Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/7OzWkUmpHf-ZKDjq-y5w8amIhU0.roa
File: 7OzWkUmpHf-ZKDjq-y5w8amIhU0.roa (raw, json)
Hash identifier: GwiEhePrcIzunG9h85xC9dRGmZBpD8apLiO/OW5JQGs=
Subject key identifier: EC:EC:D6:91:49:A9:1D:FF:99:28:38:EA:FB:2E:70:F1:A9:88:85:4D
Certificate issuer: /CN=62becc4ba8a4d52498a0d2983a68b61383aa7fd7
Certificate serial: 018609EE85D00CD5D8796911CB2A84C965EF
Authority key identifier: 62:BE:CC:4B:A8:A4:D5:24:98:A0:D2:98:3A:68:B6:13:83:AA:7F:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/7OzWkUmpHf-ZKDjq-y5w8amIhU0.roa
Signing time: Tue 31 Jan 2023 22:24:32 +0000
ROA not before: Tue 31 Jan 2023 22:24:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 2a12:73c4::/30 maxlen: 30
2a09:9f44::/30 maxlen: 30
2a12:7340::/30 maxlen: 30
2a12:a2c0::/30 maxlen: 30
2a11:ed00::/30 maxlen: 30
2a10:2504::/30 maxlen: 30
2a11:f304::/30 maxlen: 30
2a11:ef00::/30 maxlen: 30
2a12:a6c4::/30 maxlen: 30
2a12:a144::/30 maxlen: 30
2a12:7540::/30 maxlen: 30
2a12:9f40::/30 maxlen: 30
2a12:a544::/30 maxlen: 30
2a12:a140::/30 maxlen: 30
2a11:f504::/30 maxlen: 30
2a12:a6c0::/30 maxlen: 30
2a11:f100::/30 maxlen: 30
2a12:72c0::/30 maxlen: 30
2a12:a240::/30 maxlen: 30
2a12:a1c4::/30 maxlen: 30
2a12:a744::/30 maxlen: 30
2a12:9ec0::/30 maxlen: 30
2a12:74c0::/30 maxlen: 30
2a12:7244::/30 maxlen: 30
2a11:fb04::/30 maxlen: 30
2a12:a640::/30 maxlen: 30
2a10:1c84::/30 maxlen: 30
2a11:f904::/30 maxlen: 30
2a12:7444::/30 maxlen: 30
2a12:a244::/30 maxlen: 30
2a12:a1c0::/30 maxlen: 30
2a12:a740::/30 maxlen: 30
2a10:1c80::/30 maxlen: 30
2a12:72c4::/30 maxlen: 30
2a12:7440::/30 maxlen: 30
2a11:f900::/30 maxlen: 30
2a11:fb00::/30 maxlen: 30
2a12:74c4::/30 maxlen: 30
2a12:9ec4::/30 maxlen: 30
2a12:73c0::/30 maxlen: 30
2a09:9f40::/30 maxlen: 30
2a11:f300::/30 maxlen: 30
2a10:2500::/30 maxlen: 30
2a12:a2c4::/30 maxlen: 30
2a12:7344::/30 maxlen: 30
2a11:ed04::/30 maxlen: 30
2a12:a644::/30 maxlen: 30
2a12:a540::/30 maxlen: 30
2a11:f104::/30 maxlen: 30
2a11:f500::/30 maxlen: 30
2a12:7544::/30 maxlen: 30
2a12:9f44::/30 maxlen: 30
2a12:7240::/30 maxlen: 30
2a11:ef04::/30 maxlen: 30
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:09:ee:85:d0:0c:d5:d8:79:69:11:cb:2a:84:c9:65:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62becc4ba8a4d52498a0d2983a68b61383aa7fd7
Validity
Not Before: Jan 31 22:24:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ececd69149a91dff992838eafb2e70f1a988854d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:bd:32:d7:e3:19:c5:c1:82:a9:9d:38:18:af:
