Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/gvsxYEFCmt4Fph91gaV2fr8NWWI.roa
File: gvsxYEFCmt4Fph91gaV2fr8NWWI.roa (raw, json)
Hash identifier: kfZ9r6ZlYaRyt8zG32JfD9u7p8qbhyJn+A/H1z+KZys=
Subject key identifier: 82:FB:31:60:41:42:9A:DE:05:A6:1F:75:81:A5:76:7E:BF:0D:59:62
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018F3038EE52F45D3191E994697751243022
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/gvsxYEFCmt4Fph91gaV2fr8NWWI.roa
Signing time: Tue 30 Apr 2024 18:16:28 +0000
ROA not before: Tue 30 Apr 2024 18:16:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49217
IP address blocks: 2a13:a447::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 09 May 2024 17:26:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:30:38:ee:52:f4:5d:31:91:e9:94:69:77:51:24:30:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Apr 30 18:16:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82fb316041429ade05a61f7581a5767ebf0d5962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ef:30:6b:c9:81:93:71:81:6b:0e:e0:48:61:
1d:ea:88:bb:c0:b9:6a:e8:f3:77:28:09:15:d5:14:
72:5f:9c:82:49:5f:d9:c5:a6:18:09:eb:47:ee:6e:
48:7e:75:2d:36:a7:74:dc:36:1c:95:10:34:de:53:
07:23:bf:6f:8f:f3:a0:64:b8:6b:23:ee:e6:80:38:
08:a4:fe:35:da:4b:ed:b2:0c:f4:78:03:c3:85:a8:
26:61:27:95:72:2b:8f:73:bf:87:dc:71:7d:b9:e9:
aa:cc:d3:43:3c:b9:03:e2:af:5a:5e:1f:a1:7f:29:
f0:bc:10:f3:f4:6f:d6:7c:48:4d:2a:2a:71:09:be:
97:0e:a8:c7:df:d4:6c:2c:05:7e:16:33:d5:e4:08:
78:59:74:cd:4d:80:40:b9:38:6a:98:a4:49:79:db:
77:77:2e:4e:b1:3f:ff:3b:03:4c:3d:4e:b3:03:3b:
43:3a:41:af:5c:af:f5:d4:eb:e5:ed:c2:96:e1:1a:
75:eb:9f:e2:b3:e3:50:51:e3:46:ce:80:4a:c9:ff:
7b:e3:43:82:82:41:9c:45:3d:32:95:57:5d:6d:a9:
06:32:88:bd:f3:5f:2b:85:ff:09:28:80:d6:72:71:
a8:11:11:b1:7a:d9:5e:89:cb:e5:19:46:f6:ba:df:
9c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:FB:31:60:41:42:9A:DE:05:A6:1F:75:81:A5:76:7E:BF:0D:59:62
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/gvsxYEFCmt4Fph91gaV2fr8NWWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:a447::/32
Signature Algorithm: sha256WithRSAEncryption
3d:0c:59:42:98:3c:41:f2:b0:d1:67:9a:f8:ca:52:5e:4a:c5:
5a:59:b8:d1:98:6d:57:f2:2c:b1:53:61:61:8c:c6:98:41:19:
10:2c:f8:7b:75:3a:3e:a7:0a:78:ff:90:97:28:88:31:7e:16:
fd:0d:7e:95:3f:06:74:73:cb:e8:4c:b3:c2:26:5e:b9:d2:53:
83:bb:e6:f6:ac:d2:fc:35:aa:b8:28:d8:44:4e:7b:50:6a:99:
81:da:9a:cd:b9:87:b0:31:93:28:fe:58:cf:b0:85:1d:c6:4f:
c8:b4:6d:c4:a9:f9:f2:d4:9c:c4:36:1c:da:bf:2c:a8:a5:f5:
f9:fa:53:97:67:d9:ca:e4:42:b5:45:2d:4d:0e:5b:56:f7:89:
c3:b6:3f:21:2e:4a:7a:67:3c:dd:c6:ad:c4:3c:0d:3a:1b:8a:
b8:17:8e:37:0f:2e:0e:68:13:ee:a6:ad:69:e7:c9:60:3b:a3:
97:77:36:51:2d:d6:b1:b5:67:3e:ee:b5:ef:7d:42:3d:3b:76:
ce:07:29:13:26:3e:f2:1f:c5:04:ca:87:8e:f3:7c:3b:92:40:
5a:91:63:19:55:68:ef:97:7c:9f:02:98:43:86:cf:f6:6e:a1:
86:ec:39:e1:19:6d:48:dd:e4:86:e5:af:a5:c8:86:af:4a:4a:
48:98:02:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:33:38 2025 by rpki-client