Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/4VX3CzIi67I574opkBlFjuZYGWU.roa
File: 4VX3CzIi67I574opkBlFjuZYGWU.roa (raw, json)
Hash identifier: oR+4PXfDXm+e2ZxX9KCXOZ50AVUZF7nVMtbcuyQ/3rE=
Subject key identifier: E1:55:F7:0B:32:22:EB:B2:39:EF:8A:29:90:19:45:8E:E6:58:19:65
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 019206F0F9FBD0A006832BC4559BE30775BC
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/4VX3CzIi67I574opkBlFjuZYGWU.roa
Signing time: Wed 18 Sep 2024 21:01:48 +0000
ROA not before: Wed 18 Sep 2024 21:01:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214943
IP address blocks: 2a14:7e00::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 29 Sep 2024 09:24:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:06:f0:f9:fb:d0:a0:06:83:2b:c4:55:9b:e3:07:75:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Sep 18 21:01:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e155f70b3222ebb239ef8a299019458ee6581965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e3:bc:f8:fb:4d:f4:b5:5f:10:2e:6f:4f:1c:
22:55:46:ec:57:c6:c4:54:49:d3:71:86:c4:4f:cf:
75:d1:c0:bf:fe:aa:e3:fc:ce:c8:ca:a3:30:e7:e7:
57:29:9a:1a:de:7e:dd:28:99:c2:21:52:3c:9d:ee:
e2:be:db:bd:0b:79:bb:c7:8f:6b:e4:3d:55:ad:d1:
f1:65:b6:ba:21:2a:df:3f:db:a2:8a:3d:e4:4f:a5:
88:cd:f2:92:ed:61:b3:cf:8a:25:79:80:95:7f:f3:
06:38:6d:67:bc:bf:f0:14:0e:5e:4b:fc:28:da:03:
d1:99:fa:12:5b:1d:4f:cd:f4:57:cd:7e:59:93:44:
75:1a:f9:c4:8a:d7:57:2e:d5:9d:c5:1c:3f:47:71:
b1:58:05:a7:68:52:4e:4d:9d:05:45:95:56:29:20:
9c:de:9e:fb:33:b3:b2:b1:d1:15:08:0e:3e:7b:29:
e0:dc:73:7a:0a:28:9a:ac:15:d5:89:0f:82:e0:62:
c5:cd:b6:91:30:5e:06:bb:4f:c8:b5:82:06:3b:c1:
d1:6b:5e:0e:5e:bc:aa:5f:ba:6d:7e:51:96:47:aa:
d5:fc:3c:d0:c2:d3:04:58:43:cb:b1:ce:bb:a7:48:
26:d7:cf:82:4c:7a:05:36:1c:a6:49:f7:93:93:0e:
b3:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:55:F7:0B:32:22:EB:B2:39:EF:8A:29:90:19:45:8E:E6:58:19:65
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/4VX3CzIi67I574opkBlFjuZYGWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
0b:63:33:c0:cd:18:60:fe:37:18:42:8c:f4:e9:8c:7c:c3:f1:
66:f8:f8:a0:a6:55:dd:29:41:68:6b:66:cb:9b:94:6d:e5:99:
28:da:80:50:14:fb:e8:9c:cb:3d:90:04:09:a2:69:18:b9:a4:
fb:e7:ed:d4:84:bf:93:bc:26:c1:4f:2f:c0:0c:6e:d0:cb:f7:
e3:78:05:4e:30:0d:b5:d0:1f:9a:83:cc:a9:ea:64:93:fa:96:
05:06:0f:12:0f:98:56:05:22:e7:2b:02:e9:06:95:7e:0a:a3:
cc:9c:a4:49:6b:37:dc:1a:b3:f2:65:25:6f:e9:49:61:6f:e7:
8e:44:28:99:c6:2b:c7:96:9e:df:e3:0d:70:87:85:50:fd:16:
e2:2e:37:a9:86:91:54:68:52:3a:98:28:20:b3:b4:66:79:8e:
73:ab:c6:db:90:3e:f5:be:68:1b:88:f9:29:ee:78:c7:b5:c2:
4f:5c:f4:25:a5:15:d1:b2:47:21:98:68:0e:65:74:52:88:bd:
51:f4:15:f9:23:c1:e9:52:5a:a9:2a:8e:1d:b9:7c:4c:37:0d:
a3:d1:35:da:27:93:af:bf:6d:86:b2:eb:12:96:77:10:cf:ce:
ee:63:9d:f8:62:dc:17:e1:19:4f:d0:39:8c:d4:f4:a4:bf:34:
24:ae:d4:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 29 11:05:00 2024 by rpki-client on console-fra.rpki-client.org