Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/1GqhL5j9gVffOmBLVKo6CRnzTZo.roa
File: 1GqhL5j9gVffOmBLVKo6CRnzTZo.roa (raw, json)
Hash identifier: tumYr0ZBGTOTyjdF4SSuQdUa4x5FVs6IOkGqvBoKmJI=
Subject key identifier: D4:6A:A1:2F:98:FD:81:57:DF:3A:60:4B:54:AA:3A:09:19:F3:4D:9A
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018CC500947957C765021E2CAA9B67E3B2D8
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/1GqhL5j9gVffOmBLVKo6CRnzTZo.roa
Signing time: Mon 01 Jan 2024 12:29:58 +0000
ROA not before: Mon 01 Jan 2024 12:29:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25198
IP address blocks: 2a11:f240::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 02 Feb 2024 19:43:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:94:79:57:c7:65:02:1e:2c:aa:9b:67:e3:b2:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jan 1 12:29:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d46aa12f98fd8157df3a604b54aa3a0919f34d9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:29:26:5d:29:ad:eb:6d:b6:eb:09:b2:98:b7:
9c:c7:e0:47:c9:34:73:7b:4a:e5:8d:05:35:b1:c5:
ea:3b:48:a1:36:22:70:d0:86:1f:1a:9f:2d:26:9f:
6f:18:50:5b:dd:5d:2d:30:2e:2d:d4:17:76:24:12:
89:3e:6c:d4:d2:87:61:73:a3:85:78:eb:b2:42:78:
23:d1:ca:c2:05:b5:70:e5:07:34:2c:74:c0:a1:66:
03:68:19:47:de:ee:85:f1:27:8c:89:2d:bb:72:ee:
76:f0:01:08:75:77:f5:a3:72:09:e4:13:3b:02:2f:
47:51:63:20:c4:2f:ee:cb:1b:7f:24:60:7d:19:b9:
94:14:f5:60:75:dc:4d:68:68:5d:98:db:c8:9b:0b:
5a:71:be:f9:c8:d8:7e:7d:bd:26:5d:b1:20:d1:e9:
2f:af:1c:ae:6c:9f:52:67:be:17:17:4f:96:8a:3f:
70:b4:3a:ef:17:6e:5b:d4:f4:bd:dd:15:30:94:32:
6b:c9:f3:4a:13:41:23:78:8f:d9:6c:dd:ac:20:fb:
e1:99:74:bb:41:ec:6e:f7:fb:ad:81:88:3e:ed:58:
94:31:6e:3a:d7:e6:b3:05:68:cf:e8:df:6c:ba:dc:
a7:11:95:59:ab:73:16:1d:6c:ae:70:f2:52:46:18:
80:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:6A:A1:2F:98:FD:81:57:DF:3A:60:4B:54:AA:3A:09:19:F3:4D:9A
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/1GqhL5j9gVffOmBLVKo6CRnzTZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f240::/29
Signature Algorithm: sha256WithRSAEncryption
0d:a4:4b:8e:8a:ed:c1:83:46:ba:c7:5e:63:17:c0:02:28:19:
0d:c7:c5:e1:eb:40:4c:6d:d7:8f:24:16:ee:ee:41:c4:21:ca:
1c:ec:99:3d:00:8c:04:73:9c:f3:96:4f:6b:67:b0:1b:6d:03:
61:dd:28:40:f0:46:6d:91:d3:e1:7d:35:7c:ff:d3:d9:3a:0e:
b5:a7:80:ca:71:2e:83:bc:e4:67:6d:90:c8:1d:64:9f:ae:dd:
12:90:76:fc:61:62:05:89:f9:fe:d8:31:c4:c2:9a:11:9e:a3:
1b:a1:f4:f6:bb:36:06:3a:a8:4e:e0:13:af:24:18:59:ea:41:
6f:a4:98:30:de:d2:66:e5:18:62:03:d3:92:0d:44:1d:d2:46:
f6:d7:44:c9:1c:70:6b:59:4f:02:91:eb:51:ae:75:dd:4d:6d:
e5:99:bc:8b:eb:1f:e8:89:eb:23:df:89:d6:89:fc:a0:30:58:
8b:53:e5:3b:c5:87:a8:e2:db:e3:a7:46:9b:d6:93:70:1a:67:
df:5e:09:53:39:81:f4:89:70:91:1f:a0:ac:78:4a:ad:a4:7c:
8e:fe:62:fe:c5:43:4d:39:ef:8e:2e:29:79:c1:6d:25:ed:6d:
fb:4d:2e:43:ea:a9:5e:a2:84:d0:99:22:7d:fc:c1:24:12:b8:
aa:ef:30:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:37 2024 by rpki-client on console-fra.rpki-client.org