Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/7o6c_oKMREv9lm8Z21F5H0GzrjY.roa
File: 7o6c_oKMREv9lm8Z21F5H0GzrjY.roa (raw, json)
Hash identifier: bPTyTjq9QFf3nK/eiJ+eCEtCFxOVIsDar2NWgqTIhg8=
Subject key identifier: EE:8E:9C:FE:82:8C:44:4B:FD:96:6F:19:DB:51:79:1F:41:B3:AE:36
Certificate issuer: /CN=f75d8b52815f3f2613e948992ec9fe660f6949b4
Certificate serial: 018E0A1522A14ACE06B371AA7EA6ED32EFC3
Authority key identifier: F7:5D:8B:52:81:5F:3F:26:13:E9:48:99:2E:C9:FE:66:0F:69:49:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/912LUoFfPyYT6UiZLsn-Zg9pSbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/7o6c_oKMREv9lm8Z21F5H0GzrjY.roa
Signing time: Mon 04 Mar 2024 15:29:01 +0000
ROA not before: Mon 04 Mar 2024 15:29:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213220
IP address blocks: 2a0e:dfc7:9c28::/48 maxlen: 48
2a11:5a42::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 12 Mar 2024 10:03:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0a:15:22:a1:4a:ce:06:b3:71:aa:7e:a6:ed:32:ef:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f75d8b52815f3f2613e948992ec9fe660f6949b4
Validity
Not Before: Mar 4 15:29:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee8e9cfe828c444bfd966f19db51791f41b3ae36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:c5:1a:51:16:a0:27:b9:2b:fc:1d:c0:59:45:
03:9b:8c:6b:d3:7c:53:e2:65:1f:a8:c0:50:01:b8:
22:93:78:eb:29:b6:70:08:ee:e5:03:e7:ee:d0:ee:
03:06:0d:22:e3:fa:f0:80:38:37:bb:4a:f8:33:c1:
09:0b:82:ce:af:70:61:a4:b5:57:fe:00:dd:6e:61:
66:c0:f1:b4:15:e5:db:12:b7:86:3b:0e:26:21:a9:
26:d9:d8:4f:e3:ad:b1:3a:ea:dd:5b:85:f7:11:1f:
18:bd:4b:7c:d5:9b:48:f8:d8:17:90:02:1e:c6:2b:
78:d9:d7:1d:3d:09:d3:2c:23:48:7e:65:90:4a:67:
4a:19:77:ae:02:e2:1b:0b:0a:42:77:b3:86:43:c5:
f1:fa:3f:68:2f:ae:6d:54:2a:a0:86:03:c6:ac:49:
59:f6:30:04:c2:f9:32:30:c8:a5:e5:33:bb:13:d3:
07:22:87:5b:cb:17:7f:f3:bb:26:7a:1d:af:6d:c0:
4f:78:b1:bc:15:fa:12:62:11:78:cc:65:39:50:a3:
8f:ca:e6:2f:a0:5c:ac:8c:3e:02:4f:d8:f0:ca:24:
65:2d:81:b2:80:32:68:31:13:5e:70:ce:86:a5:d9:
6e:ef:f7:80:b9:09:8f:6d:9b:c9:8b:6f:83:32:b7:
3e:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:8E:9C:FE:82:8C:44:4B:FD:96:6F:19:DB:51:79:1F:41:B3:AE:36
X509v3 Authority Key Identifier:
keyid:F7:5D:8B:52:81:5F:3F:26:13:E9:48:99:2E:C9:FE:66:0F:69:49:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/912LUoFfPyYT6UiZLsn-Zg9pSbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/7o6c_oKMREv9lm8Z21F5H0GzrjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/912LUoFfPyYT6UiZLsn-Zg9pSbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:dfc7:9c28::/48
2a11:5a42::/32
Signature Algorithm: sha256WithRSAEncryption
cc:5a:bc:fc:50:84:9f:7b:cb:5a:1c:49:e8:7b:d5:24:85:bf:
38:c1:6f:b5:21:1d:6b:62:9e:ef:32:2b:ad:6d:a2:af:3d:4e:
c9:ea:54:7f:69:94:eb:21:2d:fb:ce:13:6a:8c:bf:4d:50:f4:
66:3a:e2:fa:6d:82:e8:66:f9:a9:df:fc:3a:09:a7:b8:77:d9:
2c:cd:63:1b:0a:2f:36:29:e5:e1:4e:b0:08:ae:6e:65:87:a3:
a8:a7:32:7c:69:1f:b8:0b:20:54:e3:a0:26:9e:8c:38:39:07:
f1:75:92:54:04:24:ee:d4:34:a3:0c:13:52:91:93:f2:9c:77:
f1:19:3a:19:e5:11:61:02:88:cd:7f:02:d0:71:9a:48:d4:48:
d7:41:ae:48:0c:d8:33:b9:a0:1d:23:23:7f:eb:8c:e0:2e:47:
82:81:08:ef:5c:8a:e3:c9:de:0e:cb:da:f7:22:49:51:7e:68:
a1:28:32:f4:e8:ad:04:0a:a9:e9:a3:fd:e9:5a:ee:bb:69:82:
93:4a:c8:78:80:6a:c2:41:df:8b:b5:ef:14:7b:ae:9c:fc:87:
1f:ec:c7:19:27:8b:9b:42:77:44:a1:ec:59:39:b2:94:95:d0:
13:0e:b3:28:4f:13:46:6f:3c:26:ef:72:7f:3f:af:57:59:cb:
fe:63:e7:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 12 14:23:32 2024 by rpki-client on console-fra.rpki-client.org