Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/gqJ1c6AaFYBQc_ow8BRwEad-9QA.roa
File: gqJ1c6AaFYBQc_ow8BRwEad-9QA.roa (raw, json)
Hash identifier: P5xQN2JtS/IIJohXUj99rB1aqr54HJenltEkk4jPuhE=
Subject key identifier: 82:A2:75:73:A0:1A:15:80:50:73:FA:30:F0:14:70:11:A7:7E:F5:00
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018DBC9424FB1BCE2635FA418B2F80970B33
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/gqJ1c6AaFYBQc_ow8BRwEad-9QA.roa
Signing time: Sun 18 Feb 2024 14:17:21 +0000
ROA not before: Sun 18 Feb 2024 14:17:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216435
IP address blocks: 2a11:2f40::/29 maxlen: 48
2a12:28c0::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 26 Feb 2024 16:12:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:bc:94:24:fb:1b:ce:26:35:fa:41:8b:2f:80:97:0b:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Feb 18 14:17:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82a27573a01a15805073fa30f0147011a77ef500
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:20:f6:fa:1f:72:c1:f4:da:a0:83:e3:91:ca:
47:40:7e:43:ba:76:5c:15:fc:49:ee:95:c4:c7:6d:
39:f6:84:f0:d7:32:2c:a4:c5:c5:49:0f:0b:c7:8c:
8f:d4:cf:01:61:22:3b:a5:a8:f5:62:85:92:23:c5:
e8:20:39:d2:8c:e9:10:af:11:ac:e5:7f:b3:79:97:
37:d8:55:da:08:9c:e1:56:e6:5d:b8:1e:52:fe:af:
9e:7b:1d:a4:8f:98:8b:e3:de:8d:4d:08:dd:bd:46:
f7:f3:51:04:9b:67:10:4c:32:be:15:0e:52:1f:60:
db:a2:13:e0:59:f8:13:d2:37:47:0b:b0:db:db:75:
05:f6:4a:50:c0:36:66:29:cc:19:1d:b2:38:4f:37:
be:5c:cc:37:4e:ff:22:45:a2:52:2b:e1:ee:1d:16:
19:c6:4d:70:a9:57:f7:5e:28:d9:cf:6c:84:e6:bf:
6a:a0:07:e9:69:36:24:5b:d1:35:49:b3:2a:42:55:
9c:27:58:a9:b4:67:29:af:13:ec:4e:48:0f:1a:39:
24:85:7c:8e:a0:30:a1:b7:8c:24:95:d7:0a:cb:8b:
cf:ae:b6:13:a0:1b:00:4e:4e:76:21:60:95:df:77:
8d:d2:1a:de:8d:2b:e9:f2:2c:39:22:76:1d:7a:59:
89:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:A2:75:73:A0:1A:15:80:50:73:FA:30:F0:14:70:11:A7:7E:F5:00
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/gqJ1c6AaFYBQc_ow8BRwEad-9QA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:2f40::/29
2a12:28c0::/29
Signature Algorithm: sha256WithRSAEncryption
69:88:3d:94:6c:da:e9:33:99:c1:79:37:66:70:f4:84:d3:7d:
86:4b:5d:20:bb:bd:7e:eb:db:fc:39:d6:c1:f1:07:4f:5b:ae:
70:d8:f2:c0:38:dc:ed:09:5e:1d:ef:f9:55:06:b6:d7:58:87:
41:2d:b2:e2:84:8e:4e:71:5e:24:52:48:cc:ce:1e:a2:bf:61:
8f:ed:a1:5a:8f:35:fc:65:23:cd:75:cb:b7:95:d6:d4:22:35:
2b:fc:4b:18:08:49:0f:ba:4b:21:ae:9e:bd:89:34:91:04:62:
73:3c:2f:7e:5f:61:4d:d6:6f:3d:35:ab:b4:5b:32:fa:2e:4e:
bc:1d:ec:65:97:e5:a4:42:9d:96:fa:03:b7:71:db:46:bf:67:
fb:b5:3f:a2:e9:48:f9:9f:66:92:df:09:ed:41:92:b8:ce:ef:
24:ab:c3:d4:b2:a9:f4:eb:c9:53:b9:58:ee:48:cb:f7:94:e3:
22:3c:38:e9:82:dd:5a:b5:37:1b:b9:92:f0:2d:12:f2:ca:1e:
7b:a0:97:ba:e1:31:7d:c7:8d:56:9d:fb:fb:d4:49:bd:d3:0c:
b8:d6:81:1b:e2:89:1e:2f:2a:70:f2:c0:70:4e:a5:33:56:31:
7f:18:57:c8:9d:6d:32:c1:0f:cd:52:98:a4:30:28:f7:af:2c:
17:9c:7c:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:38 2024 by rpki-client on console-fra.rpki-client.org