Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/A1o29yvp-dRAJCY7W_xzfPcTlog.roa
File: A1o29yvp-dRAJCY7W_xzfPcTlog.roa (raw, json)
Hash identifier: crjGm2Qc+77Q9yl9jWpacY5khJTAnbVi4C2o5gu/7fI=
Subject key identifier: 03:5A:36:F7:2B:E9:F9:D4:40:24:26:3B:5B:FC:73:7C:F7:13:96:88
Certificate issuer: /CN=62becc4ba8a4d52498a0d2983a68b61383aa7fd7
Certificate serial: 018CC34960AABFA477C5214A93A2BA36ABF4
Authority key identifier: 62:BE:CC:4B:A8:A4:D5:24:98:A0:D2:98:3A:68:B6:13:83:AA:7F:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/A1o29yvp-dRAJCY7W_xzfPcTlog.roa
Signing time: Mon 01 Jan 2024 04:30:15 +0000
ROA not before: Mon 01 Jan 2024 04:30:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400522
IP address blocks: 2a12:7240::/29 maxlen: 29
2a11:f700::/29 maxlen: 29
2a11:ed00::/29 maxlen: 29
2a11:f702::/32 maxlen: 32
2a12:a1c0::/29 maxlen: 29
2a12:a740::/29 maxlen: 29
2a09:d840::/29 maxlen: 29
2a11:f703::/32 maxlen: 32
2a12:7340::/29 maxlen: 29
2a12:a2c0::/29 maxlen: 29
2a11:f701::/32 maxlen: 32
2a12:7440::/29 maxlen: 29
2a11:ef00::/29 maxlen: 29
2a10:1c80::/29 maxlen: 29
2a12:9f40::/29 maxlen: 29
2a11:f704::/32 maxlen: 32
2a12:7540::/29 maxlen: 29
2a11:f700::/32 maxlen: 32
2a12:a040::/29 maxlen: 29
2a11:f100::/29 maxlen: 29
2a12:a5c0::/29 maxlen: 29
2a09:3440::/29 maxlen: 29
2a12:a140::/29 maxlen: 29
2a12:a6c0::/29 maxlen: 29
2a11:f706::/32 maxlen: 32
2a12:72c0::/29 maxlen: 29
2a12:a240::/29 maxlen: 29
2a10:2500::/29 maxlen: 29
2a12:73c0::/29 maxlen: 29
2a11:f707::/32 maxlen: 32
2a11:f300::/29 maxlen: 29
2a09:fe40::/29 maxlen: 29
2a12:74c0::/29 maxlen: 29
2a12:9ec0::/29 maxlen: 29
2a11:f500::/29 maxlen: 29
2a12:a540::/29 maxlen: 29
2a12:9fc0::/29 maxlen: 29
2a09:72c0::/29 maxlen: 29
2a09:33c0::/29 maxlen: 29
2a11:f705::/32 maxlen: 32
2a11:f700::/30 maxlen: 30
2a12:a640::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 13 Apr 2024 16:29:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:60:aa:bf:a4:77:c5:21:4a:93:a2:ba:36:ab:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62becc4ba8a4d52498a0d2983a68b61383aa7fd7
Validity
Not Before: Jan 1 04:30:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=035a36f72be9f9d44024263b5bfc737cf7139688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:75:9f:65:dd:c9:9f:b3:e5:bd:bd:34:81:56:
1a:0b:c3:68:34:d3:44:c6:5b:5e:70:d7:24:d4:75:
32:f3:d0:a1:8b:ad:3a:e7:94:24:8b:8c:ce:90:73:
