Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/X8lEeNUWdo4kYn18sfnGVWR8pW4.roa
File: X8lEeNUWdo4kYn18sfnGVWR8pW4.roa (raw, json)
Hash identifier: UYGEtpG+CkmNOpsvZW+J822e/+f/QPSSgizQii14imY=
Subject key identifier: 5F:C9:44:78:D5:16:76:8E:24:62:7D:7C:B1:F9:C6:55:64:7C:A5:6E
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018F580384D5864AC2C2A0AAC9061C617DEE
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/X8lEeNUWdo4kYn18sfnGVWR8pW4.roa
Signing time: Wed 08 May 2024 11:42:56 +0000
ROA not before: Wed 08 May 2024 11:42:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216157
IP address blocks: 2a0a:e2c0::/29 maxlen: 29
2a0e:7780::/29 maxlen: 32
2a0f:e000::/29 maxlen: 32
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a11:dcc0::/29 maxlen: 32
2a12:f0c0::/29 maxlen: 29
2a13:ba00::/29 maxlen: 32
2a13:dac0::/29 maxlen: 32
2a14:c0::/29 maxlen: 29
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
2a14:7e00::/29 maxlen: 32
Validation: Failed, certificate revoked on Tue 21 May 2024 15:55:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:58:03:84:d5:86:4a:c2:c2:a0:aa:c9:06:1c:61:7d:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: May 8 11:42:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5fc94478d516768e24627d7cb1f9c655647ca56e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:c3:ab:09:6f:bc:47:b1:f0:96:47:c7:b8:43:
37:8a:ee:1d:18:fe:da:15:51:4c:4d:13:53:b4:23:
63:d0:f3:43:b3:67:5c:40:15:af:8e:39:e3:55:30:
81:1c:96:4d:1d:2a:f7:3a:d4:7c:b1:41:28:7b:c7:
bf:3c:5a:2d:b2:86:ae:a1:86:1e:5b:e8:4b:d5:b0:
a3:52:bb:59:89:52:f1:60:fb:ee:d6:b9:a9:86:fd:
fc:c5:c7:5c:51:2f:81:d3:26:de:15:66:a3:11:84:
92:de:18:c7:d4:48:54:d8:dc:61:15:70:e1:f6:63:
44:44:09:1b:c8:0c:e6:5f:c1:26:83:b3:a0:db:c1:
2a:51:62:51:72:dd:f8:f6:22:66:cb:cf:98:6b:41:
4d:02:8f:27:a8:db:a2:58:05:0a:43:02:c4:61:92:
ab:ce:09:2b:d8:8f:87:d3:28:27:fd:24:a1:00:9c:
6a:a6:c9:57:00:9c:1c:75:4c:4c:41:c3:d7:cd:36:
bd:6f:06:ff:c2:1e:29:87:a1:52:38:b4:1b:a7:d5:
dc:6d:ed:a8:31:0d:63:68:89:06:df:94:91:f0:4c:
af:90:4f:a6:b5:83:1a:45:69:7a:c7:0a:d9:c3:8a:
5c:80:29:4b:e1:75:5f:54:35:0e:e8:92:7b:7d:4a:
53:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:C9:44:78:D5:16:76:8E:24:62:7D:7C:B1:F9:C6:55:64:7C:A5:6E
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/X8lEeNUWdo4kYn18sfnGVWR8pW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:e2c0::/29
2a0e:7780::/29
2a0f:e000::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:7240::/29
2a11:9600::/29
2a11:dcc0::/29
2a12:f0c0::/29
2a13:ba00::/29
2a13:dac0::/29
2a14:c0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
2a14:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
6f:3c:84:a2:eb:ad:e2:31:9d:1c:04:b9:c5:73:a0:dd:0b:27:
8c:a1:63:c8:65:28:f6:3c:e3:4b:7c:f7:49:2c:79:5c:73:6c:
96:41:37:2c:73:e9:a5:40:6a:e6:ea:55:89:f5:ad:b4:f7:5c:
b0:1b:89:99:f8:59:d0:3f:2a:28:71:e4:5c:98:31:d0:37:24:
36:9b:74:60:bc:a0:5f:2c:f2:19:45:71:fb:d5:bc:f4:4e:f0:
50:1c:57:4c:b4:e1:02:94:18:32:87:e2:10:b8:36:e8:0a:60:
a7:85:83:0a:6d:96:ed:38:7a:d2:b9:61:27:5b:99:e5:63:78:
c1:23:59:6f:a2:8c:3c:b6:56:36:ba:f0:ea:9d:bc:da:d0:32:
69:d4:5d:e7:62:09:58:a8:86:a4:a7:82:03:cc:12:21:34:4b:
8a:31:28:69:e7:d7:1f:bc:3c:3d:5c:e4:dc:cf:26:5c:a1:54:
77:b5:6b:30:8c:34:23:62:a5:c6:9a:fc:31:4d:b1:76:a9:f8:
20:b2:6c:ca:d2:8e:de:a9:37:7c:64:9c:22:59:e4:4c:f1:22:
74:01:2e:ab:40:34:be:a3:1b:c5:ee:bb:e0:27:10:41:d0:b6:
f6:94:13:aa:8d:76:7c:92:98:1e:14:cc:d4:df:25:9f:f5:93:
a5:7c:8d:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:38 2024 by rpki-client on console-fra.rpki-client.org