Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/wX_0TV2ZkdnHPq9adGpP0RguLrg.roa
File: wX_0TV2ZkdnHPq9adGpP0RguLrg.roa (raw, json)
Hash identifier: oagqpMR7nUONRQM5nV5CLgSBAht89se+oCfbCKmVGeE=
Subject key identifier: C1:7F:F4:4D:5D:99:91:D9:C7:3E:AF:5A:74:6A:4F:D1:18:2E:2E:B8
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018F35208CA6D73D98B8E7C742DC4B9C7B12
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/wX_0TV2ZkdnHPq9adGpP0RguLrg.roa
Signing time: Wed 01 May 2024 17:07:56 +0000
ROA not before: Wed 01 May 2024 17:07:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212027
IP address blocks: 2a11:1140::/29 maxlen: 29
2a12:6b80::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 06 May 2024 14:26:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:35:20:8c:a6:d7:3d:98:b8:e7:c7:42:dc:4b:9c:7b:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: May 1 17:07:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c17ff44d5d9991d9c73eaf5a746a4fd1182e2eb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:68:26:50:4b:4e:fe:80:c4:a3:b9:1e:6f:47:
91:3e:12:f7:db:55:db:eb:d2:e1:0f:86:db:13:cd:
c3:f0:75:27:22:13:a0:7e:c4:d7:03:13:1e:35:3f:
d7:f6:24:e0:3b:1a:b4:57:b6:b7:4b:17:fb:97:da:
5f:56:15:09:3b:82:f8:1a:4a:bc:19:48:ab:19:c7:
0f:22:83:7b:a2:77:7f:5e:f9:09:46:d7:00:3f:e9:
63:1a:3d:00:8f:f5:2c:7b:42:89:74:d0:43:39:82:
c8:1d:f5:35:b6:73:58:9d:ea:59:74:e2:a6:f3:c4:
29:2b:44:44:5f:bf:e0:c0:bf:63:f9:74:e6:62:c0:
66:4f:b9:3d:72:34:22:07:84:9f:2f:c5:c3:65:3d:
74:1a:d7:af:1e:9a:08:c4:a2:56:37:f5:cf:0e:ba:
b3:18:e4:fa:2f:31:0c:3c:65:36:0a:ea:80:8a:f0:
9c:c2:b5:6e:85:22:2e:87:40:82:24:ed:7f:ac:e3:
1a:ec:7a:2f:49:5f:1f:3a:1d:d7:cd:80:08:de:00:
fb:3b:f7:53:45:dc:5d:b2:61:0b:94:8c:a0:b3:03:
99:18:05:23:cf:75:4c:e7:91:0f:cb:95:c1:b1:5c:
36:42:4f:2b:4c:e9:85:ed:6b:34:4d:f5:b6:87:1e:
c3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:7F:F4:4D:5D:99:91:D9:C7:3E:AF:5A:74:6A:4F:D1:18:2E:2E:B8
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/wX_0TV2ZkdnHPq9adGpP0RguLrg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:1140::/29
2a12:6b80::/29
Signature Algorithm: sha256WithRSAEncryption
b0:97:5b:7e:0d:58:e7:82:0d:be:f5:c8:e6:1d:e0:19:0b:9c:
16:4f:a1:d9:fe:ca:4d:ba:6b:e0:ce:95:7a:19:3d:ff:52:d9:
41:ea:7e:bc:98:f4:8d:ac:ce:b5:11:2e:6e:df:a9:84:ab:05:
b0:2e:22:d2:d0:8c:3b:db:88:92:5c:92:cd:86:1c:f9:f0:57:
7b:5b:2c:fc:8b:92:60:f9:ca:80:4e:e2:98:b1:7f:30:6d:ed:
de:8a:d0:2d:bf:2d:3d:df:5e:20:a4:90:19:d2:8a:95:78:d3:
e9:45:79:4c:68:1e:cc:ef:8a:95:94:56:05:52:e9:ab:e0:4d:
17:e1:47:33:20:9e:22:06:cd:6c:3d:66:1b:3e:e0:65:f4:b0:
17:84:44:36:c0:62:d2:85:d7:ae:f6:71:eb:b6:98:92:80:19:
2a:14:cd:53:96:12:51:f0:55:56:1d:6e:22:82:90:5b:a4:f8:
1c:b3:80:74:4a:fb:0c:a6:06:18:04:e8:8d:d5:06:ee:f8:c1:
ff:e3:95:4e:e6:5d:64:61:16:4c:55:68:ab:2b:90:ce:c2:3d:
4c:82:27:f8:f8:f1:96:02:dc:50:15:ab:23:6b:82:85:3b:e7:
4a:d9:14:2b:48:0c:38:68:54:fc:92:76:48:cf:8c:39:22:f0:
e2:6b:19:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:03 2024 by rpki-client on console-ams.rpki-client.org