Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/A6oEomEB2_xP7O_L-Z9JN1uiLYc.roa
File: A6oEomEB2_xP7O_L-Z9JN1uiLYc.roa (raw, json)
Hash identifier: TN668sFjfwLsQECnM+H2hpbD+wPtWbXk4OhC7DbRQe0=
Subject key identifier: 03:AA:04:A2:61:01:DB:FC:4F:EC:EF:CB:F9:9F:49:37:5B:A2:2D:87
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018E18156D43813116095946FFD75D4BB08A
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/A6oEomEB2_xP7O_L-Z9JN1uiLYc.roa
Signing time: Thu 07 Mar 2024 08:44:01 +0000
ROA not before: Thu 07 Mar 2024 08:44:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216157
IP address blocks: 2a0a:e2c0::/29 maxlen: 32
2a0e:7780::/29 maxlen: 32
2a0f:e000::/29 maxlen: 32
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a11:dcc0::/29 maxlen: 29
2a13:ba00::/29 maxlen: 32
2a13:dac0::/29 maxlen: 32
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:7e00::/29 maxlen: 32
Validation: Failed, certificate revoked on Tue 12 Mar 2024 17:16:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:18:15:6d:43:81:31:16:09:59:46:ff:d7:5d:4b:b0:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Mar 7 08:44:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=03aa04a26101dbfc4fecefcbf99f49375ba22d87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:95:ed:d9:c0:fa:35:34:f9:dd:ca:5f:2d:4d:
05:03:c3:80:33:0b:cc:ef:30:aa:54:ef:a3:de:83:
66:24:2a:40:a6:b9:7a:47:5d:45:fd:44:4b:40:d9:
bc:59:cf:ba:ea:7d:47:86:78:7f:9a:4f:ba:86:f4:
3e:cb:ad:b4:04:9c:ac:1e:11:e0:21:0e:ec:7a:09:
fd:24:31:e4:f5:f7:a2:39:32:9c:ac:4e:e5:ff:ec:
75:f8:60:26:46:c8:26:c0:84:26:da:dc:da:83:d7:
1c:49:fc:fc:39:9a:10:a4:47:34:7b:ee:4e:d6:7c:
fa:67:06:3c:2e:9b:f3:b9:00:e6:a0:91:2a:ce:e1:
d4:72:92:b7:47:f4:e5:b9:32:8d:cd:78:0d:7a:9d:
66:f2:27:21:d5:9e:82:70:0b:87:ff:25:7c:74:3c:
e0:f7:25:af:82:30:43:d9:b9:9b:82:d2:10:5e:17:
d2:79:0f:06:85:24:4d:6a:8e:3c:37:9f:08:ec:dc:
8e:77:1e:34:04:53:89:1c:3f:30:32:2b:01:33:bb:
a5:f7:1b:67:18:6c:ea:8f:a8:de:b5:95:13:72:f3:
7e:63:91:5b:fe:8a:c8:23:de:0e:36:fd:81:9c:29:
88:ee:fb:9b:8b:90:33:4b:cd:25:8e:30:dc:4b:14:
3e:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:AA:04:A2:61:01:DB:FC:4F:EC:EF:CB:F9:9F:49:37:5B:A2:2D:87
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/A6oEomEB2_xP7O_L-Z9JN1uiLYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:e2c0::/29
2a0e:7780::/29
2a0f:e000::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:9600::/29
2a11:dcc0::/29
2a13:ba00::/29
2a13:dac0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
8c:b2:5d:a4:1e:ee:9a:97:5e:35:10:f7:4a:34:ab:9c:c7:e6:
0e:53:d1:32:aa:4a:5d:cb:c5:0e:36:7f:d1:32:c1:69:3b:92:
2c:56:3c:0d:10:bf:ad:ec:ec:3a:d4:42:83:71:35:37:2d:a9:
20:2e:d9:ff:43:40:4a:a3:d6:ac:c3:b3:62:e5:a2:6e:12:28:
26:31:74:40:e2:3d:af:92:15:22:f3:0f:ea:eb:d9:cf:ca:1b:
65:ca:8e:0b:52:f9:f0:d2:3f:3c:ba:56:e5:71:db:91:9f:23:
4c:19:bf:83:74:a0:24:f6:e8:61:e1:8b:86:cf:f6:06:80:c0:
88:c7:2c:ac:39:86:81:5c:a0:0e:4b:8d:d0:3b:8d:13:c0:4e:
b8:a1:c0:3d:a7:1e:d6:db:ba:a1:32:e7:99:47:89:42:63:0b:
1b:64:46:dc:45:ff:9a:d2:05:74:ac:9f:50:86:40:58:8c:d3:
8b:16:2f:d7:35:cb:7e:5e:f1:3b:63:cc:93:8b:a7:d1:a4:3e:
fa:1c:81:dd:3f:38:16:e9:bc:15:de:ef:51:d0:aa:e2:f7:89:
82:09:7c:1d:48:81:d5:4c:77:b2:e6:05:37:27:2c:f3:9c:f6:
f6:08:eb:83:1d:52:6b:78:4e:ad:3a:20:f3:2b:3f:be:df:de:
15:10:10:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:02 2024 by rpki-client on console-ams.rpki-client.org