Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/8475CP8hai4Asz9h4f501xGdGZI.roa
File: 8475CP8hai4Asz9h4f501xGdGZI.roa (raw, json)
Hash identifier: pKx1IqjMqKbx7ssmRU6Vrr7ymfB7BGcphasjGjIbqTA=
Subject key identifier: F3:8E:F9:08:FF:21:6A:2E:00:B3:3F:61:E1:FE:74:D7:11:9D:19:92
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 01907F814C9F68A65C119015389560941A62
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/8475CP8hai4Asz9h4f501xGdGZI.roa
Signing time: Thu 04 Jul 2024 20:48:18 +0000
ROA not before: Thu 04 Jul 2024 20:48:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214773
IP address blocks: 2a11:f240::/29 maxlen: 30
Validation: Failed, certificate revoked on Sat 06 Jul 2024 06:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7f:81:4c:9f:68:a6:5c:11:90:15:38:95:60:94:1a:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jul 4 20:48:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f38ef908ff216a2e00b33f61e1fe74d7119d1992
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:72:fd:88:c7:32:2c:0d:9e:63:c9:dd:4a:8d:
5e:02:f6:7d:b3:41:c2:d8:df:21:22:3c:fc:ff:a1:
a5:bc:d8:de:07:10:8b:0c:2b:c7:30:61:d4:a4:11:
d1:68:26:f7:7d:4a:d4:c5:23:7d:5c:30:eb:a8:73:
11:dc:f7:bc:f7:20:87:a7:b5:e0:88:0f:46:55:d3:
29:09:f6:8e:ac:35:f1:d0:75:31:a6:50:38:25:b4:
d4:af:b7:6e:42:3e:ef:5c:27:6e:c0:ab:ea:48:af:
e0:0d:5a:91:ec:7f:5f:03:d9:a1:ad:3a:ed:69:6f:
3c:ab:e9:05:f0:8f:ec:10:6e:c2:78:4d:9e:0b:16:
db:ad:18:8f:9c:9a:57:f6:8a:05:4d:39:e9:32:d9:
e8:bb:e4:15:c6:bc:a0:8b:19:59:55:de:c6:eb:eb:
3b:fd:38:a6:26:41:05:03:a4:57:44:41:94:2f:a7:
72:7b:cc:c8:0e:74:63:24:40:a2:93:0d:26:a2:e0:
96:79:f3:b2:57:0a:05:62:df:cf:c1:f8:76:f2:d5:
47:06:ef:b6:33:68:97:80:62:99:16:8f:1f:df:05:
ac:60:cb:95:6d:5d:a9:17:44:44:66:d1:d2:60:fc:
82:37:f5:c6:b4:cb:0c:f0:43:e0:86:dc:e1:d7:5b:
fc:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:8E:F9:08:FF:21:6A:2E:00:B3:3F:61:E1:FE:74:D7:11:9D:19:92
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/8475CP8hai4Asz9h4f501xGdGZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f240::/29
Signature Algorithm: sha256WithRSAEncryption
48:65:9e:17:91:56:0d:7d:56:3e:89:fa:84:27:1d:f7:aa:39:
f4:ee:f3:00:46:e0:76:f0:b0:c4:37:0a:74:3e:60:02:cc:f2:
47:ce:20:68:d1:41:09:1a:da:a8:68:bc:f9:d6:21:38:25:e5:
61:76:c4:ac:fd:03:a4:78:33:b6:17:3d:02:72:d4:e4:cd:f1:
f4:ba:77:0d:d6:37:01:c4:11:bb:1e:7d:a6:56:04:20:cc:0c:
ac:40:1e:d4:17:a8:44:d1:c6:4a:df:f7:49:3d:c6:a6:2b:44:
34:98:b7:e1:2f:5b:bb:2c:62:c6:ea:5b:e7:ac:4c:6a:d4:a2:
fa:6e:d0:df:99:b6:30:9d:53:59:58:23:dc:8a:09:87:4b:ad:
1a:20:51:86:75:08:0d:6b:70:51:e4:bb:17:4d:3e:58:52:de:
f0:4d:1c:67:16:08:be:ee:05:fe:d3:fb:dc:67:fe:f3:71:73:
3e:b1:9e:d1:92:e5:28:1f:c6:8d:0c:14:7d:88:98:0d:20:84:
8a:e7:0c:e3:00:fd:44:92:f6:00:00:58:a7:0f:c5:7e:e9:52:
a5:86:07:74:e4:92:31:e1:d7:c4:da:6e:1b:9e:4c:08:e8:c7:
04:84:1c:d2:f5:bd:06:60:c8:86:eb:35:e5:5e:53:5e:7c:ef:
ea:fc:27:dd
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZB/gUyfaKZcEZAVOJVglBpiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4OWQ2YjU1ZDZhNjg4ZWU1ZTMzODE4ODNiYjVhZjY4NDMz
Mjc2ZTMwHhcNMjQwNzA0MjA0ODE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMzhlZjkwOGZmMjE2YTJlMDBiMzNmNjFlMWZlNzRkNzExOWQxOTkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzXL9iMcyLA2eY8ndSo1eAvZ9s0HC
2N8hIjz8/6GlvNjeBxCLDCvHMGHUpBHRaCb3fUrUxSN9XDDrqHMR3Pe89yCHp7Xg
iA9GVdMpCfaOrDXx0HUxplA4JbTUr7duQj7vXCduwKvqSK/gDVqR7H9fA9mhrTrt
aW88q+kF8I/sEG7CeE2eCxbbrRiPnJpX9ooFTTnpMtnou+QVxrygixlZVd7G6+s7
/TimJkEFA6RXREGUL6dye8zIDnRjJECikw0mouCWefOyVwoFYt/Pwfh28tVHBu+2
M2iXgGKZFo8f3wWsYMuVbV2pF0REZtHSYPyCN/XGtMsM8EPghtzh11v8RQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPOO+Qj/IWouALM/YeH+dNcRnRmSMB8GA1UdIwQY
MBaAFBida1XWpojuXjOBiDu1r2hDMnbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUt
YTJhNGM2YTYyMWNkLzEvODQ3NUNQOGhhaTRBc3o5aDRmNTAxeEdkR1pJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUtYTJhNGM2YTYyMWNk
LzEvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhHyQDAN
BgkqhkiG9w0BAQsFAAOCAQEASGWeF5FWDX1WPon6hCcd96o59O7zAEbgdvCwxDcK
dD5gAszyR84gaNFBCRraqGi8+dYhOCXlYXbErP0DpHgzthc9AnLU5M3x9Lp3DdY3
AcQRux59plYEIMwMrEAe1BeoRNHGSt/3ST3GpitENJi34S9buyxixupb56xMatSi
+m7Q35m2MJ1TWVgj3IoJh0utGiBRhnUIDWtwUeS7F00+WFLe8E0cZxYIvu4F/tP7
3Gf+83FzPrGe0ZLlKB/GjQwUfYiYDSCEiucM4wD9RJL2AABYpw/FfulSpYYHdOSS
MeHXxNpuG55MCOjHBIQc0vW9BmDIhus15V5TXnzv6vwn3Q==
-----END CERTIFICATE-----
Generated at Sat Jul 6 07:03:50 2024 by rpki-client on console-ams.rpki-client.org