Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/6mCGJdO7V-Gn5FHXZeb3GcCRDTk.roa
File: 6mCGJdO7V-Gn5FHXZeb3GcCRDTk.roa (raw, json)
Hash identifier: 4Mu9XgUkIfWGQC/LeYKVwjDB4It1FOWgihiVZ++Nzcc=
Subject key identifier: EA:60:86:25:D3:BB:57:E1:A7:E4:51:D7:65:E6:F7:19:C0:91:0D:39
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 0190741A99A72A8E3474F28C35CDCFBC4423
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/6mCGJdO7V-Gn5FHXZeb3GcCRDTk.roa
Signing time: Tue 02 Jul 2024 15:40:18 +0000
ROA not before: Tue 02 Jul 2024 15:40:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 2a14:61c0::/29 maxlen: 30
2a14:62c0::/29 maxlen: 30
Validation: Failed, certificate revoked on Thu 08 Aug 2024 19:24:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:74:1a:99:a7:2a:8e:34:74:f2:8c:35:cd:cf:bc:44:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Jul 2 15:40:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea608625d3bb57e1a7e451d765e6f719c0910d39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b2:22:dc:20:68:ec:02:b6:0a:25:f4:92:68:
be:67:76:f9:4a:24:ad:14:4e:e0:70:43:ec:f7:3c:
b1:1c:6d:f5:4f:dd:ab:99:db:53:d2:4a:9f:85:30:
55:cd:68:fb:70:c4:82:69:7c:11:32:99:e2:3d:90:
5d:43:b9:f6:3b:ad:4f:50:74:e4:c1:1a:6f:de:c7:
4b:d7:64:1a:81:fe:d9:5a:eb:06:d0:56:0c:32:62:
cb:d0:d9:38:32:65:cb:3c:91:34:d0:45:c1:b9:7e:
6c:0f:33:09:1a:a7:7d:4e:a9:04:8f:cf:92:d3:c2:
d3:9a:6e:93:13:02:99:9e:1d:25:42:e3:a0:74:65:
1a:32:14:b1:6b:f3:3f:38:21:b0:cc:9d:7f:54:40:
de:ee:7a:da:52:77:cb:ca:d4:86:02:be:97:f7:7e:
fb:30:2e:4c:d9:5b:16:d5:79:5d:2d:cf:25:39:17:
d9:39:14:47:bd:48:24:8a:2b:d6:b9:f6:2c:5c:c1:
82:45:84:ba:ea:89:1f:88:12:a0:7d:ce:8d:b1:c1:
fe:0c:f8:c0:24:14:5a:3e:2b:b1:98:30:75:02:ad:
c3:81:d3:c5:64:09:b6:2a:b6:5c:96:24:d7:91:d9:
5d:e8:3a:9a:8e:aa:c7:b7:02:39:64:b1:26:85:dc:
ca:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:60:86:25:D3:BB:57:E1:A7:E4:51:D7:65:E6:F7:19:C0:91:0D:39
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/6mCGJdO7V-Gn5FHXZeb3GcCRDTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:61c0::/29
2a14:62c0::/29
Signature Algorithm: sha256WithRSAEncryption
6b:4b:35:9a:5f:fa:6d:e3:af:15:99:13:87:40:6b:e5:7f:18:
a5:4e:f5:4b:bc:af:5b:3a:4c:e0:76:2a:3d:a3:cc:21:c7:e8:
20:de:2d:77:76:f0:8c:c7:06:8e:b9:b8:22:af:b9:71:56:49:
14:21:bb:da:c6:c3:fe:d8:48:13:2e:d5:76:f2:5d:c6:9f:fc:
67:62:b7:4a:90:86:c6:b5:9c:c6:10:71:cb:8a:2e:81:43:55:
f2:70:1d:3c:53:25:5b:b6:3a:f2:89:9a:b8:9d:e6:65:95:82:
d4:b0:77:9c:81:4c:8f:aa:3d:d6:31:a2:6c:b0:38:44:2a:7e:
34:f5:18:1b:70:40:1f:04:4c:9d:76:b0:e5:f4:db:f0:04:b7:
79:b3:4e:da:fe:16:87:b8:a3:a7:e8:29:fc:69:43:67:3b:ce:
94:5c:76:05:03:58:31:f4:69:b4:7b:b2:c7:21:a1:e1:04:37:
a6:2d:06:1f:1c:ee:ea:5a:fc:bf:61:ea:ba:a3:89:49:7e:e9:
69:d4:c7:99:74:c2:79:04:ef:4b:c0:a9:46:5c:8b:91:1b:ca:
c5:ea:cb:bc:6a:0a:e3:52:18:03:a1:33:ca:d7:68:1a:f8:1e:
25:e2:65:e1:90:c7:cc:e8:b3:d4:66:b1:2b:f8:c7:10:87:87:
41:bc:0d:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 8 22:24:16 2024 by rpki-client on console-fra.rpki-client.org