Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/44mGx8n6sZgDR1UvduPe0LoK6IY.roa
File: 44mGx8n6sZgDR1UvduPe0LoK6IY.roa (raw, json)
Hash identifier: reHH5o/eM0Zf8hlpkgGtU882KmK3LlPB/oiDtc7/JUM=
Subject key identifier: E3:89:86:C7:C9:FA:B1:98:03:47:55:2F:76:E3:DE:D0:BA:0A:E8:86
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018DFF4463B10247EE77BF44EFD8F2E000BA
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/44mGx8n6sZgDR1UvduPe0LoK6IY.roa
Signing time: Sat 02 Mar 2024 13:04:48 +0000
ROA not before: Sat 02 Mar 2024 13:04:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198231
IP address blocks: 2a0f:e000::/29 maxlen: 32
2a11:dcc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 03 May 2024 04:17:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ff:44:63:b1:02:47:ee:77:bf:44:ef:d8:f2:e0:00:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Mar 2 13:04:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e38986c7c9fab1980347552f76e3ded0ba0ae886
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b7:96:a9:4d:37:ae:11:bd:4a:59:2e:f2:b5:
7a:94:84:71:5c:c9:b9:d3:04:26:2e:ad:fd:dc:70:
03:a6:b9:e5:b6:d4:39:0d:ca:e6:53:0c:87:08:7a:
f0:88:f9:32:48:ab:62:93:90:19:13:47:71:5c:f3:
04:a5:99:5d:81:94:fd:d8:62:d1:8c:08:ec:0c:8b:
48:11:d9:14:45:d8:49:ae:f9:09:5e:1a:6b:f5:07:
59:e7:c6:d3:3d:5b:09:19:24:b9:b5:5f:a8:74:34:
66:bb:16:c5:20:83:2b:22:33:cb:2d:e9:0f:9e:98:
99:d8:0a:06:29:70:d6:68:88:68:a8:2d:c5:07:b0:
3b:ac:ab:af:5b:21:71:f8:4d:1f:a5:57:7f:1b:42:
d0:75:49:8c:f8:0e:f6:59:dd:25:7f:06:d6:f8:0c:
18:7f:92:dd:f4:f3:e3:ee:59:7f:a0:8a:29:86:c0:
7d:1e:f9:ae:ad:b3:97:05:b9:6f:45:99:29:33:03:
5d:4b:3d:1f:78:e5:98:1b:19:0f:dc:3a:2f:1c:ed:
a5:04:7e:66:71:19:e2:6a:b2:cf:2e:c0:16:da:a5:
1e:8f:96:be:37:45:fd:28:51:7c:e5:29:7a:f2:37:
5f:a9:04:fc:a4:d1:19:05:71:12:1c:d6:0a:c3:a9:
3f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:89:86:C7:C9:FA:B1:98:03:47:55:2F:76:E3:DE:D0:BA:0A:E8:86
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/44mGx8n6sZgDR1UvduPe0LoK6IY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:e000::/29
2a11:dcc0::/29
Signature Algorithm: sha256WithRSAEncryption
6e:e8:6f:9e:5f:27:d8:8c:cd:5c:41:02:99:09:17:33:54:16:
c9:7e:69:f3:15:fb:71:68:c0:32:a3:ae:0f:c0:e7:48:02:ac:
8c:f6:8d:4c:62:0a:77:6f:45:17:91:35:c9:2d:2b:2c:60:81:
65:db:9b:ef:89:1c:8d:63:a8:f1:08:ce:8a:5b:f0:fb:b8:05:
4d:74:10:a2:2e:33:1a:34:97:c7:64:e5:3c:c9:42:b8:b9:85:
dd:a4:ce:c2:43:2b:4f:f5:1c:2e:92:f1:bf:28:b4:07:c0:44:
5c:6d:25:41:09:20:04:6c:d7:35:b7:c1:93:bf:77:2c:ea:28:
16:2b:31:49:3d:38:7b:ba:14:b2:ca:41:87:c7:01:11:86:2e:
f7:5b:e9:07:ad:a0:f6:f0:e6:b6:71:73:ba:17:d0:ff:6b:d1:
39:b7:11:72:08:5c:61:2e:9e:eb:c7:23:8a:46:82:18:f5:c4:
d6:89:86:d8:9f:83:20:94:ed:4b:6d:c2:77:f8:61:f0:5a:b0:
97:b4:4c:22:c5:35:d2:ba:34:90:82:1b:a4:49:d0:0d:f4:54:
ac:69:71:87:8e:6c:1d:79:62:d6:65:6d:ef:ea:17:96:e5:0c:
bb:ae:e2:2f:f5:d6:e0:05:2b:1e:d9:04:9f:23:28:35:4d:2a:
5a:b3:8d:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:37 2024 by rpki-client on console-fra.rpki-client.org