Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/iCTzgUQQhCCdbe_QfbQy_dfeaT8.roa
File: iCTzgUQQhCCdbe_QfbQy_dfeaT8.roa (raw, json)
Hash identifier: dOt4p1teHP+nqzVUTT8btfaWF9FxIMCHM88N23eoK4g=
Subject key identifier: 88:24:F3:81:44:10:84:20:9D:6D:EF:D0:7D:B4:32:FD:D7:DE:69:3F
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018CD439D1C48DB78B1718E586C8FD0350EA
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/iCTzgUQQhCCdbe_QfbQy_dfeaT8.roa
Signing time: Thu 04 Jan 2024 11:26:48 +0000
ROA not before: Thu 04 Jan 2024 11:26:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198231
IP address blocks: 2a0f:e000::/29 maxlen: 32
Validation: Failed, certificate revoked on Mon 05 Feb 2024 17:59:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d4:39:d1:c4:8d:b7:8b:17:18:e5:86:c8:fd:03:50:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jan 4 11:26:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8824f381441084209d6defd07db432fdd7de693f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:fc:18:93:c0:49:1d:3c:ac:d5:4a:e3:19:8b:
7a:0f:ee:18:49:ac:6e:19:e1:13:72:e5:91:e9:33:
a8:2a:2b:58:62:7b:69:41:a4:0a:3e:aa:ba:1f:27:
3a:d2:1d:0d:b2:dc:42:c7:b5:1d:62:b9:ff:cb:4a:
60:4d:99:a5:ac:83:7e:d3:2f:b7:3c:20:60:9e:c7:
af:bf:ff:44:0d:e0:a1:42:a6:48:7e:71:da:53:3f:
ab:d2:21:5f:de:3c:54:6b:9b:4c:c0:d2:69:d3:db:
16:6d:d7:bd:3e:22:af:de:c6:8c:11:e8:64:c0:de:
4d:7b:4d:85:7b:12:38:f8:88:bd:37:39:dc:cc:65:
a3:c1:e6:b0:e1:bc:8a:1c:b1:1f:b5:11:ba:27:3f:
b6:64:02:0a:e5:dd:20:bf:a7:b5:b0:a7:58:de:a6:
2e:f3:3d:75:e7:6d:64:c5:36:58:8c:69:ef:a3:52:
77:74:db:86:d2:8b:89:44:37:45:7a:57:f7:d1:ba:
94:23:6d:61:65:40:f2:11:7e:a1:e9:05:26:a5:f5:
2b:d6:26:bd:ca:f6:5e:90:4c:1a:25:ae:60:51:c5:
fe:7b:78:92:5a:1a:27:a2:65:57:b7:2d:44:6e:7b:
7c:3f:c3:52:10:e9:ec:b6:97:f2:6a:11:0f:00:6b:
10:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:24:F3:81:44:10:84:20:9D:6D:EF:D0:7D:B4:32:FD:D7:DE:69:3F
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/iCTzgUQQhCCdbe_QfbQy_dfeaT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:e000::/29
Signature Algorithm: sha256WithRSAEncryption
80:1b:ad:e0:b7:2b:66:a8:88:58:d0:40:ed:d8:ec:b4:87:9e:
7d:e3:f2:80:59:22:d9:d0:79:14:2c:c1:b5:86:40:f8:0f:7f:
5a:43:29:57:c1:cb:2f:b7:3c:24:56:4c:1b:40:9d:0e:b5:15:
5c:53:84:72:30:cd:52:d6:86:a8:5b:0e:01:62:ce:91:d3:12:
f0:62:ad:6f:cb:b3:e1:f6:58:da:44:df:e6:90:c7:16:5a:db:
0b:bf:57:90:98:8f:52:20:af:cd:01:aa:01:e0:20:bf:2d:79:
3d:bd:af:6b:ad:53:d9:33:cb:87:37:8d:0a:cc:d3:d9:da:90:
59:0a:b5:62:15:d7:f0:75:e8:af:54:70:9d:5d:37:c7:da:3c:
14:43:1b:85:66:6b:d3:a1:ff:63:fd:35:36:34:1c:5c:93:5c:
43:82:36:15:17:f0:e6:11:9e:a6:e8:47:a6:ba:da:7a:35:93:
6e:23:4a:e8:fa:02:c1:34:8b:8f:ae:87:92:ca:dd:4b:75:ea:
7c:b6:3f:1f:d4:e9:ec:05:c9:88:3d:6c:57:49:46:00:db:55:
f6:7e:b7:b7:2c:5a:96:83:63:e7:bd:77:8d:53:14:9b:18:86:
fa:d1:d4:86:11:e0:18:2f:1f:fc:99:12:b0:37:90:a1:c5:c2:
de:2f:6c:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:02 2024 by rpki-client on console-ams.rpki-client.org