Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/cCWwiLv2Adb8ZvsnocwW28RaJBQ.roa
File: cCWwiLv2Adb8ZvsnocwW28RaJBQ.roa (raw, json)
Hash identifier: TTGsFLZwpBBib8Ouu6dq5ClqvN7PUaH0rYQtS+wLP70=
Subject key identifier: 70:25:B0:88:BB:F6:01:D6:FC:66:FB:27:A1:CC:16:DB:C4:5A:24:14
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 019206BCF10EFDE4302F79BA052688DC9A06
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/cCWwiLv2Adb8ZvsnocwW28RaJBQ.roa
Signing time: Wed 18 Sep 2024 20:04:58 +0000
ROA not before: Wed 18 Sep 2024 20:04:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 53667
IP address blocks: 2a06:cac0::/29 maxlen: 36
2a0f:e000::/29 maxlen: 36
2a12:6640::/29 maxlen: 36
2a12:6b80::/29 maxlen: 36
Validation: Failed, certificate revoked on Sun 22 Sep 2024 09:24:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:06:bc:f1:0e:fd:e4:30:2f:79:ba:05:26:88:dc:9a:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Sep 18 20:04:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7025b088bbf601d6fc66fb27a1cc16dbc45a2414
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ef:93:5b:f7:9e:1c:e7:5e:22:8e:4a:e7:3f:
04:fd:e1:73:6f:17:70:d5:b5:39:2c:d9:03:57:b7:
03:e6:57:6e:2c:82:05:76:1c:52:8f:ab:0c:b7:d7:
5f:f0:3f:b4:5d:e0:9a:eb:03:3b:34:3c:3f:52:18:
71:2f:eb:e9:b3:62:8c:83:97:0c:8e:74:64:9f:0d:
ab:a0:2b:39:69:4d:69:7b:6c:53:58:11:18:8c:62:
27:d3:4f:9c:08:f5:34:4e:ac:c2:81:9f:c6:ca:b6:
3d:c9:e1:6c:ae:c1:9c:9b:2f:48:9b:e9:4f:1b:e8:
24:05:79:25:5c:f2:6e:70:5d:8e:85:2a:02:b1:09:
7f:d2:69:75:2e:5c:a9:1a:c8:26:28:ae:a3:7d:64:
cf:ff:fc:6b:da:0d:94:43:f9:8e:fc:60:b8:34:b8:
e5:42:cc:45:6c:83:3d:d4:20:b7:ad:0c:4a:b6:8c:
dd:73:4b:04:24:8b:c5:fa:74:f5:27:1b:46:5b:89:
46:03:b0:88:5a:01:ba:86:03:9c:4d:8e:39:ad:dc:
c8:56:a4:4b:19:7a:eb:ff:4f:8b:82:83:8c:12:70:
a4:2e:4b:3b:8a:bd:70:ae:00:0d:39:1e:09:ec:d0:
d5:80:71:8a:e8:60:5a:ea:5d:1c:6f:61:12:2f:1b:
18:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:25:B0:88:BB:F6:01:D6:FC:66:FB:27:A1:CC:16:DB:C4:5A:24:14
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/cCWwiLv2Adb8ZvsnocwW28RaJBQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:cac0::/29
2a0f:e000::/29
2a12:6640::/29
2a12:6b80::/29
Signature Algorithm: sha256WithRSAEncryption
2b:74:7b:45:6c:0d:20:57:5f:d3:eb:70:ec:ea:b9:eb:38:c1:
6e:6c:a5:2b:1b:5e:b9:92:17:89:56:28:3c:db:04:b2:7c:3c:
81:50:cb:59:05:33:dc:79:d3:42:7e:ee:42:e3:8b:00:c2:90:
79:dd:41:e2:8a:85:78:24:3a:26:8a:cd:fd:01:8c:9d:72:89:
9a:3b:76:60:0b:79:f0:95:c1:8c:2e:15:9e:a9:2f:10:ef:01:
e9:90:a5:50:d4:2e:bc:25:47:2f:86:4d:2d:08:b7:b0:e9:e0:
10:8a:1e:08:a8:3e:78:a6:dd:43:53:8b:23:a0:e7:f7:64:c9:
04:be:c9:4e:4e:87:d8:37:ad:a2:22:da:46:23:df:53:52:bb:
c9:5d:8e:df:0b:68:4d:f2:55:d9:03:77:b2:cc:b6:c3:ce:14:
21:05:dc:5f:99:af:8f:c9:a7:8d:ac:47:fb:40:e0:73:b0:16:
44:5f:6d:4b:57:31:dd:5c:b2:27:9d:2b:61:bf:1c:a1:e2:58:
26:54:96:1c:8d:95:8c:44:c4:60:63:bd:78:0e:49:86:c7:48:
15:9d:40:fd:50:a2:e1:81:20:8f:22:54:c8:e6:ef:30:01:62:
0c:4b:b1:88:a0:e0:96:96:21:4a:20:4e:e5:01:7f:34:55:bb:
50:3e:cf:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 22 10:38:20 2024 by rpki-client on console-ams.rpki-client.org