Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/Usw2lt4IuArMLulc07JLN-Q6dJQ.roa
File: Usw2lt4IuArMLulc07JLN-Q6dJQ.roa (raw, json)
Hash identifier: LbkRbfTsPp/zN9MsuWYRxMvAhVaZt7tORTcTdiPpuZI=
Subject key identifier: 52:CC:36:96:DE:08:B8:0A:CC:2E:E9:5C:D3:B2:4B:37:E4:3A:74:94
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018DBD2EDE087F11AAF4B7A500C39932C8CB
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/Usw2lt4IuArMLulc07JLN-Q6dJQ.roa
Signing time: Sun 18 Feb 2024 17:06:21 +0000
ROA not before: Sun 18 Feb 2024 17:06:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198231
IP address blocks: 2a0f:e000::/29 maxlen: 32
2a11:dcc0::/29 maxlen: 29
2a12:6b80::/29 maxlen: 32
Validation: Failed, certificate revoked on Sat 02 Mar 2024 13:04:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:bd:2e:de:08:7f:11:aa:f4:b7:a5:00:c3:99:32:c8:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Feb 18 17:06:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52cc3696de08b80acc2ee95cd3b24b37e43a7494
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:2d:c4:89:98:30:04:6a:34:f4:13:dc:4f:27:
38:15:24:9e:ed:c5:4d:77:97:b5:e5:b8:47:b4:af:
82:29:90:13:10:88:31:e9:48:03:1d:43:e9:49:14:
62:86:e2:b8:d1:94:55:49:dd:b3:bd:ba:2b:55:49:
03:ad:05:78:7a:e8:bd:7a:3d:9a:ce:64:51:f0:c5:
50:a5:a5:f9:4b:f0:2d:fe:81:e1:4d:78:99:eb:54:
53:1d:a3:7d:cc:83:49:59:cd:a2:11:15:ea:1f:3e:
37:12:c0:c7:0e:74:b3:00:a4:44:ca:83:34:d3:34:
d2:cb:5c:2f:f2:48:f2:9f:cc:94:c4:11:b6:2f:de:
79:a9:e5:72:0a:2e:06:74:75:76:7c:cf:6e:fb:55:
61:64:24:f2:b3:31:45:e8:e7:8d:8c:9c:66:08:81:
14:be:87:37:dd:af:93:71:05:dd:2a:b7:c0:47:1c:
fc:32:ef:76:71:81:d6:2b:e8:4a:be:de:c0:a5:3f:
70:2a:a1:45:8f:fa:61:84:11:a6:15:aa:08:22:96:
d8:92:34:fc:bf:70:25:91:60:da:c8:ea:2f:cb:c0:
91:82:9c:d3:d0:0e:00:6c:db:36:88:24:f8:6d:5d:
1c:00:97:69:4f:4d:90:92:4a:23:f4:72:e9:0d:38:
23:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:CC:36:96:DE:08:B8:0A:CC:2E:E9:5C:D3:B2:4B:37:E4:3A:74:94
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/Usw2lt4IuArMLulc07JLN-Q6dJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:e000::/29
2a11:dcc0::/29
2a12:6b80::/29
Signature Algorithm: sha256WithRSAEncryption
4c:4f:2a:14:a8:f7:b1:18:6f:d9:29:43:b2:ae:fd:15:ab:38:
99:c0:ed:06:5f:ef:df:33:a9:2b:c9:ad:4a:02:9c:3b:3b:39:
4b:87:ae:45:16:40:b6:ce:f6:dd:83:7a:de:36:40:ca:64:20:
39:6d:47:ad:a7:53:e6:75:06:28:32:39:f0:5c:75:cb:6c:34:
47:55:12:36:00:2d:9c:20:4b:ed:60:fc:b7:ab:53:05:29:78:
61:cb:09:a2:0d:58:6d:66:01:40:a8:e9:7c:82:f2:91:11:80:
4e:68:84:73:46:76:03:fa:58:e3:d5:92:69:de:46:8f:fa:3b:
1c:5b:07:ed:86:c8:47:d9:6e:2f:41:3a:ff:5b:7b:40:70:21:
89:41:49:1f:69:60:a6:e5:87:8f:4b:49:5b:32:9c:ce:92:f2:
3e:b3:fc:23:7d:a7:cd:9a:c5:b1:a7:4c:f0:e3:dd:04:c4:64:
5a:e9:8b:78:e0:62:ad:a6:b3:f3:5e:69:1c:16:70:c9:61:eb:
f4:8c:b9:19:f3:2f:d7:4a:5b:86:f4:4b:36:93:77:f7:34:b3:
fa:23:50:b4:bf:7a:7e:0e:71:cc:b2:ac:5b:b9:59:c8:dd:90:
eb:15:7d:93:3a:74:0e:10:4a:dd:69:24:ae:4d:9f:22:66:c0:
90:5d:1c:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:38 2024 by rpki-client on console-fra.rpki-client.org