Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/cJ-77f-2ZlR8tXMvENbBh53MglA.roa
File: cJ-77f-2ZlR8tXMvENbBh53MglA.roa (raw, json)
Hash identifier: clrT+W23lexTVPyoC0XeXvbjRb0KViYaRw62baXSxjg=
Subject key identifier: 70:9F:BB:ED:FF:B6:66:54:7C:B5:73:2F:10:D6:C1:87:9D:CC:82:50
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018FEDD28546DC5908E9F63206DDC54000F1
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/cJ-77f-2ZlR8tXMvENbBh53MglA.roa
Signing time: Thu 06 Jun 2024 13:52:27 +0000
ROA not before: Thu 06 Jun 2024 13:52:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214773
IP address blocks: 2a11:f240::/29 maxlen: 30
2a12:28c0::/29 maxlen: 30
Validation: Failed, certificate revoked on Thu 04 Jul 2024 20:48:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ed:d2:85:46:dc:59:08:e9:f6:32:06:dd:c5:40:00:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jun 6 13:52:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=709fbbedffb666547cb5732f10d6c1879dcc8250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e7:7b:5e:f9:23:5e:9c:84:4d:4c:2a:f1:39:
e7:86:43:7f:0b:09:a6:33:4e:fa:c5:14:c9:56:29:
30:6e:f3:99:2a:bb:ac:c7:34:76:17:3f:e2:35:09:
65:2d:57:3d:28:4e:9d:3c:7a:67:db:39:38:e9:64:
7f:d2:87:ae:3b:13:f8:2c:bc:ad:ed:8d:41:f9:fc:
9a:26:34:ee:25:f8:4d:b8:a1:d9:90:30:7b:81:28:
12:10:48:90:8d:c6:b9:1b:cd:ce:2e:52:b8:aa:1a:
1e:d0:13:8b:bd:09:f0:df:a6:b0:e2:07:a4:ec:51:
a5:a2:6a:28:e2:b4:41:06:8a:dc:25:fa:c5:da:c9:
eb:9d:59:39:24:fc:42:16:14:a6:d5:c4:5e:74:c0:
2e:92:46:24:0c:20:e4:ae:90:f1:33:55:60:d6:13:
11:ef:62:e5:a7:cd:5b:12:59:9b:3e:d5:b3:24:cc:
cf:cb:28:89:19:46:de:b2:ac:9d:f3:bb:b0:f9:c9:
ad:14:80:c1:39:17:78:18:47:25:8d:3e:fc:fe:20:
b5:d2:ba:49:6d:72:00:f7:0c:98:ba:c9:91:a0:79:
0b:57:91:f2:10:26:11:f7:47:b6:19:ff:99:5e:fd:
df:d3:1a:4b:06:fd:99:40:cf:ee:0e:83:59:6c:8d:
78:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:9F:BB:ED:FF:B6:66:54:7C:B5:73:2F:10:D6:C1:87:9D:CC:82:50
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/cJ-77f-2ZlR8tXMvENbBh53MglA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f240::/29
2a12:28c0::/29
Signature Algorithm: sha256WithRSAEncryption
ae:c9:e9:01:29:6d:33:82:5b:0a:22:6b:2e:02:0e:5e:a1:cc:
5a:de:ce:29:3e:ad:99:65:2b:98:d2:7c:ac:c0:c7:24:61:9b:
82:a6:ab:65:7b:47:e6:86:57:26:a4:e4:b4:6a:9b:0a:b7:85:
7b:19:9b:02:6d:0b:2c:b8:7e:12:c3:29:a2:7d:bb:9d:ba:74:
8c:de:00:f6:a7:e8:96:77:7b:82:94:3d:0d:b9:69:59:69:96:
28:e3:60:4d:55:e0:63:bc:6a:25:01:e0:cc:82:6b:71:68:5a:
b5:fe:0c:a5:46:c5:9e:e4:89:09:a0:c5:a6:37:a1:cd:67:04:
38:db:50:ee:3b:60:88:93:98:0a:79:c2:1b:dd:71:a5:6b:c3:
58:fc:ed:11:94:65:fe:17:e1:70:8e:ea:53:0b:7a:c6:8d:0d:
8d:54:b1:c5:3a:ed:7a:0f:c5:67:f1:bd:98:19:28:e6:57:c2:
76:a4:d4:4a:a2:1f:97:2d:71:6f:ff:c2:a6:3a:9f:63:15:77:
9d:b7:c9:5d:ca:22:d4:b9:2a:02:3a:36:b7:0d:8f:a4:a2:fd:
9d:9d:23:84:b8:ba:01:58:f0:50:45:27:dd:6d:6d:67:ea:33:
c6:41:61:14:97:c9:0d:5e:ca:4b:f2:71:db:96:b2:2b:d6:fd:
63:87:50:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 4 21:28:01 2024 by rpki-client on console-ams.rpki-client.org