Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/K3S0VXUTLdRv48Ayovt1VJyFy4E.roa
File: K3S0VXUTLdRv48Ayovt1VJyFy4E.roa (raw, json)
Hash identifier: VvEjTJWLWvg7DGreBtIcNYNBVq9fxKQ4tXukqOIs/zo=
Subject key identifier: 2B:74:B4:55:75:13:2D:D4:6F:E3:C0:32:A2:FB:75:54:9C:85:CB:81
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018FA61D8237B54273980C729004B51619B6
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/K3S0VXUTLdRv48Ayovt1VJyFy4E.roa
Signing time: Thu 23 May 2024 15:41:42 +0000
ROA not before: Thu 23 May 2024 15:41:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212027
IP address blocks: 2a11:1140::/29 maxlen: 29
2a12:6b80::/29 maxlen: 29
2a12:d3c0::/29 maxlen: 30
Validation: Failed, certificate revoked on Tue 28 May 2024 12:38:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a6:1d:82:37:b5:42:73:98:0c:72:90:04:b5:16:19:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: May 23 15:41:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2b74b45575132dd46fe3c032a2fb75549c85cb81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4b:d2:85:bb:a6:22:4d:64:c4:6e:55:28:2c:
f6:16:1c:b5:d3:02:e3:c5:33:53:db:5d:de:08:5b:
33:03:16:20:96:92:3d:e8:35:1c:7e:7e:dc:4f:07:
d3:6e:c2:c3:fb:7f:29:6c:56:e1:b2:ee:89:d6:de:
93:46:07:31:10:ec:66:aa:71:19:f9:d1:df:63:32:
21:1c:b2:c8:f3:21:72:cf:c1:83:bd:23:ba:0a:8e:
d3:cc:df:d7:b8:70:e6:e5:e9:0d:c6:1f:b2:58:52:
ff:83:7c:42:6a:b4:c2:2b:de:18:c8:b4:ad:2f:32:
9e:bb:31:85:67:45:2d:1f:5a:3e:84:40:76:9a:4d:
cc:c5:02:57:66:8d:f5:71:81:02:22:67:9a:0d:23:
50:50:6b:8d:81:7a:02:78:6a:11:5b:00:ce:2a:65:
89:a8:0c:e3:2b:1a:70:60:a9:10:d1:d4:c7:6b:d3:
28:be:d6:e8:31:b8:5b:2e:e4:86:a5:74:8c:c8:a1:
3c:32:77:fa:73:71:b8:9d:8d:53:da:93:a8:da:d9:
7d:17:46:78:c7:97:ea:99:a9:a8:59:45:71:c4:5b:
38:3e:e4:4c:b1:17:98:ec:ea:65:70:1f:f8:6d:35:
f4:22:01:7c:3e:67:ee:cb:e9:1f:2b:20:77:2e:ee:
d0:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:74:B4:55:75:13:2D:D4:6F:E3:C0:32:A2:FB:75:54:9C:85:CB:81
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/K3S0VXUTLdRv48Ayovt1VJyFy4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:1140::/29
2a12:6b80::/29
2a12:d3c0::/29
Signature Algorithm: sha256WithRSAEncryption
40:a7:68:19:e2:d4:99:aa:3a:0c:88:f8:ad:88:b4:dd:93:78:
32:de:99:c7:18:46:f5:34:1d:d4:a5:80:22:9d:10:b3:48:33:
b0:d0:54:63:ff:4c:de:24:36:d0:45:de:3f:a8:d5:a1:df:4b:
c7:f5:11:0a:96:30:fd:72:e7:4b:59:77:2a:3c:ea:ac:f7:64:
c0:40:d5:fe:86:04:ed:c8:15:0e:c9:e0:46:6c:49:11:00:46:
b8:c2:fd:b8:0e:7c:d9:bf:85:64:92:18:4d:b4:26:81:e5:3d:
84:65:a7:ce:ba:bc:24:f6:d7:5d:32:c9:39:93:ee:c5:8d:f4:
fa:9f:f2:1a:68:d0:97:f7:73:ee:e0:c6:81:85:ee:35:c1:eb:
69:c6:b3:f6:19:33:55:5b:12:5b:be:df:4b:40:7d:20:93:4a:
40:d9:ff:41:90:d6:6f:a3:30:79:e0:25:5c:af:fb:72:25:65:
1e:fb:66:61:a8:19:bf:92:cf:e8:35:1e:68:f6:c6:19:c3:d3:
2f:0f:64:e7:f2:99:56:13:d8:88:a3:16:d6:3b:c3:ca:24:45:
fd:40:3c:02:63:37:35:c7:01:cc:6a:7a:94:49:35:19:f7:05:
95:c4:3a:76:ba:54:16:10:97:a9:c2:9c:0a:10:dc:3d:d0:c2:
61:21:e8:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:37 2024 by rpki-client on console-fra.rpki-client.org