Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/xnk0Fc4CYqOvKx-5Vv6HY6-1_nE.roa
File: xnk0Fc4CYqOvKx-5Vv6HY6-1_nE.roa (raw, json)
Hash identifier: lEJIq06DISHbIK0y+Oaqi/xx1Q8eLP3q1f+t2QnB7IA=
Subject key identifier: C6:79:34:15:CE:02:62:A3:AF:2B:1F:B9:56:FE:87:63:AF:B5:FE:71
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018FDFE74962E7C84BA050C4FCFA0A89A068
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/xnk0Fc4CYqOvKx-5Vv6HY6-1_nE.roa
Signing time: Mon 03 Jun 2024 21:00:27 +0000
ROA not before: Mon 03 Jun 2024 21:00:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198231
IP address blocks: 2a11:dcc0::/29 maxlen: 32
Validation: Failed, certificate revoked on Tue 18 Jun 2024 18:18:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:df:e7:49:62:e7:c8:4b:a0:50:c4:fc:fa:0a:89:a0:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jun 3 21:00:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c6793415ce0262a3af2b1fb956fe8763afb5fe71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9f:fa:56:0e:b8:42:9e:c4:48:e7:ca:e7:49:
84:6d:65:60:d0:1d:d1:60:2a:52:91:9b:38:00:11:
a7:f2:6b:3c:7f:f1:b1:bd:4a:aa:6d:7c:e2:9d:7e:
e6:5a:b5:16:38:27:3a:45:ed:27:23:9f:15:f9:98:
f1:7b:bd:f4:c6:a2:81:50:d2:2d:a9:09:54:a7:ab:
02:1b:14:9c:04:c9:d4:df:b1:15:33:39:7c:e9:e7:
79:4b:96:16:a6:1a:7a:31:86:93:13:f6:b1:09:f7:
c6:ff:5d:f0:65:75:a9:17:c4:db:2d:cc:9e:e0:b7:
fb:5c:9a:50:7d:91:54:51:7d:d3:5d:85:23:6a:aa:
1b:0b:83:0c:c6:c2:6b:64:29:ef:6e:5e:e2:53:52:
8c:33:84:e5:ee:c7:83:71:67:9b:42:d5:01:77:4d:
80:a5:5c:71:70:9d:fd:88:46:03:b3:28:47:30:dc:
28:c5:79:60:1b:30:f1:90:06:88:9e:c1:68:b0:fd:
d5:45:66:dc:57:0c:7d:61:80:d7:6b:64:3b:07:f5:
9e:8e:b5:0d:aa:35:17:3a:55:5e:64:00:d1:e0:3d:
83:6c:73:52:5b:ed:0e:ed:72:f6:0f:fa:21:57:8b:
9f:2c:c6:3d:a9:1b:33:8b:ce:32:41:73:a0:ef:4b:
89:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:79:34:15:CE:02:62:A3:AF:2B:1F:B9:56:FE:87:63:AF:B5:FE:71
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/xnk0Fc4CYqOvKx-5Vv6HY6-1_nE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:dcc0::/29
Signature Algorithm: sha256WithRSAEncryption
36:43:87:d1:b7:6b:13:90:85:f5:4d:af:77:4d:15:be:ab:be:
f5:aa:31:30:45:7f:0f:e8:8e:fa:17:0c:15:0e:d1:0c:dc:78:
63:e8:dc:60:a1:6f:fe:b9:88:c7:32:b6:c7:ae:56:b4:b5:56:
60:2b:78:de:66:ea:ef:1a:b9:f2:12:57:5f:f0:82:66:13:a4:
79:80:24:c2:6e:b8:ff:6a:5f:45:fa:70:7d:35:28:27:03:eb:
d5:ca:49:b3:62:ec:9b:d3:f8:31:b3:82:6e:d4:d5:82:fe:83:
fa:47:4e:68:fd:85:59:d8:10:09:6f:e0:2a:45:b1:d7:a6:22:
0f:da:8e:fc:9b:05:99:6a:b2:2d:67:f6:f8:86:a1:21:a5:f2:
ef:a2:41:9b:e2:a0:c4:1a:16:f5:f6:a5:4e:30:ff:91:21:6e:
5e:bd:ad:b3:bd:ac:c4:eb:ea:c2:30:54:ae:66:00:fb:8f:13:
66:1b:ce:7b:0d:e5:b7:84:65:2d:09:72:5f:03:0c:e1:e0:5c:
8b:45:1e:a2:f0:15:44:45:b5:88:b1:b0:6b:71:a4:f9:cc:66:
5f:4f:0d:8b:f4:39:11:72:49:48:76:79:1a:d6:67:b6:b4:00:
37:81:74:64:2f:79:13:6b:fe:c9:75:a7:60:f9:f9:ed:19:e8:
b4:80:89:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 18 22:10:15 2024 by rpki-client on console-fra.rpki-client.org