Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/Gl32B0P7qZ3VrGa2DuBAuy8XDSA.roa
File: Gl32B0P7qZ3VrGa2DuBAuy8XDSA.roa (raw, json)
Hash identifier: 5tnYVj7YF52GHw2sfquj41eyIGC3AMxoiOiCOajlTJo=
Subject key identifier: 1A:5D:F6:07:43:FB:A9:9D:D5:AC:66:B6:0E:E0:40:BB:2F:17:0D:20
Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071
Certificate serial: 018A4B56F53D56B25F9E8D67DC372B126ACA
Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/Gl32B0P7qZ3VrGa2DuBAuy8XDSA.roa
Signing time: Thu 31 Aug 2023 11:25:04 +0000
ROA not before: Thu 31 Aug 2023 11:25:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 38915
IP address blocks: 2a07:3502:1070::/48 maxlen: 48
2a07:3502:1040::/48 maxlen: 48
2a07:3502:1090::/48 maxlen: 48
2a07:3500:19f8::/48 maxlen: 48
2a07:3500:1998::/48 maxlen: 48
2a07:3500:19d8::/48 maxlen: 48
2a07:3500:19a8::/48 maxlen: 48
2a07:3500:19e8::/48 maxlen: 48
2a07:3500:19e0::/48 maxlen: 48
2a07:3500:19a0::/48 maxlen: 48
2a07:3500:19b0::/48 maxlen: 48
2a07:3500:19f0::/48 maxlen: 48
2a07:3500:1a00::/48 maxlen: 48
2a07:3500:1200::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 20 Sep 2023 07:42:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4b:56:f5:3d:56:b2:5f:9e:8d:67:dc:37:2b:12:6a:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071
Validity
Not Before: Aug 31 11:25:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a5df60743fba99dd5ac66b60ee040bb2f170d20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:5a:30:2f:9a:80:ee:84:1a:6e:f5:bc:16:69:
03:56:ed:40:82:27:f0:ba:30:3d:4a:d5:ed:09:cc:
ff:5e:1a:5f:9f:19:3a:be:f3:13:9c:0e:70:47:e3:
d7:7a:f3:63:99:07:81:b8:dd:19:63:a7:6c:2f:4c:
11:81:6e:18:6e:92:bf:56:ba:42:5d:ff:d0:e4:66:
7f:52:76:c9:5a:54:db:bf:52:ef:00:e3:f6:76:e5:
e1:fa:51:2c:64:0e:ac:8e:e3:a3:61:da:5c:f9:65:
40:ae:cc:ee:1e:05:5c:85:cd:bb:02:96:67:b5:0d:
14:4b:5a:9a:24:d7:f2:80:95:6b:27:da:56:ad:2a:
64:bd:cd:b9:08:af:02:b6:7f:10:bb:cb:37:e3:fa:
27:db:cc:b4:e4:15:50:1c:66:e9:97:2b:0b:0f:6a:
69:0c:f4:bf:11:30:9c:66:e4:bf:71:fa:fa:2b:16:
ae:d3:56:6b:14:29:81:4d:75:5e:02:06:ea:b2:9f:
3e:be:2a:a9:08:51:bf:4e:13:04:5a:1a:74:93:c8:
e6:09:95:af:6d:9f:81:93:f1:6a:3e:59:ae:f9:23:
df:7d:28:72:40:bc:b9:91:90:d4:a7:05:96:0d:0f:
31:09:84:32:30:50:c7:ff:01:60:36:ec:52:06:03:
33:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:5D:F6:07:43:FB:A9:9D:D5:AC:66:B6:0E:E0:40:BB:2F:17:0D:20
X509v3 Authority Key Identifier:
keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/Gl32B0P7qZ3VrGa2DuBAuy8XDSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:3500:1200::/48
2a07:3500:1998::/48
2a07:3500:19a0::/48
2a07:3500:19a8::/48
2a07:3500:19b0::/48
2a07:3500:19d8::/48
2a07:3500:19e0::/48
2a07:3500:19e8::/48
2a07:3500:19f0::/48
2a07:3500:19f8::/48
2a07:3500:1a00::/48
2a07:3502:1040::/48
2a07:3502:1070::/48
2a07:3502:1090::/48
Signature Algorithm: sha256WithRSAEncryption
74:75:55:73:c3:f9:35:95:fc:8e:4e:18:1b:0b:83:2c:96:6f:
69:d8:40:50:fd:f0:6e:b1:44:ba:7a:54:03:5f:5b:3b:f0:7e:
80:62:7b:58:3a:84:bf:07:22:f6:8f:eb:db:8f:04:0e:d2:27:
42:03:71:7f:29:7b:72:e0:c5:be:9c:9b:e4:26:71:c1:90:93:
69:de:bc:0f:b7:21:07:67:be:21:c4:f5:20:96:37:8b:91:63:
e5:36:91:fc:87:82:ba:b7:7b:12:3e:49:5f:35:2d:68:bf:6b:
37:36:a4:62:30:7c:f8:b9:d7:55:7c:3e:02:37:03:a4:07:c1:
ea:d7:62:3e:2b:64:26:b2:c6:f1:12:a8:14:8a:7b:cf:55:73:
48:b8:de:ac:69:62:06:a4:49:85:07:a9:6c:63:d9:0a:72:ff:
4c:a5:77:98:54:4a:af:27:98:87:e8:fa:c2:19:65:85:07:cd:
df:14:66:db:8b:be:db:84:fb:51:24:11:b4:1c:ea:b4:d0:9f:
9b:b2:f6:05:47:31:bf:a6:21:ff:88:4a:a7:68:77:23:82:c1:
21:b2:6a:a7:47:6f:f1:c5:e6:37:37:c2:ac:47:24:ec:5c:68:
3e:1d:b4:83:48:83:ed:6a:d2:00:94:b4:a9:08:bf:a5:10:63:
5f:a0:46:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:49 2024 by rpki-client on console-ams.rpki-client.org