Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/gZJLShEsLP1Wmbmxk9f_hKTD8hs.roa
File: gZJLShEsLP1Wmbmxk9f_hKTD8hs.roa (raw, json)
Hash identifier: 9+S5zErn2skpJrOCUatUTeZ80EIX9ZZCITHgwYuqfuc=
Subject key identifier: 81:92:4B:4A:11:2C:2C:FD:56:99:B9:B1:93:D7:FF:84:A4:C3:F2:1B
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01918D4AEA3F6B32EC5C13F514132AF7F244
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/gZJLShEsLP1Wmbmxk9f_hKTD8hs.roa
Signing time: Mon 26 Aug 2024 06:06:22 +0000
ROA not before: Mon 26 Aug 2024 06:06:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 152598
IP address blocks: 2a0a:2d04:1::/48 maxlen: 48
2a13:18c4::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 12 Sep 2024 14:25:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:8d:4a:ea:3f:6b:32:ec:5c:13:f5:14:13:2a:f7:f2:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 26 06:06:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81924b4a112c2cfd5699b9b193d7ff84a4c3f21b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:6f:1f:38:9c:c8:1a:20:55:75:fa:eb:f9:f2:
bc:4d:b6:ac:fe:23:7a:9d:99:39:ed:39:c2:44:52:
04:dd:0d:e1:ac:90:ab:0e:25:ee:7b:75:90:8d:9d:
4c:f4:6a:c5:41:82:d5:25:0c:03:d9:9d:c0:90:6c:
eb:1a:af:66:7c:e0:4d:15:67:96:14:7f:8d:c9:5b:
c3:73:26:a4:6e:0e:ef:7b:2d:e4:7e:84:d9:cc:9a:
36:f4:9f:15:5a:df:39:a5:85:1f:83:63:d0:66:b4:
f4:db:ff:e2:93:25:43:9b:af:f5:99:da:72:7d:3c:
da:d3:2e:cb:ba:35:ac:0e:e9:9a:7c:ed:a7:c9:fa:
7b:fd:76:10:5b:42:69:b5:79:69:38:11:df:2b:d7:
af:49:bb:fe:83:b3:77:34:fa:b9:70:c7:88:cb:2d:
b5:97:99:01:73:71:0c:23:44:dd:84:71:fb:5e:b9:
98:43:2b:0b:f6:89:b1:63:d2:1c:ad:a8:e9:db:05:
72:fe:ec:3e:a6:a4:04:b4:8e:7a:05:5d:93:5e:ab:
f7:13:c5:98:6f:a5:81:b3:15:84:ff:ba:64:55:51:
c6:81:50:3f:33:2f:ee:ed:81:b1:1d:7f:fc:7c:07:
02:16:42:c9:48:18:0c:47:97:aa:38:31:79:f7:b2:
31:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:92:4B:4A:11:2C:2C:FD:56:99:B9:B1:93:D7:FF:84:A4:C3:F2:1B
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/gZJLShEsLP1Wmbmxk9f_hKTD8hs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:2d04:1::/48
2a13:18c4::/32
Signature Algorithm: sha256WithRSAEncryption
02:8b:22:35:7b:0a:1d:2b:3d:99:8a:ac:18:20:a4:e7:cd:39:
b4:a4:8a:8e:64:bf:9c:67:85:75:0d:c5:50:e0:3b:9b:5e:d2:
aa:f4:05:4c:47:ad:e6:c1:96:33:74:50:b1:18:fb:d5:ed:a4:
0f:2a:82:19:c0:b9:68:ea:03:8b:db:4d:de:af:1d:a7:1d:fa:
14:d8:6b:93:75:66:ec:e5:50:87:49:ff:89:4c:bb:dc:5e:9e:
2a:12:d0:b6:ca:d3:d9:bb:9a:82:93:20:9a:cc:46:c1:29:32:
a8:46:fb:55:ae:d6:32:ac:d6:63:c1:4b:58:11:ae:52:b5:e7:
2c:29:b4:2d:f5:80:65:73:eb:c9:c2:bc:60:8f:a4:ea:2e:dc:
46:a6:cc:c2:fb:2b:44:af:95:59:ec:d7:dc:3b:c2:ac:a1:e0:
46:bc:11:79:98:43:b4:d8:02:3e:37:e3:7d:42:16:a8:49:69:
3c:94:b8:19:df:96:77:02:1a:39:54:42:18:c0:93:10:65:98:
b9:00:c0:84:25:4d:27:9e:58:26:c7:e5:22:c1:77:94:64:ea:
4c:37:4c:93:e3:bb:29:bb:2b:3d:f5:0e:1c:41:ad:61:68:ba:
a6:5c:ef:ee:9e:97:4e:df:fb:d5:a8:59:e0:cc:2e:fa:b3:5c:
e9:16:d0:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:08 2025 by rpki-client