e5:6b:83:f8:0a:73:76:dc:0d:eb:f6:81:7b:7d:dc:
d9:6b:df:4e:ae:85:d3:5c:2b:10:32:11:c1:75:b1:
36:a3:b1:b6:8b:ed:ea:c4:8b:09:e8:10:d9:94:03:
4d:de:d6:7e:c2:7b:c3:fe:11:98:e2:26:a4:dd:59:
0e:41:d0:3a:b0:c5:eb:2d:9d:17:c1:63:80:99:a1:
40:26:8c:6f:30:29:92:4c:9d:f0:fa:aa:d7:7c:29:
d4:b2:d7:fc:4d:28:42:8d:4c:76:ab:21:62:3e:92:
16:39:39:3a:37:0e:37:b0:e4:7c:44:69:da:9f:ab:
ab:20:6d:da:d9:82:4e:52:98:4b:b2:bf:05:35:d9:
8c:b1:66:a9:4f:f0:48:91:04:f3:62:bd:e4:7c:37:
c3:f3:c0:24:b9:2e:7f:1b:dc:9a:ab:f5:9d:19:02:
36:07:76:ec:15:33:48:22:f6:d6:0d:a2:b0:b3:a8:
e8:dd:35:5f:64:6c:35:24:5c:92:25:38:f5:07:41:
48:8d:bc:80:6f:5e:f2:59:dc:38:02:d8:db:36:45:
2a:de:b0:e3:db:d7:13:c1:b7:8b:28:02:9d:d5:7e:
9f:72:cf:c8:5a:df:e3:0a:4e:26:c4:7b:e0:53:d3:
92:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:EC:D6:91:49:A9:1D:FF:99:28:38:EA:FB:2E:70:F1:A9:88:85:4D
X509v3 Authority Key Identifier:
keyid:62:BE:CC:4B:A8:A4:D5:24:98:A0:D2:98:3A:68:B6:13:83:AA:7F:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/7OzWkUmpHf-ZKDjq-y5w8amIhU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:9f40::/29
2a10:1c80::/29
2a10:2500::/29
2a11:ed00::/29
2a11:ef00::/29
2a11:f100::/29
2a11:f300::/29
2a11:f500::/29
2a11:f900::/29
2a11:fb00::/29
2a12:7240::/29
2a12:72c0::/29
2a12:7340::/29
2a12:73c0::/29
2a12:7440::/29
2a12:74c0::/29
2a12:7540::/29
2a12:9ec0::/29
2a12:9f40::/29
2a12:a140::/29
2a12:a1c0::/29
2a12:a240::/29
2a12:a2c0::/29
2a12:a540::/29
2a12:a640::/29
2a12:a6c0::/29
2a12:a740::/29
Signature Algorithm: sha256WithRSAEncryption
56:34:a3:b5:8c:96:28:77:5e:52:fa:2a:61:dc:de:93:ff:bb:
36:3d:f6:d6:7f:9c:c7:93:43:71:2f:9d:ec:d0:44:81:fb:84:
89:95:91:b6:ad:ef:66:2a:c9:f5:3c:61:c0:2f:6d:b1:ee:78:
b3:cb:57:02:64:5f:44:a5:6e:af:a7:0c:ee:ac:28:25:88:14:
b2:9d:d3:ef:46:ed:08:4f:c7:d5:d5:3e:26:a2:5f:aa:fa:22:
5c:6f:95:34:7a:2b:2a:1d:14:bf:9e:79:e2:87:0b:93:31:b9:
23:0a:0b:6f:7c:56:f4:59:20:01:c1:9c:cd:ed:b3:0c:6f:73:
42:39:ce:9f:05:ae:6a:b5:4d:11:8e:81:34:32:c3:f0:ed:8f:
e7:ec:5a:22:4e:b1:d2:8e:fa:ef:74:1f:f7:df:12:e6:31:d1:
ea:c2:25:60:25:3e:48:43:06:6c:89:70:ce:04:85:9f:5b:d4:
b2:ca:5a:2d:26:aa:26:1c:12:9d:fb:4f:e4:90:10:3c:e2:1a:
6e:bb:af:78:69:9a:7f:f8:f2:28:ea:ac:b4:90:8c:63:42:d9:
18:1c:e1:1e:ba:fe:16:7d:1f:95:01:91:0e:f7:15:94:03:4d:
87:8b:e1:75:e0:2b:87:bb:be:30:5b:51:89:28:2e:62:8c:d4:
49:ee:30:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:39 2024 by rpki-client on console-fra.rpki-client.org