Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/PHodJxCbwdHSCRmm0DBbvWjty_M.roa
File: PHodJxCbwdHSCRmm0DBbvWjty_M.roa (raw, json)
Hash identifier: J4TKc2lpdJh5jGURfd1ZIHxqhvSyu1a3UtldZnEH6Ws=
Subject key identifier: 3C:7A:1D:27:10:9B:C1:D1:D2:09:19:A6:D0:30:5B:BD:68:ED:CB:F3
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018CAD01622B8F43FE23B8A2B07BD071C80C
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/PHodJxCbwdHSCRmm0DBbvWjty_M.roa
Signing time: Wed 27 Dec 2023 20:39:58 +0000
ROA not before: Wed 27 Dec 2023 20:39:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25198
IP address blocks: 2a11:f240::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ad:01:62:2b:8f:43:fe:23:b8:a2:b0:7b:d0:71:c8:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Dec 27 20:39:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c7a1d27109bc1d1d20919a6d0305bbd68edcbf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:2e:6d:d7:36:4d:f8:dd:a4:b4:2e:0d:cd:78:
3b:bd:66:7b:62:ab:4c:ed:37:30:c4:ad:42:91:98:
f4:40:3b:1e:51:a5:55:fa:3f:12:96:f6:d8:31:ae:
a7:f7:35:2d:d0:0e:74:4d:b0:fb:8a:ad:97:8c:08:
4c:91:2a:86:65:d7:ea:50:a1:6e:e7:80:ce:2a:c7:
da:70:56:b9:db:ab:71:75:98:99:0e:9d:11:f5:f4:
31:78:24:fa:ad:56:0d:cf:ef:b3:74:9c:6f:14:a8:
27:c4:80:53:ad:ff:a7:b9:de:40:0f:c1:8f:29:8c:
4e:21:27:58:00:ae:8d:0e:12:de:a3:7a:ff:8c:80:
b6:87:1b:3d:77:33:2f:a2:6b:c1:a8:03:63:62:f3:
01:46:40:56:1b:35:d2:3c:78:63:ef:c8:03:e0:e2:
f4:79:c7:77:b1:8f:33:a8:de:bc:4c:bd:ea:4e:b8:
59:0c:81:a0:1a:12:9b:96:57:f9:c4:8b:91:de:9b:
6d:79:7a:df:5d:72:67:b3:9c:af:83:20:f5:d8:b1:
70:a8:74:1d:ce:04:b8:a1:60:35:f7:c9:65:d3:8c:
2e:ab:f3:c6:94:2f:0c:08:07:1e:a3:38:6e:57:a8:
99:fb:a5:26:3a:95:a4:a9:06:c7:be:a2:40:11:50:
2c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:7A:1D:27:10:9B:C1:D1:D2:09:19:A6:D0:30:5B:BD:68:ED:CB:F3
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/PHodJxCbwdHSCRmm0DBbvWjty_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f240::/29
Signature Algorithm: sha256WithRSAEncryption
ae:0d:d8:be:73:ea:70:57:e9:f0:00:c4:89:19:a5:23:36:32:
35:56:64:92:fb:b0:ff:52:da:07:59:7a:b2:5d:be:94:80:22:
bf:ec:26:68:f0:3e:23:69:76:19:ac:4b:c2:8a:4a:2e:be:4c:
f1:96:d8:4a:fd:28:d5:8c:ed:61:ca:65:cb:13:f5:cb:6b:86:
06:c6:07:1a:50:68:90:40:ab:67:24:1d:63:68:dc:a7:17:da:
73:91:9f:d1:6b:cf:fb:04:27:34:25:c9:eb:a9:36:01:df:65:
80:a7:47:91:ce:f3:db:15:bd:69:ff:d0:f3:49:30:c1:38:08:
3a:6a:41:6a:07:aa:07:37:10:d6:90:b3:ea:63:45:ab:dc:e0:
0b:4d:b8:90:ce:84:1c:12:78:33:db:06:6c:04:bd:ee:46:0b:
b9:c6:de:96:3e:e6:ac:13:e1:31:b5:71:33:60:16:09:d0:e0:
66:49:96:f7:31:85:e4:8e:07:fc:97:f7:34:67:fa:c5:bf:5e:
3e:03:4a:e8:c0:9e:3c:79:f2:01:24:90:ff:a6:02:74:f2:ff:
75:6c:d9:96:93:20:a4:72:e2:5a:39:56:30:2b:28:61:8e:0f:
79:31:2d:af:db:83:d4:c6:04:5f:30:b5:6a:7e:09:f7:ff:f7:
85:7b:14:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:38 2024 by rpki-client on console-fra.rpki-client.org