Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/dDKG-6tAUut9XoN6Ts7SCSfMKms.roa
File: dDKG-6tAUut9XoN6Ts7SCSfMKms.roa (raw, json)
Hash identifier: OVCMyn1ZbRn3CHeV/BDKwh10PbsB94ofDoZ9PZAchsw=
Subject key identifier: 74:32:86:FB:AB:40:52:EB:7D:5E:83:7A:4E:CE:D2:09:27:CC:2A:6B
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018CBBA00EFEF7CF229EFE92E3740416680F
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/dDKG-6tAUut9XoN6Ts7SCSfMKms.roa
Signing time: Sat 30 Dec 2023 16:47:58 +0000
ROA not before: Sat 30 Dec 2023 16:47:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216157
IP address blocks: 2a13:ba00::/29 maxlen: 32
2a12:28c0::/29 maxlen: 32
2a12:6b80::/29 maxlen: 32
2a13:dac0::/29 maxlen: 32
Validation: Failed, certificate revoked on Sun 31 Dec 2023 10:55:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:bb:a0:0e:fe:f7:cf:22:9e:fe:92:e3:74:04:16:68:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Dec 30 16:47:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=743286fbab4052eb7d5e837a4eced20927cc2a6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9f:f4:72:40:0f:b3:f7:2a:43:7e:21:23:a0:
f3:d7:c8:66:f9:9c:62:e6:93:33:10:c0:35:11:6a:
64:8d:75:34:08:17:15:b6:3b:f5:9b:53:4e:d8:b4:
7e:f2:70:9c:b9:2c:27:17:7f:e9:53:84:8c:d9:03:
60:97:da:8f:e6:39:a6:6c:11:5e:7e:c7:ec:58:5e:
51:ea:c5:e3:31:ac:e2:2e:73:a8:0d:3d:a2:41:a2:
a8:7c:56:08:ca:a0:2e:84:36:d9:48:de:fc:5d:23:
97:6b:1d:ef:c1:c3:a2:2b:e0:8e:c5:57:f7:36:f6:
62:4f:48:16:ce:3f:db:08:97:07:cb:e0:d3:3a:fb:
fd:9f:fa:8c:70:bc:e1:2d:c1:70:9c:44:a2:68:11:
51:4b:75:21:4a:58:3b:18:6e:5d:52:86:23:47:84:
f3:ee:24:22:27:35:7f:d6:a9:13:63:81:2d:24:93:
87:eb:81:d1:df:17:9a:ff:60:11:2f:08:74:f2:fa:
24:2c:bc:68:e2:5e:4e:4b:96:50:66:8a:42:92:07:
1b:68:f4:19:32:fb:fe:ac:97:8a:1a:7f:d7:12:4f:
c5:82:30:19:74:31:1a:eb:88:bb:fd:dc:cb:00:4c:
f5:23:b8:e6:60:26:3b:04:ca:ca:d3:b6:74:0e:df:
e7:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:32:86:FB:AB:40:52:EB:7D:5E:83:7A:4E:CE:D2:09:27:CC:2A:6B
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/dDKG-6tAUut9XoN6Ts7SCSfMKms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:28c0::/29
2a12:6b80::/29
2a13:ba00::/29
2a13:dac0::/29
Signature Algorithm: sha256WithRSAEncryption
86:09:62:dd:75:91:15:81:a1:06:3c:49:d0:9e:f4:26:d1:91:
94:64:84:85:de:56:03:77:d8:5d:49:98:c2:52:a4:a8:2a:8b:
ae:cf:bf:31:33:e2:6d:6c:e3:17:9b:80:83:7a:e7:a6:de:8d:
7a:25:2e:e8:f0:d2:d9:a4:4e:de:f1:d2:fc:57:b9:f3:17:08:
fd:1a:d1:26:80:55:8c:40:cd:0b:f0:49:94:0f:36:d7:08:3c:
51:fb:cb:89:5e:7d:36:7e:c9:cd:a9:f0:cb:81:18:3e:36:e3:
3f:db:bf:90:fc:e3:74:f1:35:26:90:c1:13:f2:4c:d6:cb:7a:
d6:0f:89:b7:c1:c7:82:bc:54:0c:cd:3b:db:18:6b:8c:f7:04:
c3:78:48:e5:d4:89:78:eb:d4:e2:03:df:0e:31:92:d2:dc:67:
a3:b0:c1:87:d5:a8:35:0c:81:64:2e:9d:56:8c:8e:55:ab:69:
81:1a:7e:ea:b1:9f:9d:79:94:49:77:a2:ad:e0:4d:6c:fa:b1:
36:06:c5:ec:85:62:38:3a:5b:3a:45:4b:ef:b0:d8:9f:ce:d2:
6a:21:1f:37:71:26:95:9c:7f:77:c6:5d:79:61:50:ce:af:52:
81:ea:83:49:18:35:9f:40:6a:71:7f:09:ea:6b:d1:d6:a4:5c:
44:e3:f3:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:38 2024 by rpki-client on console-fra.rpki-client.org