Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/R1RBjVaAbd3sR6k8FsP-Y_-f8Gk.roa
File: R1RBjVaAbd3sR6k8FsP-Y_-f8Gk.roa (raw, json)
Hash identifier: WXMHtfppLDeEHOQEGX85MkCRYzRY1s2HQdxaWTyZh+Y=
Subject key identifier: 47:54:41:8D:56:80:6D:DD:EC:47:A9:3C:16:C3:FE:63:FF:9F:F0:69
Certificate issuer: /CN=767f3bd4bfbd3071c38cd4d7092bd3490920c3d9
Certificate serial: 01904876DD1D7DC51B81EFED7F9FCE5B3613
Authority key identifier: 76:7F:3B:D4:BF:BD:30:71:C3:8C:D4:D7:09:2B:D3:49:09:20:C3:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dn871L-9MHHDjNTXCSvTSQkgw9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/R1RBjVaAbd3sR6k8FsP-Y_-f8Gk.roa
Signing time: Mon 24 Jun 2024 04:17:47 +0000
ROA not before: Mon 24 Jun 2024 04:17:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60262
IP address blocks: 2a11:c40::/29 maxlen: 29
2a11:1000::/29 maxlen: 29
2a11:1100::/29 maxlen: 29
2a11:1e80::/29 maxlen: 29
2a11:2040::/29 maxlen: 29
2a11:37c0::/29 maxlen: 29
2a11:4300::/29 maxlen: 29
2a11:4600::/29 maxlen: 29
2a11:4ec0::/29 maxlen: 29
2a11:74c0::/29 maxlen: 29
2a11:8580::/29 maxlen: 29
2a11:8d40::/29 maxlen: 29
2a11:9100::/29 maxlen: 29
2a11:bec0::/29 maxlen: 29
2a11:d300::/29 maxlen: 29
2a11:d780::/29 maxlen: 29
2a11:e240::/29 maxlen: 29
2a11:ea40::/29 maxlen: 29
2a12:700::/29 maxlen: 29
2a12:980::/29 maxlen: 29
2a12:1600::/29 maxlen: 29
2a12:6080::/29 maxlen: 29
2a12:6f80::/29 maxlen: 29
2a12:7b00::/29 maxlen: 29
2a12:c780::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 02 Jan 2025 11:49:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:48:76:dd:1d:7d:c5:1b:81:ef:ed:7f:9f:ce:5b:36:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=767f3bd4bfbd3071c38cd4d7092bd3490920c3d9
Validity
Not Before: Jun 24 04:17:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4754418d56806dddec47a93c16c3fe63ff9ff069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:4d:53:af:6d:0b:49:97:78:d1:74:b1:33:e6:
f4:33:e8:42:c8:cb:5c:a7:0c:81:41:7b:3c:cf:cc:
e1:5f:db:a4:a5:2f:c8:29:19:e6:e1:14:85:3d:92:
7c:0a:d2:f7:85:0c:9d:58:81:ef:b6:f0:fc:ef:6a:
d7:d7:50:e0:e8:01:14:dd:41:2a:70:73:91:37:42:
e6:af:da:c3:63:48:2c:32:3c:dc:0e:6d:16:85:07:
3c:84:8a:2a:ad:a1:4a:70:6c:d7:ab:d2:69:b4:8a:
eb:a9:6d:cf:b7:f8:dd:3f:8d:3d:9f:9f:9a:c5:83:
68:84:3f:64:ba:26:13:47:ce:db:21:65:69:ec:72:
cd:f0:f5:6e:e3:c1:2d:a1:60:40:de:b9:18:0f:29:
57:22:a8:03:b2:aa:a7:a9:3b:0b:e5:02:c5:f6:83:
14:dd:fc:8a:10:69:8f:b3:f2:2f:f3:fe:a7:93:2c:
1f:e7:bb:ea:ed:92:78:3c:2c:5c:08:bd:68:52:81:
48:6e:a0:b5:84:a7:18:d8:7a:10:4e:e5:9d:45:38:
5f:68:ac:cf:fb:1d:32:3a:de:f7:89:d6:7e:45:cd:
55:66:94:45:b9:6f:43:86:81:69:c4:ce:99:62:9d:
ce:ea:e0:c2:64:10:ef:2c:2b:e7:0f:0d:b0:ae:0d:
e8:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:54:41:8D:56:80:6D:DD:EC:47:A9:3C:16:C3:FE:63:FF:9F:F0:69
X509v3 Authority Key Identifier:
keyid:76:7F:3B:D4:BF:BD:30:71:C3:8C:D4:D7:09:2B:D3:49:09:20:C3:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dn871L-9MHHDjNTXCSvTSQkgw9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/R1RBjVaAbd3sR6k8FsP-Y_-f8Gk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/dn871L-9MHHDjNTXCSvTSQkgw9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:c40::/29
2a11:1000::/29
2a11:1100::/29
2a11:1e80::/29
2a11:2040::/29
2a11:37c0::/29
2a11:4300::/29
2a11:4600::/29
2a11:4ec0::/29
2a11:74c0::/29
2a11:8580::/29
2a11:8d40::/29
2a11:9100::/29
2a11:bec0::/29
2a11:d300::/29
2a11:d780::/29
2a11:e240::/29
2a11:ea40::/29
2a12:700::/29
2a12:980::/29
2a12:1600::/29
2a12:6080::/29
2a12:6f80::/29
2a12:7b00::/29
2a12:c780::/29
Signature Algorithm: sha256WithRSAEncryption
21:d5:56:bd:a3:db:73:1b:b4:d1:48:5e:2e:93:de:11:98:3a:
55:1c:0f:bf:96:ec:bd:1b:ae:0c:65:df:90:b6:4a:cd:a6:0e:
f9:fa:88:e8:dd:0d:24:89:ec:a2:2f:c6:f9:a9:39:d0:16:ce:
9a:c1:2c:49:65:8b:49:50:25:68:ae:4e:f7:ee:d9:5d:8b:bf:
96:40:2e:2a:66:ce:d7:8c:f7:e8:34:ce:62:be:72:80:9c:84:
09:6e:90:0e:bd:5c:17:96:24:92:8b:99:b2:ab:07:02:96:0d:
f2:b1:70:a6:db:af:fd:72:c8:59:54:71:ee:c6:b4:86:68:69:
f5:37:e3:e7:1c:be:b3:3a:cc:6e:8f:bb:78:2d:90:ea:5d:7f:
14:54:e4:f7:d5:98:b4:9a:66:82:8a:c8:d9:94:44:8d:25:7a:
2d:17:0f:db:c5:52:8e:ec:b3:b1:f0:8c:8a:34:f9:ce:12:df:
33:65:44:7c:50:26:18:85:5f:ef:ae:92:d2:e1:b5:23:fb:0e:
73:9f:b5:77:87:3f:da:12:42:70:64:e1:a5:e7:38:fe:a2:13:
f6:e9:0e:bd:27:e9:ae:6d:6f:d5:e5:61:f3:9b:11:bd:a5:51:
a9:9d:1d:f1:77:03:6e:90:6d:ee:e5:76:e6:b4:ed:fd:e7:3d:
08:2e:40:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:00:47 2025 by rpki-client