Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/GjcQY9gBYilwOmnzOXXl1eavJEk.roa
File: GjcQY9gBYilwOmnzOXXl1eavJEk.roa (raw, json)
Hash identifier: 5g59mR+WKr1MCU1vg0AgAWpUfPVUYXo/ZrBzUTo83CE=
Subject key identifier: 1A:37:10:63:D8:01:62:29:70:3A:69:F3:39:75:E5:D5:E6:AF:24:49
Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071
Certificate serial: 018AB195A98CC58C75E53CE8C96AF2088350
Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/GjcQY9gBYilwOmnzOXXl1eavJEk.roa
Signing time: Wed 20 Sep 2023 07:54:50 +0000
ROA not before: Wed 20 Sep 2023 07:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15542
IP address blocks: 2a07:3501:1030::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b1:95:a9:8c:c5:8c:75:e5:3c:e8:c9:6a:f2:08:83:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071
Validity
Not Before: Sep 20 07:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a371063d8016229703a69f33975e5d5e6af2449
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:1c:fd:d5:07:c3:1e:de:d0:2f:e3:04:9f:0d:
3f:4a:4a:01:88:ce:c4:7f:c7:e4:0c:af:d9:cb:c5:
21:5b:f8:1f:5b:91:cc:17:69:eb:03:f3:db:65:fe:
eb:5c:9d:19:4a:3f:9d:d9:ac:54:2e:a8:1f:bf:75:
d2:9e:37:cf:5a:9b:d0:38:c7:6a:9e:92:c5:0e:7a:
02:c5:40:b9:06:ae:c7:82:71:ff:9c:93:c4:2a:c9:
14:32:8a:f4:37:04:5e:0c:36:21:c3:12:86:c3:b2:
05:fd:1c:24:c1:9c:01:31:5e:79:88:53:d8:30:fb:
47:fd:ae:fe:5d:e6:47:11:22:71:04:36:01:5c:d2:
84:d9:49:09:64:5a:e3:9e:e8:52:dc:8e:f2:16:0e:
13:da:0f:02:36:b3:ee:75:e6:4e:12:f4:7d:30:9a:
6b:54:a8:3c:0f:fe:f7:0e:fe:7e:a6:d9:97:68:40:
78:e2:e2:8d:3a:a7:a9:d2:ac:d2:15:62:b8:39:fb:
f8:8e:f5:5f:14:3d:cd:93:11:5d:f0:c6:45:39:ff:
da:2e:99:c6:b2:60:a6:56:6c:9c:ff:da:9c:38:e1:
98:6d:73:60:d8:d5:02:0b:6f:0c:af:7b:24:f8:30:
ff:85:0a:3a:b9:7c:93:bd:6d:14:c2:b6:b1:8d:63:
3c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:37:10:63:D8:01:62:29:70:3A:69:F3:39:75:E5:D5:E6:AF:24:49
X509v3 Authority Key Identifier:
keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/GjcQY9gBYilwOmnzOXXl1eavJEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:3501:1030::/48
Signature Algorithm: sha256WithRSAEncryption
97:c9:66:7b:ac:d9:16:ec:ed:79:8d:69:e3:0a:64:e4:a6:7e:
71:b8:16:f0:ce:12:c6:77:1c:96:e0:c4:dd:40:2d:be:2b:ef:
5f:0c:88:bd:5d:2f:18:66:8a:05:20:ef:d9:dc:96:ea:4b:94:
e3:27:de:2f:6b:ab:e8:2e:59:e8:07:58:d9:cb:30:83:3f:37:
c9:83:90:5c:45:b0:42:40:d5:b9:81:5f:e9:8d:a5:bf:6f:ea:
03:4c:53:37:8b:5d:27:33:a7:f5:3d:4b:8f:fa:a8:7f:35:33:
a9:69:f5:52:68:66:8d:4f:22:be:53:6e:4c:54:16:be:0c:27:
90:d9:f1:af:75:40:e6:07:c6:4e:fe:8c:1e:03:6f:5f:4d:3a:
bc:c1:6a:cb:5a:8b:d7:62:b5:e9:91:d5:29:e7:3e:de:8c:1c:
1b:45:40:a4:bd:49:0a:6e:65:c4:af:1c:7e:04:94:5e:cf:33:
6e:0b:4a:60:92:5a:58:e4:95:44:dd:34:5e:ed:a5:34:78:61:
ac:3c:07:d3:18:cf:5f:d3:eb:e1:e2:0c:b1:b4:0b:db:05:d4:
f7:3f:55:43:11:79:10:d5:6c:aa:a2:e8:9e:d8:2f:67:2c:3e:
ed:72:32:e4:a6:6c:1b:a1:41:e6:53:cd:d1:0b:1d:4c:22:25:
f3:d7:c3:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:54 2024 by rpki-client on console-fra.rpki-client.org