Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/10Z8952pvuZJKjkuCGj8up5aXeU.roa
File: 10Z8952pvuZJKjkuCGj8up5aXeU.roa (raw, json)
Hash identifier: T7TaqnpP/G1EeFMdBHr4IOnqx/i83e33MT8ue99fClM=
Subject key identifier: D7:46:7C:F7:9D:A9:BE:E6:49:2A:39:2E:08:68:FC:BA:9E:5A:5D:E5
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018E8EB62403D5B12B3C820693569CEAF5A9
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/10Z8952pvuZJKjkuCGj8up5aXeU.roa
Signing time: Sat 30 Mar 2024 09:34:45 +0000
ROA not before: Sat 30 Mar 2024 09:34:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216157
IP address blocks: 2a0a:e2c0::/29 maxlen: 32
2a0e:7780::/29 maxlen: 32
2a0f:e000::/29 maxlen: 32
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a11:dcc0::/29 maxlen: 29
2a12:6640::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 29
2a13:ba00::/29 maxlen: 32
2a13:dac0::/29 maxlen: 32
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
2a14:7e00::/29 maxlen: 32
Validation: Failed, certificate revoked on Sun 14 Apr 2024 06:31:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:8e:b6:24:03:d5:b1:2b:3c:82:06:93:56:9c:ea:f5:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Mar 30 09:34:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d7467cf79da9bee6492a392e0868fcba9e5a5de5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:63:2e:6e:05:a4:6f:03:96:4d:bd:f9:bf:50:
63:da:91:c3:23:3b:09:f2:27:5f:c7:e9:d3:a7:f3:
75:83:a3:52:91:9a:fe:cd:48:c4:90:55:64:0f:98:
fd:4c:94:c3:94:28:f8:14:9e:bf:8e:70:83:27:74:
8c:0a:cb:8a:0e:bc:10:73:7f:ff:f8:70:27:eb:e9:
9d:b8:44:fa:9e:f6:7f:83:35:97:53:7c:1b:dd:f9:
aa:15:8c:3a:a7:01:40:e1:a0:2c:57:ed:fe:f5:95:
00:9a:74:20:6c:86:84:c4:11:aa:94:ad:0b:74:7e:
aa:d4:91:84:28:63:0c:70:af:c2:02:cd:e9:d6:d9:
8c:a6:d3:8b:e3:81:45:ca:23:37:d7:6b:31:60:96:
1e:38:69:c1:59:d6:d6:0e:94:7e:41:dd:fa:59:5c:
12:77:73:f0:90:85:eb:4b:df:6a:38:88:83:43:97:
e7:2f:0b:0d:63:ba:64:0a:5a:9f:6c:14:29:d0:15:
74:24:91:4c:21:7a:a5:6c:0d:d4:e5:35:14:94:5d:
6d:02:40:72:d3:82:41:de:80:16:0e:30:50:35:ad:
82:7f:c8:2d:9a:8d:2e:b6:79:c8:1c:6f:4d:48:e7:
34:d0:9d:e6:94:5c:0d:a6:57:77:ed:fd:74:56:cf:
a8:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:46:7C:F7:9D:A9:BE:E6:49:2A:39:2E:08:68:FC:BA:9E:5A:5D:E5
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/10Z8952pvuZJKjkuCGj8up5aXeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:e2c0::/29
2a0e:7780::/29
2a0f:e000::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:7240::/29
2a11:9600::/29
2a11:dcc0::/29
2a12:6640::/29
2a12:f0c0::/29
2a13:ba00::/29
2a13:dac0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
2a14:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
60:3c:4a:d1:e7:97:6c:7d:0c:c5:02:da:82:fd:9d:02:72:4b:
d4:a2:32:c6:25:ed:1c:af:f3:be:15:dd:92:e7:db:e9:95:c5:
ff:82:9b:f2:1c:ef:b0:3e:fb:0c:0d:00:2b:c6:77:95:9a:c1:
f0:4a:66:2c:e9:c5:f7:1d:34:c8:15:a9:af:17:e3:82:c8:99:
5c:1c:90:e7:cf:3e:66:0d:e0:02:b7:4d:da:b5:fc:4f:28:c7:
7a:56:af:b3:6e:55:4b:4e:2c:00:3d:6f:e7:19:19:b1:cb:fa:
2a:d9:d1:0b:7e:8f:eb:7d:82:cc:db:14:e6:92:03:c3:89:ef:
70:84:30:87:69:8b:83:c2:ea:6a:0b:15:8c:e7:df:45:d7:a4:
8c:00:70:f4:7c:53:e7:2f:e8:0d:d0:4c:c9:a5:ea:64:27:f1:
10:6c:13:64:ba:7a:c8:c5:51:38:67:e9:82:97:fc:7b:db:64:
73:ad:e1:1e:7f:d2:ea:7a:d2:a4:14:77:d7:54:4e:b2:2b:a7:
a3:5a:16:69:14:bb:81:e1:d8:04:04:11:eb:27:b6:b1:0a:a7:
ca:26:76:3f:fc:b0:94:7b:60:9e:e8:93:16:0a:27:ce:a4:c1:
36:90:4a:19:d9:d5:9b:77:da:42:59:4e:82:c3:af:76:1d:f4:
16:37:e9:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:37 2024 by rpki-client on console-fra.rpki-client.org