42:38:47:fa:3f:31:3c:1b:b1:71:de:c7:2c:ab:4f:
5b:40:c6:1c:fb:2d:dc:e1:6a:86:25:88:44:96:4b:
d8:3a:ca:38:63:50:bd:48:52:74:df:f0:23:da:d1:
8f:ff:ee:f6:00:f3:5d:2c:67:4f:d8:35:b4:f5:e0:
6b:4e:18:36:ca:02:69:42:18:aa:ac:da:1a:be:9a:
96:3a:22:48:f9:61:36:3c:60:9d:c3:21:f2:c0:08:
57:43:ec:49:b3:a7:0e:41:73:e8:8e:60:e2:e6:4d:
c4:2b:d7:c5:a2:4c:04:6a:0a:3e:3e:a3:13:05:d6:
8e:44:ce:86:0d:dc:5d:32:63:eb:cb:da:c2:c2:1c:
9f:d3:b4:43:42:29:f4:87:26:7e:d6:89:70:55:42:
b7:63:aa:ed:1d:7c:de:95:1d:ca:40:d8:59:98:4b:
55:2e:20:3a:f3:60:ba:41:b5:23:5b:51:14:08:19:
ba:99:e8:77:bd:26:d9:29:b9:1f:cd:9c:7b:c2:aa:
1d:c9:0a:92:01:e2:87:dc:0c:8b:00:c3:0f:4f:74:
b3:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:5A:36:F7:2B:E9:F9:D4:40:24:26:3B:5B:FC:73:7C:F7:13:96:88
X509v3 Authority Key Identifier:
keyid:62:BE:CC:4B:A8:A4:D5:24:98:A0:D2:98:3A:68:B6:13:83:AA:7F:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/A1o29yvp-dRAJCY7W_xzfPcTlog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:33c0::/29
2a09:3440::/29
2a09:72c0::/29
2a09:d840::/29
2a09:fe40::/29
2a10:1c80::/29
2a10:2500::/29
2a11:ed00::/29
2a11:ef00::/29
2a11:f100::/29
2a11:f300::/29
2a11:f500::/29
2a11:f700::/29
2a12:7240::/29
2a12:72c0::/29
2a12:7340::/29
2a12:73c0::/29
2a12:7440::/29
2a12:74c0::/29
2a12:7540::/29
2a12:9ec0::/29
2a12:9f40::/29
2a12:9fc0::/29
2a12:a040::/29
2a12:a140::/29
2a12:a1c0::/29
2a12:a240::/29
2a12:a2c0::/29
2a12:a540::/29
2a12:a5c0::/29
2a12:a640::/29
2a12:a6c0::/29
2a12:a740::/29
Signature Algorithm: sha256WithRSAEncryption
43:a6:f7:ba:9b:94:fe:31:50:a4:92:79:a9:02:45:c9:d6:31:
1a:4a:8b:e1:f0:14:b3:a7:8b:51:39:2e:6c:82:bc:d4:d9:7a:
d8:7e:d8:2d:f3:40:87:d8:7c:3b:04:b3:4c:a7:b1:73:d2:d2:
da:cf:ca:46:33:e6:b9:ca:5a:9c:ea:61:cc:9e:4b:80:97:bb:
8f:e3:99:42:2e:85:45:41:fe:12:0d:c7:1f:2e:97:f3:45:6d:
b0:30:55:41:7f:55:73:b9:c9:f9:4d:74:c6:7b:f3:bc:a0:6e:
cf:de:c1:09:67:d5:6d:5d:4d:57:44:fa:cd:c9:58:7f:80:2a:
4c:c7:9b:7e:ca:7b:46:b7:c0:18:5a:5b:f9:d8:20:78:11:a5:
5c:72:3c:f0:af:b2:2e:67:89:bc:5b:b5:f1:4d:5e:8e:87:8e:
7e:e5:e7:e8:46:fd:ce:4d:72:78:ba:47:89:6a:70:20:cc:ef:
4f:b5:02:2f:15:9f:c6:10:b5:fb:d4:f0:69:17:73:06:0c:00:
c9:85:33:de:8a:42:21:74:60:6b:1e:30:50:ea:e1:02:64:00:
cd:28:d8:85:05:30:0d:44:72:59:e7:1e:2f:ac:58:2f:51:b9:
1e:ac:8b:ac:e6:73:1b:bb:e2:4d:72:75:e0:f7:b5:a1:00:ab:
19:f1:8e:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:39 2024 by rpki-client on console-fra.rpki-client.org