C:BD:83:64:E6:1A:32:D1:7C:2A:EC:F4:37:92:C9:3D
Certificate issuer: /CN=f6137c597d1e30cb75618e51f42b7f79ed5ffc88
Certificate serial: 01927DD176A5B0AEA132CC95C7E14CA61566
Authority key identifier: F6:13:7C:59:7D:1E:30:CB:75:61:8E:51:F4:2B:7F:79:ED:5F:FC:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9hN8WX0eMMt1YY5R9Ct_ee1f_Ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/0f1f9f-5a51-4bd6-bf30-39a24388a5e8/1/G0WLKXy9g2TmGjLRfCrs9DeSyT0.roa
Signing time: Fri 11 Oct 2024 23:02:12 +0000
ROA not before: Fri 11 Oct 2024 23:02:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57271
IP address blocks: 2a0c:7b85::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 17 Oct 2024 20:09:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:7d:d1:76:a5:b0:ae:a1:32:cc:95:c7:e1:4c:a6:15:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6137c597d1e30cb75618e51f42b7f79ed5ffc88
Validity
Not Before: Oct 11 23:02:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1b458b297cbd8364e61a32d17c2aecf43792c93d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:29:e6:d1:17:23:4a:62:e8:89:f4:a9:a6:36:
31:47:03:be:54:ce:58:c7:17:d1:de:ee:3a:08:7c:
d8:e9:85:12:36:7b:d3:bb:b1:79:48:ff:f3:d4:69:
2c:ef:23:cd:55:4b:14:a4:fe:3f:d2:4b:ca:54:5f:
ef:ed:eb:da:a1:1e:4e:05:83:d9:74:57:06:db:aa:
50:bf:f7:70:0a:26:61:3c:a9:a1:e0:7a:a0:66:a1:
9b:66:a5:8d:6f:de:99:6c:b3:d7:6f:18:a6:ac:ba:
0b:c6:07:bb:89:fc:cc:34:5a:1b:45:f8:24:5b:48:
df:55:ee:06:6e:3c:d8:60:c3:63:cb:61:2b:52:24:
43:28:f8:cd:87:45:f3:99:9b:86:eb:2f:c1:4f:0b:
c6:ec:35:72:af:ea:0f:84:1a:17:cb:0d:91:20:b5:
20:1a:6b:33:52:41:67:cf:e0:66:24:7e:b1:30:60:
12:f5:fc:7c:17:9e:79:07:59:b2:3c:96:fc:90:d6:
d4:51:85:69:d7:35:3b:ea:67:26:97:f2:19:cf:2d:
e9:33:ab:d0:04:eb:bb:3c:2f:c0:23:60:aa:59:05:
fd:ed:53:98:5a:7f:ad:5f:b7:41:26:98:2a:ba:c6:
65:06:46:02:fc:55:f0:10:f8:08:01:f4:a4:f9:1a:
19:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:45:8B:29:7C:BD:83:64:E6:1A:32:D1:7C:2A:EC:F4:37:92:C9:3D
X509v3 Authority Key Identifier:
keyid:F6:13:7C:59:7D:1E:30:CB:75:61:8E:51:F4:2B:7F:79:ED:5F:FC:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9hN8WX0eMMt1YY5R9Ct_ee1f_Ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/0f1f9f-5a51-4bd6-bf30-39a24388a5e8/1/G0WLKXy9g2TmGjLRfCrs9DeSyT0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/0f1f9f-5a51-4bd6-bf30-39a24388a5e8/1/9hN8WX0eMMt1YY5R9Ct_ee1f_Ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:7b85::/32
Signature Algorithm: sha256WithRSAEncryption
52:5f:32:24:5f:33:80:f2:4e:73:f9:ea:6a:8e:9b:aa:6f:d1:
88:6d:73:6f:b0:34:48:34:23:aa:dd:d6:7e:62:e9:b1:04:30:
eb:2d:c7:b0:00:e3:01:21:97:d1:c6:0d:0a:79:8b:0a:69:92:
61:dc:9b:7e:30:ae:43:67:5a:27:fc:91:c5:dc:e1:47:4e:26:
9d:94:44:43:26:e9:1d:74:8d:d5:39:e8:d3:7a:38:d6:4e:82:
b5:8a:09:e2:21:58:5b:51:2b:5d:b2:2b:62:a4:45:2c:6f:2c:
8e:e6:0c:ea:6d:59:b7:da:f5:0f:c9:8c:d5:2b:7a:b9:27:fe:
54:74:91:df:c2:69:32:11:ff:a2:cd:e8:ab:fe:3d:1b:ea:2d:
1c:f7:63:17:dd:b8:7c:53:f6:5b:38:4f:47:b9:e5:35:8d:5c:
fc:cf:d8:0d:59:94:4d:db:d6:a0:4a:b6:9a:cb:3d:55:50:10:
82:67:06:92:a3:16:9c:35:1b:42:f5:95:8c:99:3e:57:ce:a1:
eb:90:02:49:18:42:c8:c3:fc:9b:d4:e2:30:71:a9:b9:21:cf:
98:df:b6:e4:6d:d2:00:6b:48:92:44:de:95:c4:9b:e2:bf:a1:
ae:a9:71:21:2b:a1:5e:b4:5c:35:60:19:09:fe:91:7c:be:1b:
34:6b:35:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 17 22:34:22 2024 by rpki-client on console-ams.rpki-client.org