Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/deeb4c-99d6-4a9e-8200-7caa97927142/1/kZDhhehP_eSP0P8We5_7o8eDmVU.roa
File: kZDhhehP_eSP0P8We5_7o8eDmVU.roa (raw, json)
Hash identifier: dA6TwzkUaT84Gpd6ndgG+sOkqmv5Pj0XEmHJZhL+APc=
Subject key identifier: 91:90:E1:85:E8:4F:FD:E4:8F:D0:FF:16:7B:9F:FB:A3:C7:83:99:55
Certificate issuer: /CN=5550e06ee02c5a32e54dc89853b4aa378f8604f7
Certificate serial: 018CC50054C8205F80B35E2D2E269974AAAA
Authority key identifier: 55:50:E0:6E:E0:2C:5A:32:E5:4D:C8:98:53:B4:AA:37:8F:86:04:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VVDgbuAsWjLlTciYU7SqN4-GBPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/deeb4c-99d6-4a9e-8200-7caa97927142/1/kZDhhehP_eSP0P8We5_7o8eDmVU.roa
Signing time: Mon 01 Jan 2024 12:29:42 +0000
ROA not before: Mon 01 Jan 2024 12:29:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201364
IP address blocks: 2a0f:a1c1::/32 maxlen: 32
2a09:5984::/32 maxlen: 32
2a09:f347::/32 maxlen: 32
2a0d:8044::/32 maxlen: 32
2a07:9180::/32 maxlen: 32
2a09:5985::/32 maxlen: 32
2a09:f346::/32 maxlen: 32
2a07:9182::/32 maxlen: 32
2a0d:8045::/32 maxlen: 32
2a09:f340::/32 maxlen: 32
2a0f:a1c2::/32 maxlen: 32
2a07:9186::/32 maxlen: 32
2a0f:a1c3::/32 maxlen: 32
2a09:f342::/32 maxlen: 32
2a09:f345::/32 maxlen: 32
2a0d:8047::/32 maxlen: 32
2a07:9183::/32 maxlen: 32
2a0f:a1c0::/32 maxlen: 32
2a09:5987::/32 maxlen: 32
2a0f:a1c6::/32 maxlen: 32
2a09:5981::/32 maxlen: 32
2a0d:8041::/32 maxlen: 32
2a07:9184::/32 maxlen: 32
2a09:5980::/32 maxlen: 32
2a0f:a1c4::/32 maxlen: 32
2a09:f343::/32 maxlen: 32
2a0f:a1c5::/32 maxlen: 32
2a07:9185::/32 maxlen: 32
2a0d:8042::/32 maxlen: 32
2a09:5986::/32 maxlen: 32
2a0d:8043::/32 maxlen: 32
2a09:5982::/32 maxlen: 32
2a0f:a1c7::/32 maxlen: 32
2a09:f341::/32 maxlen: 32
2a09:5983::/32 maxlen: 32
2a0d:8040::/32 maxlen: 32
2a07:9187::/32 maxlen: 32
2a09:f344::/32 maxlen: 32
2a0d:8046::/32 maxlen: 32
2a07:9181::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 09 Apr 2024 09:49:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:54:c8:20:5f:80:b3:5e:2d:2e:26:99:74:aa:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5550e06ee02c5a32e54dc89853b4aa378f8604f7
Validity
Not Before: Jan 1 12:29:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9190e185e84ffde48fd0ff167b9ffba3c7839955
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:7e:a4:1a:7f:08:64:45:73:92:ad:95:13:dc:
1a:3d:10:f0:0d:ac:88:8a:44:65:df:ce:86:27:62:
1b:90:0c:52:00:a5:02:17:88:4a:d5:a6:92:df:72:
09:12:f7:29:af:1e:3d:a0:fc:fc:b1:c5:a7:5b:90:
4d:28:ec:8c:61:45:f5:94:df:86:70:fe:60:ab:4a:
bd:c2:d5:6b:13:43:ad:b2:c4:02:ad:c0:2e:8d:1d:
a6:10:13:83:42:fa:98:e0:cb:56:fb:f6:7b:f1:1a:
dd:e7:92:11:6f:f2:17:ac:e6:20:22:d9:5a:44:17:
9b:3e:3c:81:ae:f0:f3:26:2e:ef:16:dd:b9:6f:eb:
43:06:6d:f3:f3:5f:aa:e6:5c:71:78:83:d5:95:d7:
92:10:f9:bd:0e:10:36:26:44:39:5b:d0:df:76:34:
c8:10:fd:fb:a0:a6:ac:12:36:6c:3e:e5:82:28:40:
fa:f2:37:23:22:bc:89:76:de:7a:c8:01:5a:09:6c:
b1:a7:5d:f5:07:54:fb:f4:37:1d:5f:4e:2d:c2:58:
15:d3:66:21:61:43:f0:80:4b:0b:68:b4:a3:f7:8e:
f1:53:79:e7:0c:d5:24:46:e8:ab:a4:86:c2:a7:01:
10:1f:fa:b7:50:a2:53:4f:1a:6c:b7:ad:a5:ef:d0:
4e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:90:E1:85:E8:4F:FD:E4:8F:D0:FF:16:7B:9F:FB:A3:C7:83:99:55
X509v3 Authority Key Identifier:
keyid:55:50:E0:6E:E0:2C:5A:32:E5:4D:C8:98:53:B4:AA:37:8F:86:04:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VVDgbuAsWjLlTciYU7SqN4-GBPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/deeb4c-99d6-4a9e-8200-7caa97927142/1/kZDhhehP_eSP0P8We5_7o8eDmVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/deeb4c-99d6-4a9e-8200-7caa97927142/1/VVDgbuAsWjLlTciYU7SqN4-GBPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:9180::/29
2a09:5980::/29
2a09:f340::/29
2a0d:8040::/29
2a0f:a1c0::/29
Signature Algorithm: sha256WithRSAEncryption
3e:be:6a:ff:f3:2f:2d:10:b9:ad:b7:91:fd:94:f6:57:aa:37:
44:ed:7e:77:ac:a2:5c:5d:bf:af:49:5a:84:51:60:10:b0:f1:
f3:4d:a9:97:36:df:f6:d6:e6:08:e2:04:d9:5d:63:a8:f5:c4:
77:f1:0d:f3:3e:ba:9e:19:54:ee:85:06:da:e2:47:4c:23:aa:
36:8a:df:a8:84:c0:89:90:7f:65:0b:95:3c:59:65:8b:8b:24:
d3:4b:95:f7:be:e9:2c:75:de:cf:97:56:9f:e2:73:28:6d:b0:
27:51:bc:23:c1:59:48:66:b8:42:b4:0c:e2:d5:14:3c:01:03:
fa:bb:80:69:74:ae:9e:76:8d:37:16:0d:71:48:80:2d:11:c6:
d3:08:5f:78:b1:af:dd:68:4b:88:49:d3:e5:81:88:8a:8e:e8:
a4:5b:78:97:e3:b2:8e:a5:5e:7d:df:d8:e9:41:1b:34:09:1c:
15:04:e5:da:34:24:e7:8d:54:fb:1f:d7:7f:cc:df:13:13:91:
ba:be:1a:00:61:ab:74:bf:6c:aa:62:b7:a9:b6:ed:39:82:3d:
2e:37:22:3a:06:94:93:55:9f:04:bd:be:cc:33:84:4b:89:0c:
53:64:b5:0b:61:b3:85:6d:53:ef:c7:00:9d:48:f9:d1:bb:27:
50:7e:c9:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:31 2024 by rpki-client on console-fra.rpki-client.org