Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/gUj0KQLg7yhcdvqkQJkWZvZImuI.roa
File: gUj0KQLg7yhcdvqkQJkWZvZImuI.roa (raw, json)
Hash identifier: tb6H7DMCp0nlIxtMZKlE/IybIBXe51SzKYS0qt+/wKA=
Subject key identifier: 81:48:F4:29:02:E0:EF:28:5C:76:FA:A4:40:99:16:66:F6:48:9A:E2
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 018570FBC5BC6E1CDD0A02A776D6938E122B
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/gUj0KQLg7yhcdvqkQJkWZvZImuI.roa
Signing time: Mon 02 Jan 2023 05:37:06 +0000
ROA not before: Mon 02 Jan 2023 05:37:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203125
IP address blocks: 2a01:367:3953::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:c5:bc:6e:1c:dd:0a:02:a7:76:d6:93:8e:12:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 2 05:37:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8148f42902e0ef285c76faa440991666f6489ae2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ff:e2:19:08:82:c9:a5:e9:4c:82:71:7c:60:
19:87:6c:f8:f7:cd:da:cd:c2:74:76:ce:0c:46:77:
64:8b:10:eb:9f:04:52:f7:5f:ba:17:f9:b5:c9:78:
54:f9:c4:8b:43:8e:63:ad:29:4f:a2:26:40:82:b0:
ca:14:2d:8c:25:7d:e4:59:d5:fd:7f:7f:6b:36:e6:
77:88:74:09:c8:2b:30:a7:24:b0:6d:ba:eb:45:92:
2f:0c:72:d9:7e:d5:e6:d5:d8:9a:59:ac:4f:77:0d:
33:26:56:6d:53:f1:e7:d0:16:88:2a:48:4a:24:6c:
1e:74:88:0a:61:f8:11:ca:e1:64:d1:a1:c4:8a:a0:
02:ce:b9:8c:08:2a:46:8c:ce:4b:a6:b7:b9:d8:25:
5d:66:15:6c:88:b8:00:b1:a7:2b:d8:59:7e:a4:76:
d0:c2:e1:43:9f:73:56:ba:e3:7d:08:99:2b:0d:60:
20:24:7c:48:37:96:dc:b7:78:4a:e6:ef:67:72:69:
ec:52:7e:f6:91:d1:42:1f:12:f9:e9:9f:81:02:b2:
d7:1d:f0:c9:7e:15:7b:bb:c9:21:80:13:bf:ea:e1:
50:98:dd:d2:17:4c:5d:03:8d:d6:a0:b7:c0:97:b7:
76:16:ec:4d:6b:51:53:5b:d1:10:0f:ad:ff:b8:a5:
6f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:48:F4:29:02:E0:EF:28:5C:76:FA:A4:40:99:16:66:F6:48:9A:E2
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/gUj0KQLg7yhcdvqkQJkWZvZImuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:367:3953::/48
Signature Algorithm: sha256WithRSAEncryption
13:92:b7:6b:64:ad:99:fa:7d:66:5d:29:f8:1e:d0:f9:be:d9:
0d:68:d7:a8:8e:c4:94:4a:52:a1:ca:6d:7d:98:4a:58:08:9e:
b9:4f:75:cc:29:51:ba:b0:b6:31:48:02:cd:25:00:54:aa:26:
2d:50:f2:56:e2:97:a6:27:9a:9e:eb:ef:13:74:7e:e1:e3:a4:
e3:12:ff:5f:57:ee:78:5f:c1:7b:f0:f0:4c:4b:0a:72:3d:52:
0d:bc:95:02:a5:fc:ad:67:58:2d:64:18:32:31:15:13:a6:ac:
92:9a:72:32:fb:25:28:52:55:1d:a8:6c:58:fe:f2:a4:03:d7:
b8:1e:ea:d1:af:54:16:19:f1:bd:06:9e:50:e6:3b:b7:4f:06:
2c:f0:6a:58:0b:88:c7:e3:85:1f:59:0f:eb:f3:98:b1:1c:cc:
69:76:52:7e:40:2b:38:f5:d6:cc:8e:13:65:1f:6b:a8:6e:4c:
4d:6e:1b:c0:6b:a3:79:e5:53:7a:e5:a8:eb:c1:8d:76:86:4c:
56:09:bc:2b:84:28:d9:65:c3:7f:12:7d:80:bb:12:64:bc:bb:
e6:05:58:74:d6:56:8a:24:5b:07:3e:49:f2:a3:96:8a:a3:3e:
30:58:11:dc:10:c6:0d:6d:e5:97:f7:e2:b7:5e:c6:f5:9f:41:
81:fb:6d:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:45 2024 by rpki-client on console-fra.rpki-client.org