Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/iJAHBfJeHy6u6lpsynT5PfchuSg.roa
File: iJAHBfJeHy6u6lpsynT5PfchuSg.roa (raw, json)
Hash identifier: IrHyuXZ3WFHa3Ga7cEbup93n501jM4vaisfiOGIWWEs=
Subject key identifier: 88:90:07:05:F2:5E:1F:2E:AE:EA:5A:6C:CA:74:F9:3D:F7:21:B9:28
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018EDB4D67AA3C0DDE283F3DCED785F35CF4
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/iJAHBfJeHy6u6lpsynT5PfchuSg.roa
Signing time: Sun 14 Apr 2024 06:31:06 +0000
ROA not before: Sun 14 Apr 2024 06:31:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216157
IP address blocks: 2a0a:e2c0::/29 maxlen: 32
2a0e:7780::/29 maxlen: 32
2a0f:e000::/29 maxlen: 32
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a11:dcc0::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 29
2a13:ba00::/29 maxlen: 32
2a13:dac0::/29 maxlen: 32
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
2a14:7e00::/29 maxlen: 32
Validation: Failed, certificate revoked on Thu 02 May 2024 19:02:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:db:4d:67:aa:3c:0d:de:28:3f:3d:ce:d7:85:f3:5c:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Apr 14 06:31:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=88900705f25e1f2eaeea5a6cca74f93df721b928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d3:85:25:7a:c2:cc:70:54:fc:41:76:fe:53:
03:e3:98:a2:9b:03:88:17:19:15:ca:36:b2:e5:f2:
03:71:6d:ad:d6:7d:46:65:da:41:08:a4:dc:d4:88:
e5:46:77:5c:07:5b:53:68:84:72:04:3e:a0:68:27:
62:1c:92:e5:88:68:1a:8d:7f:ca:d7:84:84:0a:4c:
01:10:69:2a:ca:68:6b:a1:95:0e:f8:38:52:4a:8f:
45:51:c3:35:ad:2a:35:ce:7d:cf:f8:b2:0f:fa:2f:
3e:3b:fa:a2:39:db:8a:74:87:59:2b:09:d4:f3:1c:
63:a7:25:46:33:26:c1:99:46:2a:0a:32:32:9b:ce:
34:7e:ca:c2:1f:79:1b:3e:57:33:c7:5f:f4:51:05:
72:cc:09:c7:2d:1e:23:81:5f:ac:00:1a:71:1c:7f:
67:7b:cc:aa:0c:f7:7a:e3:49:ee:f2:b2:a7:8a:0a:
6d:38:1b:3c:bc:39:8c:da:29:ab:8e:35:02:28:17:
ef:a5:66:29:6c:d9:b0:93:fc:d9:44:e4:91:5f:df:
06:08:c6:6a:17:94:7f:5e:65:b3:17:e4:2c:8d:63:
f2:86:24:07:e4:9c:f1:c7:a2:0e:c3:15:72:ae:e1:
36:86:df:0b:ab:5e:a6:70:5f:09:83:59:2b:6a:b8:
ac:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:90:07:05:F2:5E:1F:2E:AE:EA:5A:6C:CA:74:F9:3D:F7:21:B9:28
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/iJAHBfJeHy6u6lpsynT5PfchuSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:e2c0::/29
2a0e:7780::/29
2a0f:e000::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:7240::/29
2a11:9600::/29
2a11:dcc0::/29
2a12:f0c0::/29
2a13:ba00::/29
2a13:dac0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
2a14:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
5e:11:f5:3c:f3:67:52:8f:9e:2f:73:d3:4f:ae:16:70:11:4c:
3d:1b:25:6a:83:97:55:a2:c0:24:7b:b0:f6:3a:fd:85:e4:29:
a0:a7:19:d8:31:d9:e4:3b:69:da:2f:59:56:03:01:3a:36:07:
a9:49:58:eb:45:ed:f2:61:82:82:94:61:87:be:f9:d2:fd:22:
b0:d5:bc:19:37:2b:e5:3e:e8:cd:b7:be:a3:64:12:bd:60:e6:
28:ed:0b:89:31:27:96:3b:2b:44:91:14:2f:3f:62:bf:86:54:
96:03:e5:d0:3a:90:c0:ce:90:d7:c7:36:e2:93:37:84:ae:af:
49:1f:66:0e:f7:f2:8f:eb:c2:13:0c:ec:fc:38:56:5a:fd:d7:
c4:b0:31:36:48:d5:0e:56:dc:b7:85:d1:ea:6d:1c:59:62:70:
e1:46:6b:2f:66:f7:ae:bf:1a:fd:a3:66:5c:1a:32:ca:19:ac:
de:cf:d3:f7:be:c6:7c:ea:f7:3f:8e:a7:d4:f4:9a:e1:e3:b0:
9e:b9:7c:d9:3b:59:74:02:68:de:38:04:0a:9e:07:05:7d:b2:
84:2a:36:4f:47:0c:be:ba:2c:11:b8:15:d4:81:62:2b:b9:f5:
97:d5:4a:46:3c:33:a0:f1:ae:07:74:f2:04:58:79:10:7c:fe:
86:de:ba:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:38 2024 by rpki-client on console-fra.rpki-client.org