Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/738dnXYfNBQ_FwE7JzgEtdn3Plo.roa
File: 738dnXYfNBQ_FwE7JzgEtdn3Plo.roa (raw, json)
Hash identifier: ybr57q9X4z4YUvkLuwgiLS462ZIOzAEefLKySFuKWx0=
Subject key identifier: EF:7F:1D:9D:76:1F:34:14:3F:17:01:3B:27:38:04:B5:D9:F7:3E:5A
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018FBF35C3C81BE59714470D1F427EDF42CF
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/738dnXYfNBQ_FwE7JzgEtdn3Plo.roa
Signing time: Tue 28 May 2024 12:38:42 +0000
ROA not before: Tue 28 May 2024 12:38:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212027
IP address blocks: 2a11:1140::/29 maxlen: 29
2a12:28c0::/29 maxlen: 29
2a12:6b80::/29 maxlen: 29
2a12:d3c0::/29 maxlen: 30
Validation: Failed, certificate revoked on Thu 06 Jun 2024 13:12:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:bf:35:c3:c8:1b:e5:97:14:47:0d:1f:42:7e:df:42:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: May 28 12:38:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef7f1d9d761f34143f17013b273804b5d9f73e5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c3:81:79:5b:42:db:74:31:ca:03:24:a3:5e:
6e:62:b4:e7:09:5b:04:7b:e9:1f:f1:9e:0e:a4:1e:
b0:60:e8:d4:cf:6d:a6:73:ea:15:2b:59:b5:3d:83:
a3:d4:8f:17:f0:22:98:d8:7d:e8:25:f5:a5:03:2a:
88:20:e0:56:05:8c:78:e7:75:47:27:76:87:4e:1e:
dc:c0:73:be:09:50:d6:e4:44:a7:fa:69:07:c9:43:
11:c4:12:e3:cd:78:9f:e1:53:a6:e1:b1:d3:50:54:
70:b4:da:8f:ed:62:a1:01:81:e4:11:5b:cf:f6:2e:
ea:86:ba:18:88:69:88:c8:6f:51:e1:6d:76:bc:5d:
8b:3d:cc:33:a1:44:86:85:16:27:45:4d:09:d5:23:
74:39:70:eb:9a:5d:3e:77:35:36:f8:78:5d:1a:eb:
98:ad:b3:bd:8b:ab:69:73:c0:f5:59:e3:ad:92:c7:
96:2e:45:ae:38:64:7e:50:98:64:45:16:59:61:c7:
62:63:15:a4:8f:34:d4:a2:f5:e7:8f:37:ab:11:88:
2d:89:fd:41:8d:ad:d7:77:23:17:49:41:71:cf:84:
4b:97:af:cd:2f:60:98:08:61:c2:b1:3b:fa:28:b8:
c7:a5:74:d0:30:14:7b:75:19:0b:57:68:71:1c:3c:
c7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:7F:1D:9D:76:1F:34:14:3F:17:01:3B:27:38:04:B5:D9:F7:3E:5A
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/738dnXYfNBQ_FwE7JzgEtdn3Plo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:1140::/29
2a12:28c0::/29
2a12:6b80::/29
2a12:d3c0::/29
Signature Algorithm: sha256WithRSAEncryption
85:cf:5a:72:1a:38:a1:a5:59:7b:56:7a:36:e6:71:2a:96:ec:
a1:67:02:ff:72:80:25:81:82:ef:94:de:2f:00:81:f3:09:25:
b5:39:04:af:0d:77:3c:c7:70:04:c4:f6:25:f5:39:44:ee:4d:
2a:b6:ce:fc:17:74:4f:01:b8:63:3b:48:18:df:84:63:ae:a0:
1a:f7:6e:86:d2:09:71:d7:3a:58:a6:eb:dc:e9:3b:97:0a:72:
bd:0b:42:13:57:be:87:2a:8a:d2:88:3c:d2:c9:b1:68:9f:4d:
fa:70:11:af:c4:a3:eb:d1:82:e0:44:ba:5b:eb:9f:d5:81:cf:
ba:43:45:96:ab:bd:fb:85:71:b3:c2:85:e9:1d:f6:47:1d:2c:
02:d4:37:63:ca:f3:1a:08:b0:15:8b:24:7c:61:b0:3e:15:fa:
f7:3a:c1:be:a0:1d:7a:eb:2b:b1:c9:7c:1d:d5:c0:18:33:c9:
32:c4:cb:62:b9:2a:da:23:a7:96:45:a0:f3:db:7c:b6:18:93:
ed:63:3c:23:d6:41:70:83:88:18:13:87:d4:26:c8:a8:7f:b5:
ce:b7:11:fe:4f:88:ff:c0:53:e9:c3:8d:7f:7e:08:c9:e7:93:
e7:70:62:c9:1a:68:f4:a1:2a:5e:a4:0d:95:cd:3f:81:fd:8d:
da:76:c1:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:02 2024 by rpki-client on console-ams.rpki-client.org