Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/C-nbkoHjwtIyBLp1dZKJF_0m0U8.roa
File: C-nbkoHjwtIyBLp1dZKJF_0m0U8.roa (raw, json)
Hash identifier: HKiedVY3mFxtEe894Y2C/QEZ6hAh3V0IT67Utx+/uxs=
Subject key identifier: 0B:E9:DB:92:81:E3:C2:D2:32:04:BA:75:75:92:89:17:FD:26:D1:4F
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 01903FD00026F8A0A382478BAAD222C91204
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/C-nbkoHjwtIyBLp1dZKJF_0m0U8.roa
Signing time: Sat 22 Jun 2024 11:58:34 +0000
ROA not before: Sat 22 Jun 2024 11:58:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216435
IP address blocks: 2a11:dcc0::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 12 Aug 2024 08:18:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:3f:d0:00:26:f8:a0:a3:82:47:8b:aa:d2:22:c9:12:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jun 22 11:58:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0be9db9281e3c2d23204ba7575928917fd26d14f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:49:d5:7e:c3:cc:77:87:dc:7e:91:03:25:6a:
d9:6e:20:6f:7a:f4:0b:6b:46:ff:a8:1c:c4:e2:c4:
1c:96:d2:1c:b8:dc:3a:5f:1b:70:25:84:a1:3c:4f:
f5:d0:21:a5:fa:2d:90:5b:f4:c9:d8:d8:a1:2f:18:
2a:a3:f1:9f:83:88:1a:57:22:73:fc:e4:1a:c4:ba:
23:84:3e:1e:33:d3:3f:5e:0f:e0:42:88:9c:77:8d:
0a:96:d9:9c:96:d2:80:32:39:72:96:68:73:66:75:
1c:68:b5:fb:d3:41:bf:8c:13:76:15:c4:68:e1:84:
ec:aa:4d:80:17:ef:d8:be:36:97:62:ee:e5:83:2d:
34:f1:fb:e9:46:7a:ce:a3:9e:18:62:1c:d6:47:2b:
d9:5a:84:f3:9b:8d:51:1e:74:c6:91:75:36:61:81:
08:cc:1e:b8:37:b3:74:85:11:bb:b0:3a:85:b3:5d:
e7:98:15:e8:6f:e2:6b:8d:b0:91:93:98:b0:01:b6:
8a:99:76:fc:bd:aa:22:14:44:5a:6a:18:a6:ac:c4:
26:39:e7:f2:3b:c2:79:f2:7e:e5:6e:67:75:ae:f8:
93:92:09:f2:a8:72:28:96:60:24:2f:2b:e9:f6:49:
5b:07:db:3a:b8:ad:15:42:19:99:9d:af:50:1a:f4:
17:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:E9:DB:92:81:E3:C2:D2:32:04:BA:75:75:92:89:17:FD:26:D1:4F
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/C-nbkoHjwtIyBLp1dZKJF_0m0U8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:dcc0::/29
Signature Algorithm: sha256WithRSAEncryption
7a:94:ce:a8:08:23:89:d6:bb:2e:35:99:3b:be:82:c3:b6:11:
19:d7:ef:a9:67:ce:39:99:ff:8b:b7:02:a6:a6:72:66:15:83:
28:b1:6c:9e:03:ed:c0:0d:a5:7b:c2:74:55:f2:b4:15:82:b7:
dc:95:ad:fa:9a:65:f5:f2:d4:5c:7a:a5:9e:ed:3d:a4:c5:82:
f8:79:28:0a:25:7b:72:98:be:39:89:ea:a1:a7:70:a5:f7:0b:
d9:26:2a:78:36:89:80:67:69:ab:2e:e4:63:75:66:4b:0c:7c:
60:38:f4:a0:52:94:60:50:8b:b1:68:9d:c9:d2:eb:98:6a:71:
cc:11:a2:48:03:a8:9d:8e:a3:f1:7f:41:e1:9b:70:c7:69:7a:
4f:6c:df:20:06:58:7a:c0:05:9a:37:b2:09:18:97:33:32:6d:
d9:bc:d9:24:e3:ba:59:6f:18:08:6a:e1:a7:5f:c5:60:5c:bf:
aa:44:7d:96:ec:94:b4:1e:b9:26:21:a4:14:05:c2:8d:4e:18:
ce:ce:8a:b2:99:ad:4f:df:b2:b6:9f:11:08:3a:84:0f:13:fb:
76:23:45:c1:52:6c:31:24:8a:90:56:42:c7:ee:2f:9d:45:65:
ec:b9:a7:48:94:46:a4:a3:10:74:e1:18:85:4a:73:1a:4a:bc:
fa:5d:d9:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 12 10:21:00 2024 by rpki-client on console-fra.rpki-client.org