Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/i6Iyz-c9aFBc00ywh9UmkjfUft8.roa
File: i6Iyz-c9aFBc00ywh9UmkjfUft8.roa (raw, json)
Hash identifier: SIfELZ8+sDOt06HlJstGtwYdeI30BOqgepVbwH+nB/k=
Subject key identifier: 8B:A2:32:CF:E7:3D:68:50:5C:D3:4C:B0:87:D5:26:92:37:D4:7E:DF
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018FEDADE51A9BD63F93A4AD9DE31B41E9AA
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/i6Iyz-c9aFBc00ywh9UmkjfUft8.roa
Signing time: Thu 06 Jun 2024 13:12:27 +0000
ROA not before: Thu 06 Jun 2024 13:12:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212027
IP address blocks: 2a11:1140::/29 maxlen: 29
2a12:6b80::/29 maxlen: 29
2a12:d3c0::/29 maxlen: 30
Validation: Failed, certificate revoked on Sat 17 Aug 2024 11:07:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ed:ad:e5:1a:9b:d6:3f:93:a4:ad:9d:e3:1b:41:e9:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jun 6 13:12:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8ba232cfe73d68505cd34cb087d5269237d47edf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a2:67:db:12:b8:a7:25:e9:a8:8b:5c:4c:45:
c0:e0:46:a0:5e:7a:41:4f:ac:cb:b5:e2:46:48:7f:
42:71:50:20:45:e3:93:d1:f9:d6:3a:ae:e7:15:97:
5a:6c:95:64:1a:bf:af:7e:89:21:6c:32:51:41:5e:
a4:39:4f:9b:90:c7:33:38:17:b9:f1:28:17:8a:20:
8a:d8:3c:1c:3b:97:00:56:7c:a1:4e:00:e6:15:20:
e9:59:4b:ed:44:eb:32:15:74:ea:c6:07:c1:28:90:
5f:06:0f:dd:d6:a0:00:c5:04:ff:b7:22:60:91:70:
f3:f1:23:e0:73:a2:fd:2d:8c:3c:40:7c:5f:1a:fb:
99:fa:e0:fd:7a:56:e2:23:15:f4:a4:09:e5:6f:26:
ce:7d:f7:de:d7:09:c3:ae:55:ae:bc:40:a5:92:19:
6d:c4:53:62:75:b3:57:2f:39:be:6d:c0:42:82:6a:
bc:80:9a:6f:9a:bb:d9:a5:4b:ec:04:b2:83:df:9c:
e3:c1:76:1a:e4:e2:30:f4:91:11:c6:29:00:c8:ab:
cb:b3:30:cd:63:cb:63:27:87:81:c1:55:4b:be:fb:
d7:72:78:33:69:d2:5f:7f:a9:a7:b1:ae:8a:ae:f5:
72:17:b4:a7:43:1d:b4:cf:d2:de:61:ba:f0:00:fe:
b7:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:A2:32:CF:E7:3D:68:50:5C:D3:4C:B0:87:D5:26:92:37:D4:7E:DF
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/i6Iyz-c9aFBc00ywh9UmkjfUft8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:1140::/29
2a12:6b80::/29
2a12:d3c0::/29
Signature Algorithm: sha256WithRSAEncryption
cb:67:c8:de:f7:0f:2b:5a:0f:b7:48:86:f7:28:b5:57:50:d6:
68:c9:8c:13:61:33:cf:0a:e3:0f:51:0e:9a:78:81:52:68:67:
66:99:9c:b2:ce:db:65:76:dc:52:12:99:05:58:81:32:57:f1:
22:1b:c1:79:f7:d9:ee:ef:a3:b9:68:c4:a8:b0:5b:fa:18:d8:
0e:9a:78:9c:fe:00:15:d0:a2:d2:9f:f7:ac:ea:70:8e:e9:ff:
e2:54:89:e2:e7:41:53:6b:52:fd:6b:4b:65:67:44:c4:26:ff:
26:65:93:56:f1:44:e0:3c:8e:75:6a:d5:79:ab:58:cd:c7:7d:
04:8f:79:f6:25:c9:39:fb:03:98:5f:cb:99:f0:ef:26:44:74:
82:12:b5:90:29:db:6b:79:ee:bf:a8:a6:68:c3:e8:5f:32:48:
cb:c4:90:39:07:c5:2e:54:c1:c4:3b:ca:62:35:fe:50:6f:1b:
2e:b7:52:95:67:f6:74:bb:2a:03:10:6e:e5:db:74:70:ce:0c:
fd:be:51:a6:77:fe:0b:0d:7d:8c:f5:ed:a1:35:a0:e7:f5:aa:
a5:81:db:e0:a7:40:64:bf:3e:ab:4c:53:6d:0c:17:5b:c5:f6:
e3:0b:53:57:87:02:8d:14:dc:66:cd:18:85:3d:1f:e3:a2:73:
f8:5c:62:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 17 16:28:12 2024 by rpki-client on console-fra.rpki-client.org