Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/gMD4TGSPJk8fC2hGDMMhU35yZ24.roa
File: gMD4TGSPJk8fC2hGDMMhU35yZ24.roa (raw, json)
Hash identifier: kRl3HxgRf0ctj0u+onyNBLCxRIGrKj5K3VbUKlLNgDc=
Subject key identifier: 80:C0:F8:4C:64:8F:26:4F:1F:0B:68:46:0C:C3:21:53:7E:72:67:6E
Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071
Certificate serial: 018571D7BD75E88F4DA6742D61CDCB5A9E15
Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/gMD4TGSPJk8fC2hGDMMhU35yZ24.roa
Signing time: Mon 02 Jan 2023 09:37:22 +0000
ROA not before: Mon 02 Jan 2023 09:37:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29311
IP address blocks: 2a04:9a04::/32 maxlen: 36
Validation: Failed, certificate revoked on Tue 04 Jul 2023 09:24:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:bd:75:e8:8f:4d:a6:74:2d:61:cd:cb:5a:9e:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071
Validity
Not Before: Jan 2 09:37:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80c0f84c648f264f1f0b68460cc321537e72676e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b8:65:3b:9b:b4:d0:41:9b:0e:5c:d4:3f:8f:
48:9e:31:06:e0:56:ce:8b:d9:8a:46:5b:84:46:72:
a0:47:11:97:a7:c2:b3:ff:f9:22:72:55:45:04:4e:
f3:99:22:d7:40:d7:85:3d:64:26:04:02:ee:98:44:
01:0f:b2:21:48:c7:41:75:ca:87:4b:bf:a2:55:31:
5d:41:6a:0b:ba:6d:e2:09:52:fe:d6:9c:71:04:76:
8e:ab:d0:c1:77:82:3d:b0:9e:21:50:a7:5b:cb:c5:
2b:5a:54:2f:d8:bd:dd:eb:86:4a:e4:ea:b2:f6:00:
51:49:e5:52:e5:09:95:43:85:d0:6a:11:c9:69:56:
42:76:6f:45:2b:ab:46:ed:5c:44:f2:37:4b:da:b2:
c4:06:54:c3:86:39:ab:f4:f3:e4:85:0a:fd:22:e3:
4b:c3:8e:5f:b5:8e:d0:d1:4e:6c:d0:20:d5:d8:67:
c2:5b:2f:96:51:23:9b:35:e1:ca:9e:e6:e2:2f:40:
4b:f9:71:e1:ad:97:9f:af:56:4c:a2:58:8f:c4:cb:
3b:cb:3f:bd:92:1f:55:8f:45:91:83:22:3f:fc:78:
33:d9:d0:2e:e7:6d:33:61:8a:e2:07:4e:2a:36:95:
c0:68:72:d0:10:d2:e1:c5:bb:1b:60:73:ba:de:6a:
3a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:C0:F8:4C:64:8F:26:4F:1F:0B:68:46:0C:C3:21:53:7E:72:67:6E
X509v3 Authority Key Identifier:
keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/gMD4TGSPJk8fC2hGDMMhU35yZ24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:9a04::/32
Signature Algorithm: sha256WithRSAEncryption
34:55:40:77:a9:f0:8b:50:85:55:a2:8a:01:00:6b:6f:71:62:
72:1f:e2:1a:a3:94:e1:f7:e5:d9:c1:a4:48:44:a2:88:31:27:
07:c1:63:e4:3a:1f:87:3d:12:5d:e8:61:18:b2:d0:33:e7:b5:
ba:8c:66:86:3a:d7:bb:6f:b3:60:cf:bf:ac:70:84:8a:da:33:
4a:c0:f7:4b:4f:8c:54:60:3c:b5:18:e2:3a:9d:b5:7f:33:2a:
37:83:5f:be:c0:3d:af:64:81:0b:4d:55:46:5a:92:b5:e8:09:
24:5a:4d:1d:1c:6e:33:bc:5f:77:bb:73:6e:9b:36:d4:83:d2:
0f:fe:b5:83:f8:0e:ab:c3:73:1e:38:c6:de:03:78:85:68:3d:
6f:45:22:8d:d7:36:24:31:85:e7:61:5f:59:b9:37:32:32:df:
a4:67:fb:d3:f5:ea:55:cc:84:8b:ce:18:86:21:ff:2c:0e:a2:
ed:53:8e:4a:9c:7e:85:a5:68:66:45:a1:7c:88:37:55:05:fe:
ec:38:12:e8:65:d2:45:9a:ad:a2:ab:b3:f3:00:2c:b1:3f:75:
32:bb:26:7e:35:fb:3f:27:f7:5b:1e:12:78:28:1b:23:9b:aa:
a8:99:83:81:64:7c:2c:29:ff:0d:7c:dc:31:63:18:81:ef:24:
8d:d7:b2:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:49 2024 by rpki-client on console-ams.rpki-client.org