Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/qUBYkCdkl5PUfO2eoh1-C5Zcmow.roa
File: qUBYkCdkl5PUfO2eoh1-C5Zcmow.roa (raw, json)
Hash identifier: Nkv0txbeJJoV7zQPxyKFXjGOqdv/uv6c5cIYHtlnQUg=
Subject key identifier: A9:40:58:90:27:64:97:93:D4:7C:ED:9E:A2:1D:7E:0B:96:5C:9A:8C
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018FA620E7CF10AA723221794A7BCA6EC407
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/qUBYkCdkl5PUfO2eoh1-C5Zcmow.roa
Signing time: Thu 23 May 2024 15:45:25 +0000
ROA not before: Thu 23 May 2024 15:45:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 2a12:28c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 28 May 2024 12:38:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a6:20:e7:cf:10:aa:72:32:21:79:4a:7b:ca:6e:c4:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: May 23 15:45:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a940589027649793d47ced9ea21d7e0b965c9a8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f3:48:ef:37:7a:ec:d0:c3:f7:2b:96:1f:65:
bb:cb:06:98:86:61:71:52:a5:40:5d:d8:bf:78:2d:
08:f4:77:6a:de:12:7e:ca:32:f5:13:28:99:4e:72:
20:2b:73:3f:3f:3e:ca:73:90:63:2a:f6:7d:15:2c:
f4:42:65:25:1f:4a:17:0c:71:45:09:5a:4e:26:f9:
06:8e:e1:80:5e:59:12:e7:7c:0c:7c:42:61:b6:f6:
0a:b3:d2:97:91:57:2a:ce:2b:c9:02:6a:3d:a9:3f:
a0:db:df:58:3c:9f:ca:5a:f7:23:dd:59:64:af:91:
99:4d:e4:76:43:21:d7:39:50:b4:93:40:91:24:07:
2d:e8:f7:33:6d:81:06:d1:c5:29:14:27:95:b4:cf:
08:6c:7e:c7:92:62:9f:64:e1:b5:89:3d:9b:00:56:
a3:ca:f5:0a:2e:49:25:56:96:25:1f:0e:ad:88:08:
da:dd:a7:f2:f6:f0:54:4e:83:28:c1:1f:6d:f0:aa:
20:3d:e5:05:f6:de:2e:59:06:08:83:0c:fb:fc:7c:
bb:cf:32:10:cd:a1:4f:6c:a5:68:ff:f4:70:31:92:
e1:37:33:c4:83:5b:47:73:01:63:8c:a4:71:1f:f5:
d4:c4:c0:5b:03:4f:a0:36:6c:78:30:5d:a8:d6:da:
32:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:40:58:90:27:64:97:93:D4:7C:ED:9E:A2:1D:7E:0B:96:5C:9A:8C
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/qUBYkCdkl5PUfO2eoh1-C5Zcmow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:28c0::/29
Signature Algorithm: sha256WithRSAEncryption
a2:18:55:77:ca:97:15:a1:d6:e1:92:89:76:0f:e7:87:b1:3c:
25:3c:93:bd:d0:33:9c:ed:7c:27:e0:b9:f6:e5:36:a1:57:28:
02:19:be:98:2b:c9:0f:5c:64:cd:34:4a:99:d0:66:7e:aa:ef:
ba:bd:7e:ff:94:46:67:5e:fc:c1:60:3e:92:d4:4d:89:52:0c:
2c:1f:cf:12:21:5b:2e:e6:de:cd:f7:9a:40:d1:31:7a:a2:02:
32:55:74:26:08:07:b4:c4:16:a2:6b:39:1c:75:8f:1d:05:9d:
14:3b:f2:58:7f:6d:e5:c0:40:63:7d:f8:a5:a0:b3:a1:22:13:
2d:b5:aa:7e:0d:04:f7:4c:95:2c:5d:87:c7:42:bf:ae:be:a4:
2f:10:3d:98:a8:ee:73:80:49:2a:da:f1:9a:87:dc:8f:ba:3e:
a2:45:52:d7:72:26:1d:de:9d:0b:9c:2d:a0:76:74:a1:a9:18:
46:17:7b:aa:60:15:39:0c:dc:bc:be:70:86:b8:e5:5e:61:46:
2b:85:f2:9d:75:77:e5:73:91:2a:50:08:6f:e2:e3:ec:73:b9:
04:3e:b3:5a:56:25:1a:44:e4:1a:dd:65:cb:5e:f9:2b:67:b7:
9f:dc:64:3b:de:bb:f9:a5:fe:ae:e7:2f:dd:7f:b7:ed:74:47:
2e:c7:62:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:38 2024 by rpki-client on console-fra.rpki-client.org