Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/EfQX6h6XcUmhERPfCRJIbQyt-U4.roa
File: EfQX6h6XcUmhERPfCRJIbQyt-U4.roa (raw, json)
Hash identifier: NVbk+JfBqkIqqPK1oMCsNpD6D/3sb0Nxuwxw27GuOR0=
Subject key identifier: 11:F4:17:EA:1E:97:71:49:A1:11:13:DF:09:12:48:6D:0C:AD:F9:4E
Certificate issuer: /CN=5bd74e39dda400d136126e6c3efb1cf9344277ef
Certificate serial: 018C5F611200BCA410645A2994154CDB187E
Authority key identifier: 5B:D7:4E:39:DD:A4:00:D1:36:12:6E:6C:3E:FB:1C:F9:34:42:77:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W9dOOd2kANE2Em5sPvsc-TRCd-8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/EfQX6h6XcUmhERPfCRJIbQyt-U4.roa
Signing time: Tue 12 Dec 2023 18:54:06 +0000
ROA not before: Tue 12 Dec 2023 18:54:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57487
IP address blocks: 2a11:68c2::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5f:61:12:00:bc:a4:10:64:5a:29:94:15:4c:db:18:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bd74e39dda400d136126e6c3efb1cf9344277ef
Validity
Not Before: Dec 12 18:54:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=11f417ea1e977149a11113df0912486d0cadf94e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:be:ae:c0:ee:5b:98:76:68:c7:a2:bd:db:f5:
cf:57:d3:5b:be:83:46:01:0d:18:a3:33:1f:ab:ef:
9a:0f:0e:4a:d7:da:22:f4:4c:6e:f2:64:9f:33:ef:
f1:1c:0f:0a:b2:9a:9b:cf:db:8d:79:e6:a0:93:2d:
99:1b:7d:96:8c:07:7d:1b:08:5b:06:ad:eb:c2:36:
d9:6e:e4:09:87:41:b7:3d:d5:23:d1:04:c2:3a:be:
b3:c6:b4:0a:59:8b:d2:df:fc:16:20:c6:2d:3b:97:
9a:84:3a:97:5d:57:69:ee:a3:09:15:4b:eb:3b:58:
d8:d9:7f:f1:98:b5:e4:04:b6:28:44:cf:77:b4:67:
6e:3f:7f:8f:9f:47:83:6f:66:3b:6c:bf:25:78:63:
79:d9:0a:58:ac:74:c4:e1:ee:37:a9:5f:16:b5:02:
14:9e:3e:c9:30:1b:5c:9a:55:9e:51:9d:42:62:47:
ba:c1:68:1f:4a:9e:ac:41:bd:a3:a6:ce:0d:31:e2:
98:12:fb:fb:04:a1:d5:92:e8:24:77:39:f1:f7:9b:
d3:33:97:77:9d:39:2a:ec:e3:6f:9e:e5:52:75:82:
d0:57:49:5a:e3:40:ba:d6:e5:d9:f8:62:62:af:f2:
4c:44:b5:15:9b:b7:52:fd:48:3e:05:fa:35:22:30:
96:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:F4:17:EA:1E:97:71:49:A1:11:13:DF:09:12:48:6D:0C:AD:F9:4E
X509v3 Authority Key Identifier:
keyid:5B:D7:4E:39:DD:A4:00:D1:36:12:6E:6C:3E:FB:1C:F9:34:42:77:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W9dOOd2kANE2Em5sPvsc-TRCd-8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/EfQX6h6XcUmhERPfCRJIbQyt-U4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/W9dOOd2kANE2Em5sPvsc-TRCd-8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:68c2::/32
Signature Algorithm: sha256WithRSAEncryption
99:76:c2:22:35:e1:92:e4:2e:b2:a4:07:2d:35:ad:5a:3a:0b:
8e:d1:f1:b2:44:ef:cf:8f:08:b4:80:21:6f:ee:43:a1:58:9a:
85:bb:f4:2a:db:a0:6f:5a:9f:4f:9e:41:49:65:66:ad:81:bb:
a1:38:d3:d6:b4:c9:cd:bd:b0:03:e5:bf:2f:31:05:5e:72:ea:
59:da:51:41:54:60:bd:8b:0b:74:57:70:5d:60:f7:34:d7:67:
4f:c6:b9:16:5d:50:c4:62:b6:3e:ab:b5:c9:0d:83:51:40:8b:
fc:1d:21:4f:5c:b9:6c:b5:0d:de:33:7f:44:05:56:89:11:75:
20:dc:a9:70:2f:73:c0:2b:2d:ea:be:ed:c2:e7:41:b7:99:52:
4c:b8:44:1c:d5:d1:7d:5e:01:10:9f:91:21:80:d6:e2:dc:1b:
5c:84:62:3d:95:38:9d:3e:fd:ed:83:24:19:0d:95:dd:d0:da:
e8:6c:21:c9:df:4c:a9:6e:47:bc:b6:d4:36:b0:f1:02:01:cc:
9c:12:b2:5d:93:33:d5:9d:82:e8:38:eb:85:d3:b8:c8:43:a0:
1d:32:2a:8d:f1:85:d8:57:8d:59:42:65:96:ca:b0:52:02:f9:
e9:83:41:df:81:64:af:24:0b:69:d3:6d:4b:6a:d6:30:ca:5c:
f3:5b:b7:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:14 2024 by rpki-client on console-ams.rpki-client.org