Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/k7R6xCiP51pyckWtLl_A-pEHB1Y.roa
File: k7R6xCiP51pyckWtLl_A-pEHB1Y.roa (raw, json)
Hash identifier: i7yu1nzkKcl7jMrka0Y4p2v/bBadjK94sja9xCvDQ4M=
Subject key identifier: 93:B4:7A:C4:28:8F:E7:5A:72:72:45:AD:2E:5F:C0:FA:91:07:07:56
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018FF69CE2246B188211F98993EBBE06262A
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/k7R6xCiP51pyckWtLl_A-pEHB1Y.roa
Signing time: Sat 08 Jun 2024 06:50:27 +0000
ROA not before: Sat 08 Jun 2024 06:50:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216157
IP address blocks: 2a11:7240::/29 maxlen: 29
2a11:dcc0::/29 maxlen: 32
2a14:f40::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 11 Jun 2024 08:18:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f6:9c:e2:24:6b:18:82:11:f9:89:93:eb:be:06:26:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jun 8 06:50:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=93b47ac4288fe75a727245ad2e5fc0fa91070756
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6b:fe:bc:da:25:a5:74:bd:3e:fb:0b:6c:0b:
a6:72:de:65:74:4f:00:6a:b9:5e:49:97:d9:da:a7:
42:58:a0:c0:c5:59:70:34:1b:2d:d3:46:6b:1b:25:
e2:2e:e4:e0:43:90:15:3b:92:d6:f4:d5:60:c8:8b:
a7:8c:69:d1:80:12:59:f2:ac:13:87:bf:31:62:99:
05:12:ce:05:27:93:54:c2:1e:ce:14:3e:0d:75:59:
16:2a:f1:00:fa:e9:dc:cc:56:e3:d8:af:23:4e:b3:
85:2c:62:91:26:24:b2:bc:93:cb:69:94:cf:ca:5f:
85:b8:4c:27:4a:5c:fa:55:af:24:b7:3a:6a:74:a9:
39:0a:a8:cc:28:fc:d9:24:b8:ce:55:ab:44:8f:3b:
54:14:33:3d:5c:a8:39:2c:95:84:71:44:33:59:8f:
9f:f3:c7:6c:20:45:ee:4d:36:c9:f6:10:ce:d4:ce:
f0:6f:9d:0a:1a:e4:a8:b1:1c:05:80:e7:c9:cb:ee:
48:c6:86:c1:fc:c7:eb:b4:46:28:c0:a7:7b:79:5d:
86:06:d1:a5:c1:a1:3e:1b:fa:1f:5e:f6:63:14:d5:
8e:ed:7c:be:9e:fb:1a:b7:ce:22:b3:0f:a9:37:44:
b9:98:2a:e8:aa:2e:86:61:ce:2c:64:16:ea:d9:e1:
71:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:B4:7A:C4:28:8F:E7:5A:72:72:45:AD:2E:5F:C0:FA:91:07:07:56
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/k7R6xCiP51pyckWtLl_A-pEHB1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:7240::/29
2a11:dcc0::/29
2a14:f40::/29
Signature Algorithm: sha256WithRSAEncryption
34:c0:f1:41:a2:a5:e4:ad:34:7f:e0:4a:f0:bc:c6:f7:71:bd:
d7:6f:59:19:83:bb:2f:1e:ad:a6:cd:81:6f:6c:03:80:ba:91:
7e:05:cf:15:73:5e:bc:df:61:dc:b0:74:a2:5f:66:68:f3:82:
b3:a6:d7:46:3d:5f:2d:53:c3:dc:11:c6:e1:0f:88:9a:00:de:
5f:ff:a4:05:27:d6:09:82:0c:0b:f7:8b:be:65:11:d3:45:dc:
82:41:87:58:b4:16:98:5d:4b:2f:fb:5e:5d:fb:72:af:18:cc:
ae:48:7b:af:46:fd:17:a6:63:a3:0c:f6:c2:c0:42:1a:1e:02:
bb:27:44:cf:f6:be:ed:dc:a6:1d:f7:cd:58:ad:49:3c:66:de:
63:01:04:f2:c9:d4:db:ec:3d:79:bc:dc:67:40:b4:9e:f5:81:
a6:92:1f:c9:27:38:af:60:b1:4a:93:44:bb:13:ef:8e:47:61:
f3:f5:05:13:f2:00:3f:41:84:69:e9:75:61:1b:9d:50:7f:80:
8c:e0:4b:bb:ac:ab:a3:29:dc:f9:87:f3:7b:ab:fd:84:ed:29:
ee:bc:53:6c:67:23:b0:25:43:70:92:f5:c6:ee:50:2f:cf:10:
54:85:cd:81:de:21:aa:23:01:d9:f1:b4:1e:1a:2f:80:2a:1c:
d6:b7:ec:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 11 12:41:26 2024 by rpki-client on console-ams.rpki-client.org