Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/x4VTL8SfWd_gQtyJ8I_gbhU7qXA.roa
File: x4VTL8SfWd_gQtyJ8I_gbhU7qXA.roa (raw, json)
Hash identifier: gR8hPbvgrOYU7VKM/AYod1P9nZ3955tJ1/abxynALUw=
Subject key identifier: C7:85:53:2F:C4:9F:59:DF:E0:42:DC:89:F0:8F:E0:6E:15:3B:A9:70
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018F3AB03210FC4049F1270085022F8DC92D
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/x4VTL8SfWd_gQtyJ8I_gbhU7qXA.roa
Signing time: Thu 02 May 2024 19:02:56 +0000
ROA not before: Thu 02 May 2024 19:02:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216157
IP address blocks: 2a0e:7780::/29 maxlen: 32
2a0f:e000::/29 maxlen: 32
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a11:dcc0::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 29
2a13:ba00::/29 maxlen: 32
2a13:dac0::/29 maxlen: 32
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
2a14:7e00::/29 maxlen: 32
Validation: Failed, certificate revoked on Fri 03 May 2024 04:15:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3a:b0:32:10:fc:40:49:f1:27:00:85:02:2f:8d:c9:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: May 2 19:02:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c785532fc49f59dfe042dc89f08fe06e153ba970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:82:e0:74:6e:86:3c:7b:6b:65:45:35:be:80:
7a:d6:1b:81:e8:0f:82:8e:48:6d:30:d4:74:a3:4a:
eb:7c:94:89:81:c8:b1:fd:a5:14:6c:55:a1:c0:7a:
94:aa:26:82:f7:63:8f:ef:4f:ee:91:4c:88:f1:91:
42:1e:b9:ed:28:07:b8:28:7f:38:33:04:8f:05:1c:
bc:40:eb:ef:45:a1:04:40:59:12:6f:a8:e4:7d:03:
06:18:a9:c6:f1:46:83:09:f7:db:49:4c:7c:db:3d:
d4:13:e1:93:19:dd:ce:d9:54:a3:85:26:cf:19:b4:
1a:c3:7e:04:ef:82:41:b7:9c:46:38:da:33:26:58:
06:49:c0:de:9d:ce:ff:bf:4e:83:45:65:c9:cd:3c:
73:6d:05:1a:51:85:6d:c3:92:13:ef:ce:4a:47:84:
34:a6:e0:2b:f0:97:06:3c:83:e7:4c:e6:aa:5e:7c:
18:a3:af:66:58:d2:a6:fb:c4:d2:15:7f:52:eb:c7:
6a:a6:07:5c:2f:1e:f4:d6:81:b1:b2:0c:65:3d:b8:
ad:6d:59:6e:ed:77:a4:3e:0f:8b:f2:33:61:4c:bc:
97:ed:95:dc:8f:26:b4:e8:a1:e8:b0:e0:4a:de:54:
38:74:23:17:3b:e5:33:0d:ea:da:12:20:82:84:65:
52:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:85:53:2F:C4:9F:59:DF:E0:42:DC:89:F0:8F:E0:6E:15:3B:A9:70
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/x4VTL8SfWd_gQtyJ8I_gbhU7qXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:7780::/29
2a0f:e000::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:7240::/29
2a11:9600::/29
2a11:dcc0::/29
2a12:f0c0::/29
2a13:ba00::/29
2a13:dac0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
2a14:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
30:09:8c:72:ff:d6:6d:4c:98:da:2e:19:a7:e0:27:06:5d:6a:
e0:c2:4e:25:36:98:35:5b:02:37:18:a0:4f:ce:8e:fe:69:84:
0d:ce:bb:1c:b5:ac:74:4b:e7:c3:88:64:fe:78:4c:05:03:d0:
79:fb:8b:ff:82:86:76:63:a7:f8:cf:74:80:eb:31:92:73:99:
82:fa:0a:a1:36:f0:93:d6:f3:85:01:fa:e0:cc:b0:b7:46:62:
f6:76:1b:2f:4b:ed:fc:e2:d7:75:60:aa:24:19:53:99:4f:66:
1b:9d:a7:74:6b:9c:3f:40:76:d3:8e:c9:d4:aa:09:34:73:f6:
ff:19:e6:7b:91:45:77:f4:14:48:e2:07:c9:2b:72:9d:f5:bf:
a5:0d:a9:3a:d4:b1:03:3a:c7:d7:b5:a9:45:4e:09:5a:7b:a8:
fe:c5:a4:8a:54:ac:f5:13:b8:e7:32:33:c7:53:b2:67:dd:5b:
64:80:81:12:ea:2e:04:56:28:54:bd:77:53:0b:9a:1f:9d:bf:
a8:72:da:a6:5a:6c:3f:15:bb:3d:11:1c:20:42:1b:b7:63:5d:
38:cb:70:03:61:d1:29:42:9f:fd:c1:8f:67:d8:82:07:25:c1:
07:09:56:e7:3f:15:42:2e:5d:a4:60:8c:79:4b:d8:68:a7:e5:
de:e1:99:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:38 2024 by rpki-client on console-fra.rpki-client.org