Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/jsFw516Vnq671FlaoUp_7VTsCq8.roa
File: jsFw516Vnq671FlaoUp_7VTsCq8.roa (raw, json)
Hash identifier: vQTDZsE8ERuJxk3LKQI/eQzyXB0TddWIcWrAgoRTWoQ=
Subject key identifier: 8E:C1:70:E7:5E:95:9E:AE:BB:D4:59:5A:A1:4A:7F:ED:54:EC:0A:AF
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018F9BDD065BBF630D34EA1AABF6C1FC1BB0
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/jsFw516Vnq671FlaoUp_7VTsCq8.roa
Signing time: Tue 21 May 2024 15:55:04 +0000
ROA not before: Tue 21 May 2024 15:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216157
IP address blocks: 2a0a:e2c0::/29 maxlen: 29
2a0e:7780::/29 maxlen: 32
2a0f:e000::/29 maxlen: 32
2a11:2f40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:dcc0::/29 maxlen: 32
2a12:f0c0::/29 maxlen: 29
2a13:ba00::/29 maxlen: 32
2a13:dac0::/29 maxlen: 32
2a14:c0::/29 maxlen: 29
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
2a14:7e00::/29 maxlen: 32
Validation: Failed, certificate revoked on Wed 29 May 2024 17:28:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:9b:dd:06:5b:bf:63:0d:34:ea:1a:ab:f6:c1:fc:1b:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: May 21 15:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8ec170e75e959eaebbd4595aa14a7fed54ec0aaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:73:54:cd:8f:ed:d4:68:b0:83:6c:fa:bf:da:
52:16:7c:b6:86:29:1f:3e:07:4e:27:4e:00:6c:7c:
65:5f:4e:15:32:cc:e9:d3:cb:19:ca:63:06:77:30:
ea:99:d8:05:d6:11:5d:3e:55:39:9e:7e:06:26:58:
b8:84:34:99:3a:f2:cf:d6:df:8e:9f:39:69:b4:10:
3b:d4:22:fb:7e:50:50:26:94:fa:0a:31:4a:c0:c8:
2d:11:94:06:10:5c:29:7f:1e:43:bb:00:bf:88:41:
5b:1c:06:ac:0b:46:f9:ee:15:3b:60:65:fb:1c:ef:
91:b1:5c:09:4e:fc:69:2a:06:c5:4f:75:0f:6b:e9:
a3:c5:3a:4e:9d:93:45:43:bd:41:f1:2b:b4:10:16:
77:e2:4d:d6:e1:90:39:32:be:48:8c:d1:34:27:7a:
f8:02:19:51:bf:4a:c8:4a:cd:7f:dd:07:f9:5e:9f:
71:79:1c:9c:9b:8b:fc:d0:11:45:a2:6b:4b:18:cf:
f4:f0:c6:72:df:41:3d:00:60:d6:a3:29:8b:1a:c7:
53:d4:b4:0c:b0:b0:32:44:33:ce:a7:17:7a:0f:4e:
e8:a8:2e:83:97:cc:2c:83:20:24:f7:e1:4d:3a:70:
dc:10:ec:c6:fe:6f:41:12:32:79:a3:17:0c:b3:3e:
69:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:C1:70:E7:5E:95:9E:AE:BB:D4:59:5A:A1:4A:7F:ED:54:EC:0A:AF
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/jsFw516Vnq671FlaoUp_7VTsCq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:e2c0::/29
2a0e:7780::/29
2a0f:e000::/29
2a11:2f40::/29
2a11:7240::/29
2a11:dcc0::/29
2a12:f0c0::/29
2a13:ba00::/29
2a13:dac0::/29
2a14:c0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
2a14:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
9a:bd:d2:c3:f4:99:39:0c:ce:90:99:8c:ec:a7:ec:10:55:90:
f6:21:2c:0e:7a:a8:bd:97:6f:cc:24:17:fb:36:cb:8e:c6:2f:
17:2c:15:70:97:33:5d:6d:4d:cc:a6:d9:46:09:aa:93:04:fc:
17:d8:74:34:d5:d8:13:38:30:33:64:bb:1f:61:15:e1:f9:7c:
4e:c3:b6:61:41:d1:bf:63:e0:f7:2a:3e:bd:ce:6c:23:13:9b:
45:ff:d5:42:89:11:5c:00:4b:85:14:a1:a7:2e:a0:60:e3:f4:
df:ad:e3:36:cb:bc:1d:d0:a3:3d:b9:f3:86:de:e0:67:4a:99:
34:d8:c0:27:f8:85:46:c9:aa:78:92:ee:ed:d1:35:32:47:ad:
8e:79:f1:cd:59:fe:0a:4c:62:b7:3a:8b:07:98:43:7f:19:6b:
54:6c:3f:9b:7d:ec:41:24:26:51:61:f5:bf:44:e0:eb:c8:4e:
63:2f:69:c2:5a:e6:b3:ab:4d:77:af:ae:08:6d:92:f5:c8:b9:
2c:8e:e6:23:04:21:a1:93:28:5a:15:0b:99:53:ef:19:34:4b:
33:83:98:1f:2e:26:dd:41:73:cb:26:e6:4e:a8:d4:a1:2d:f3:
aa:f7:96:2e:96:1f:91:8a:ef:55:41:34:52:34:70:6b:c2:54:
42:8d:66:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:02 2024 by rpki-client on console-ams.rpki-client.org