Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/GgXupXEQwXW66yrteQEqjDqJc1Y.roa
File: GgXupXEQwXW66yrteQEqjDqJc1Y.roa (raw, json)
Hash identifier: KB6qj0qtF/HK9b/7yBUGgXBBe0iajzV1Pr8LR2AVY0w=
Subject key identifier: 1A:05:EE:A5:71:10:C1:75:BA:EB:2A:ED:79:01:2A:8C:3A:89:73:56
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018BCA4A6ED2BC84BA84976D653079EDF28B
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/GgXupXEQwXW66yrteQEqjDqJc1Y.roa
Signing time: Mon 13 Nov 2023 20:05:57 +0000
ROA not before: Mon 13 Nov 2023 20:05:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210574
IP address blocks: 2a0f:e900::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ca:4a:6e:d2:bc:84:ba:84:97:6d:65:30:79:ed:f2:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Nov 13 20:05:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a05eea57110c175baeb2aed79012a8c3a897356
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9f:90:f2:5f:87:29:ae:92:42:10:01:59:f1:
db:91:b0:f9:46:fa:bd:38:71:6b:f5:4c:f0:9a:f5:
3a:35:16:39:4b:90:ad:42:58:77:a6:0b:ec:1d:84:
76:fc:cd:0d:a2:23:44:c4:ea:3f:d4:40:24:be:29:
99:a1:34:a6:9e:d1:cb:6a:47:d5:88:e6:54:12:86:
65:56:51:76:95:17:af:a9:ee:32:ce:bd:05:72:77:
03:0e:61:1d:21:3e:fa:48:e4:0c:e9:17:ea:ce:04:
cb:38:f1:3b:e4:26:c5:ef:20:1e:70:89:3f:f6:8e:
7e:56:c5:74:c6:f9:50:8f:0c:c0:8e:a6:44:81:91:
4f:92:24:d0:c0:66:bd:12:65:e8:25:1c:65:80:4b:
56:27:f9:0a:6f:3c:18:cc:64:01:4c:65:ca:58:dd:
46:3a:af:b1:f7:98:d3:01:c6:1f:81:24:8d:02:7c:
6e:cf:26:31:65:59:01:6c:f5:d7:5d:ab:ff:f5:99:
13:9a:d4:2a:88:0c:ce:d3:fb:38:af:5b:ae:4b:7f:
49:a4:86:cd:82:79:5a:03:05:1f:2e:51:41:3c:22:
06:ab:f2:4e:da:3a:39:f6:bc:82:50:f5:dd:bc:02:
05:43:45:d6:14:06:cc:10:b7:ac:cb:d4:9d:e9:08:
dd:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:05:EE:A5:71:10:C1:75:BA:EB:2A:ED:79:01:2A:8C:3A:89:73:56
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/GgXupXEQwXW66yrteQEqjDqJc1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:e900::/29
Signature Algorithm: sha256WithRSAEncryption
1e:47:85:7c:3b:7b:d7:22:e4:8c:3e:6f:9f:37:5f:f2:57:01:
0a:e2:dc:dc:13:57:a1:cc:22:c2:a5:67:83:32:a6:be:32:c6:
3d:f9:2f:8f:8d:b1:fc:87:8e:76:8b:d8:d6:bf:d2:81:9d:b6:
ce:ce:a5:01:13:75:9f:ed:dd:ff:7d:5c:cd:fc:9a:48:8b:39:
b9:db:96:6f:d3:66:c8:79:bb:18:c3:49:3d:c9:31:00:cc:de:
da:ed:62:d9:bc:d2:82:f6:d1:71:65:ca:f8:1f:8e:7d:9d:49:
69:ef:2d:81:3d:b9:2d:03:c9:5d:5f:f8:9c:eb:2d:05:fa:83:
b3:3b:c7:f9:19:e0:c0:3b:54:a4:79:6a:fe:f6:77:45:1d:85:
f8:db:68:df:c8:4e:b5:d4:e0:f5:71:85:ee:44:c9:ec:2e:56:
7a:b5:89:48:19:02:dd:52:b0:da:2c:b6:61:9b:a4:82:f2:a7:
97:70:fe:a4:3e:e4:1c:cf:28:fe:65:22:c3:f3:c7:4b:77:d8:
14:d5:27:52:33:44:c1:21:92:b2:a6:3e:71:48:e6:8c:24:1d:
3d:11:6b:c8:27:02:7f:70:80:4a:63:ad:5b:05:c4:56:08:d1:
13:f7:09:42:28:6f:c7:bb:b7:1e:4f:fa:d2:6e:7c:be:ce:3b:
52:e8:aa:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:26 2023 by rpki-client on console.sobornost.net