Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/LwUV5vhkofIZ5Pr3T-AOS2vwTNE.roa
File: LwUV5vhkofIZ5Pr3T-AOS2vwTNE.roa (raw, json)
Hash identifier: hibvmPzdeZwfThj3Oq2O13+IXpLCuHYEJVhHGju31TU=
Subject key identifier: 2F:05:15:E6:F8:64:A1:F2:19:E4:FA:F7:4F:E0:0E:4B:6B:F0:4C:D1
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018CC50094AAB27B38A639A3E53FF16E5AD6
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/LwUV5vhkofIZ5Pr3T-AOS2vwTNE.roa
Signing time: Mon 01 Jan 2024 12:29:58 +0000
ROA not before: Mon 01 Jan 2024 12:29:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43641
IP address blocks: 2a11:1140::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 02 Feb 2024 19:43:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:94:aa:b2:7b:38:a6:39:a3:e5:3f:f1:6e:5a:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jan 1 12:29:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f0515e6f864a1f219e4faf74fe00e4b6bf04cd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:ef:5e:f0:41:3f:53:bd:0d:93:6b:90:82:61:
8d:8b:ce:a1:49:38:c2:e4:08:a5:e1:98:68:a7:40:
e0:da:a6:26:bd:27:2a:75:e9:58:26:19:de:3c:1d:
8d:13:77:95:48:7f:f5:8b:3b:6e:3d:67:98:7b:81:
2f:e1:79:74:a7:59:30:f0:16:e1:4e:d7:96:64:99:
b2:3b:39:8b:0e:8c:a2:4a:f1:c3:8d:18:0d:e1:c7:
c9:0e:bc:43:71:63:e1:7b:87:f8:0b:8c:eb:04:1c:
c8:61:ab:0b:3b:05:1f:d4:f4:c2:07:e3:f8:fc:56:
44:fb:24:2e:4b:95:47:77:4b:ff:46:bd:51:61:dd:
a4:59:e1:d3:5a:95:b7:4e:e1:85:d4:6c:83:33:ad:
17:70:a8:35:60:8f:74:94:a2:b5:a9:d0:38:9e:bc:
43:96:49:5c:a2:9d:9e:11:c2:d8:3f:77:20:e2:d6:
e2:7d:dc:40:3f:5c:ac:cf:e5:77:e8:b8:6b:b9:f3:
52:19:dd:ef:89:61:5a:77:41:5d:85:bc:04:a6:92:
5f:89:35:02:f8:1a:fb:96:7a:91:ae:a3:fc:1a:93:
a1:a1:9d:e2:7f:78:fc:45:83:8b:21:f9:2a:9a:f4:
d2:85:08:63:54:24:49:07:c6:d1:c3:cd:51:5a:1c:
2c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:05:15:E6:F8:64:A1:F2:19:E4:FA:F7:4F:E0:0E:4B:6B:F0:4C:D1
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/LwUV5vhkofIZ5Pr3T-AOS2vwTNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:1140::/29
Signature Algorithm: sha256WithRSAEncryption
59:76:62:a9:3a:a6:8e:82:21:21:6c:dd:9e:ba:3c:d6:de:2a:
b2:db:21:7b:bd:09:f0:ea:43:83:ec:11:5a:34:b8:f8:79:29:
9f:c7:e9:a4:0e:5c:2f:86:8f:f9:cc:0b:9f:2c:7d:8c:96:74:
eb:4f:ae:f2:6d:17:fd:8d:59:61:93:d9:4f:06:bf:69:2a:ab:
34:e0:95:7b:76:3a:a0:fa:58:1b:8f:e9:1b:e2:d2:46:4c:a5:
78:b9:89:58:3b:24:5b:f0:13:05:9b:25:6d:45:1e:b3:20:7a:
7f:d2:99:a4:bc:39:04:ef:ce:e0:e1:3d:3b:e7:f6:49:d0:dc:
d0:a1:a8:bf:21:65:ed:8e:a9:39:05:93:f8:d8:12:45:57:2f:
3d:14:b3:fc:13:11:f5:6b:0e:4a:b0:b6:69:66:58:72:a0:39:
85:c8:d8:bf:1e:30:15:e2:c2:ab:2d:70:0c:e5:54:5d:8d:8b:
29:6e:be:35:3c:b3:5c:a3:ff:d6:58:ad:0b:67:17:bd:c2:cf:
06:b6:fd:10:a7:db:97:24:e2:8c:4e:ab:1c:ce:8b:76:af:15:
ed:0c:00:ca:cb:fa:08:a7:e7:8d:57:61:02:25:5d:e8:0a:4a:
18:69:a8:fb:00:1a:22:98:9a:0d:ea:18:f2:c7:be:e6:96:9d:
ec:86:4a:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:37 2024 by rpki-client on console-fra.rpki-client.org