Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/iue58AWUcRmMEnEBqvzuNnLsuDc.roa
File: iue58AWUcRmMEnEBqvzuNnLsuDc.roa (raw, json)
Hash identifier: s/tN1UOW2L9OJ8BxztbEeUTbC0MhOah/78o2QQhI4CA=
Subject key identifier: 8A:E7:B9:F0:05:94:71:19:8C:12:71:01:AA:FC:EE:36:72:EC:B8:37
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018D6B58C5A71D557B56D46544C264D8B93D
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/iue58AWUcRmMEnEBqvzuNnLsuDc.roa
Signing time: Fri 02 Feb 2024 19:43:16 +0000
ROA not before: Fri 02 Feb 2024 19:43:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212027
IP address blocks: 2a11:1140::/29 maxlen: 29
2a11:f240::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 20 Apr 2024 20:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:6b:58:c5:a7:1d:55:7b:56:d4:65:44:c2:64:d8:b9:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Feb 2 19:43:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8ae7b9f0059471198c127101aafcee3672ecb837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:6a:55:1a:e5:5f:56:5d:e3:64:14:78:c1:7c:
24:b6:78:35:2f:95:45:c3:06:ed:a2:04:d7:d0:b0:
74:70:9a:a7:42:1b:84:d4:3a:ad:77:12:34:e6:19:
89:0e:bc:41:33:d7:ad:71:8a:46:a9:3f:cf:9d:bd:
8b:ae:c8:76:6a:4d:20:a3:2c:3e:14:71:d0:28:06:
09:cc:fe:b6:8d:f2:6c:ff:3d:aa:a8:69:7a:c7:ce:
37:17:20:d2:66:8b:57:bb:b9:85:a6:b3:59:05:1c:
63:c8:f5:c8:91:a1:73:34:8b:5b:df:1b:da:7e:a0:
33:22:fb:86:20:af:66:4d:b8:a3:d2:f1:0d:c2:d3:
d2:f3:1a:d4:d9:2c:97:28:c5:1f:84:d0:48:e6:b9:
9b:6b:3e:1e:89:47:0d:5f:23:b8:6f:f5:a5:39:0f:
a4:27:16:0b:26:58:d6:69:a5:cf:b2:ff:0c:ff:ff:
95:b8:f4:fe:63:f4:0e:15:36:e6:6f:bc:0c:87:3c:
cc:e6:42:d4:d1:c8:b7:2e:eb:91:6e:e3:f4:68:fc:
e1:3c:5a:da:e9:59:75:85:bc:ab:08:a4:6b:c1:0e:
05:75:63:95:3f:f3:0f:34:94:b7:4f:c4:69:18:e1:
4e:8d:94:3e:04:fe:c8:4c:ff:39:32:fe:b1:0b:a6:
e3:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:E7:B9:F0:05:94:71:19:8C:12:71:01:AA:FC:EE:36:72:EC:B8:37
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/iue58AWUcRmMEnEBqvzuNnLsuDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:1140::/29
2a11:f240::/29
Signature Algorithm: sha256WithRSAEncryption
8e:26:89:70:2f:c3:d3:2b:ac:ac:a3:6a:3f:2b:82:27:83:bb:
64:c0:fb:a4:47:be:f4:61:07:78:b3:6c:dc:9c:61:c9:c3:fc:
af:22:f0:1b:54:23:a2:6a:3b:bb:d4:10:24:7d:2e:b2:f4:44:
2d:73:39:94:89:9c:98:81:3d:94:ef:18:7c:5a:90:63:d5:7f:
97:fa:c1:10:c2:7d:1e:0c:13:ff:60:6b:bc:57:ed:ca:88:9d:
0f:7b:11:6e:ea:09:25:a5:6a:4d:44:96:4b:fd:65:1b:b8:d0:
6e:0e:86:73:10:94:fd:e4:b4:03:0e:96:f8:de:59:f5:a6:ee:
0a:66:93:75:74:a9:9c:61:ff:c4:a8:0c:a9:39:8f:98:03:8c:
79:4e:52:02:22:25:1d:11:fb:03:ea:37:6d:4f:eb:1f:51:8d:
9b:dc:2a:77:80:74:a3:4a:a2:22:c8:29:25:2a:66:3a:16:eb:
1b:96:e5:15:e2:5a:f3:b6:40:8d:36:98:55:f7:d4:af:76:61:
74:c7:e0:16:b0:cb:65:44:a8:e2:03:3f:f7:df:47:f1:90:70:
3f:c4:75:59:e7:66:7f:d4:7d:13:f5:1f:fc:3b:c6:8e:bc:52:
6c:2a:99:65:57:28:af:46:a2:39:9f:69:b7:6a:02:78:66:48:
c5:42:58:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:38 2024 by rpki-client on console-fra.rpki-client.org