Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d6513d-2d53-4022-8360-3117989601ad/1/gWghdhTXfdxurHR0wI0WyYXk7YQ.roa
File: gWghdhTXfdxurHR0wI0WyYXk7YQ.roa (raw, json)
Hash identifier: MIbkxGqN/CoKILuhMRjWr4Vu47O3o8KjJo012cfNkec=
Subject key identifier: 81:68:21:76:14:D7:7D:DC:6E:AC:74:74:C0:8D:16:C9:85:E4:ED:84
Certificate issuer: /CN=b4a2085c7de3b598216b89fb0f2b1d930de66c19
Certificate serial: 0192B576392C8B1910ADE284EC4C469DC533
Authority key identifier: B4:A2:08:5C:7D:E3:B5:98:21:6B:89:FB:0F:2B:1D:93:0D:E6:6C:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKIIXH3jtZgha4n7Dysdkw3mbBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d6513d-2d53-4022-8360-3117989601ad/1/gWghdhTXfdxurHR0wI0WyYXk7YQ.roa
Signing time: Tue 22 Oct 2024 18:21:16 +0000
ROA not before: Tue 22 Oct 2024 18:21:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 2a0f:aac0:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 24 Oct 2024 13:33:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b5:76:39:2c:8b:19:10:ad:e2:84:ec:4c:46:9d:c5:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a2085c7de3b598216b89fb0f2b1d930de66c19
Validity
Not Before: Oct 22 18:21:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8168217614d77ddc6eac7474c08d16c985e4ed84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:7e:8f:00:96:11:29:13:bf:43:16:28:43:88:
60:4e:b1:9b:6b:75:c2:18:ca:0d:58:23:45:08:d6:
dd:cf:f1:6c:88:4e:20:59:8e:61:37:7f:fd:ef:83:
0b:bd:6d:61:91:11:59:64:85:60:d6:e1:4b:e8:15:
39:f0:77:23:f8:10:c6:63:2a:40:f3:47:50:1b:b6:
8f:f2:54:99:21:5f:75:40:09:99:1e:dc:c7:0e:5c:
6f:97:c3:3b:19:54:08:81:67:6d:67:a0:c3:e3:1d:
cb:d9:7b:c8:e4:d4:fa:5f:2f:de:14:e2:10:f4:a6:
2e:32:29:8f:0c:5c:07:3b:ab:f8:ae:ec:cd:76:64:
85:fa:ae:54:d7:c4:97:83:87:73:4f:e7:55:72:53:
a9:38:bc:29:41:5a:c4:bd:c9:0b:93:50:81:a8:b3:
20:cb:a1:d0:a1:81:47:18:a7:9e:4f:53:81:85:2f:
64:f7:c7:3b:ad:8f:a2:36:38:28:5c:56:f8:3a:52:
3d:13:95:23:75:db:d2:33:6b:6a:42:f9:e5:ee:a2:
30:f5:f9:50:72:6e:36:46:15:7a:e4:84:56:ca:8b:
13:b4:4c:e9:5c:d8:30:8d:04:cd:46:24:e5:ca:ce:
89:df:2e:a1:17:67:ba:eb:4a:e9:0f:eb:64:5b:fc:
65:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:68:21:76:14:D7:7D:DC:6E:AC:74:74:C0:8D:16:C9:85:E4:ED:84
X509v3 Authority Key Identifier:
keyid:B4:A2:08:5C:7D:E3:B5:98:21:6B:89:FB:0F:2B:1D:93:0D:E6:6C:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKIIXH3jtZgha4n7Dysdkw3mbBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d6513d-2d53-4022-8360-3117989601ad/1/gWghdhTXfdxurHR0wI0WyYXk7YQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d6513d-2d53-4022-8360-3117989601ad/1/tKIIXH3jtZgha4n7Dysdkw3mbBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:aac0:2::/48
Signature Algorithm: sha256WithRSAEncryption
8f:c7:51:75:42:ab:46:9c:61:88:68:e8:7d:39:0c:c6:35:e5:
51:68:e7:8d:11:77:fe:97:c7:6e:36:4f:e2:be:84:cd:fa:03:
a6:bb:45:93:42:00:0d:99:07:40:23:c8:90:a0:4e:cf:2c:b1:
ca:63:6d:32:7d:7e:e5:5e:cf:2d:1c:87:54:35:53:f2:98:80:
36:82:a8:06:dc:9b:68:c0:2b:1e:57:fd:7d:0c:c1:33:c3:cd:
39:2d:a1:7c:6e:6c:d8:4e:c3:6b:4b:c7:15:82:7d:d1:f0:fc:
75:a7:7b:55:45:0a:66:20:77:b1:48:04:6a:75:0e:a5:8f:b0:
08:4e:91:74:91:a1:6b:b1:e5:a3:c2:bb:f2:bf:fe:c4:10:a0:
c0:ed:0c:7b:7d:99:06:cc:c0:ab:52:6a:1f:7a:05:03:e0:00:
d9:3b:83:97:60:ca:11:d5:0b:75:f1:1e:e3:2e:ba:7c:27:a9:
50:73:9c:6f:4d:ef:0d:97:95:3a:f4:4f:a7:b9:8c:4b:2e:8c:
31:1d:4e:13:3b:eb:e9:e7:27:ff:f6:19:5c:c6:2f:b9:10:8c:
52:14:6e:22:73:42:8e:80:99:39:b1:90:b6:ca:ff:2c:89:2c:
63:39:1a:83:b3:b5:50:2b:e1:6c:32:9c:16:11:ac:f0:b2:a9:
5a:84:02:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 17:28:41 2024 by rpki-client on console-fra.rpki-client.org