Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/1vV8RgU-NnlVY20DRHYldmXKi9g.roa
File: 1vV8RgU-NnlVY20DRHYldmXKi9g.roa (raw, json)
Hash identifier: xmKbqZDxTjHNMvMvPSLkKM/oHi/O2I7FtPnhskGF+qE=
Subject key identifier: D6:F5:7C:46:05:3E:36:79:55:63:6D:03:44:76:25:76:65:CA:8B:D8
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 0190089EAAF1F2A8F98C054A52C308F17052
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/1vV8RgU-NnlVY20DRHYldmXKi9g.roa
Signing time: Tue 11 Jun 2024 18:45:34 +0000
ROA not before: Tue 11 Jun 2024 18:45:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212271
IP address blocks: 2a05:4140::/29 maxlen: 48
2a05:4140:3::/48 maxlen: 48
2a05:4140:4::/48 maxlen: 48
2a05:4140:5::/48 maxlen: 48
2a05:4140:8::/48 maxlen: 48
2a05:4140:9::/48 maxlen: 48
2a05:4140:10::/48 maxlen: 48
2a05:4140:15::/48 maxlen: 48
2a05:4140:16::/48 maxlen: 48
2a05:4140:29::/48 maxlen: 48
2a05:4140:30::/48 maxlen: 48
2a05:4140:31::/48 maxlen: 48
2a05:4140:32::/48 maxlen: 48
2a05:4140:33::/48 maxlen: 48
2a05:4140:34::/48 maxlen: 48
2a05:4140:35::/48 maxlen: 64
2a05:4140:36::/48 maxlen: 48
2a05:4140:37::/48 maxlen: 48
2a05:4140:48::/48 maxlen: 48
2a05:4140:100::/40 maxlen: 48
2a05:4140:187::/48 maxlen: 48
2a05:4140:190::/48 maxlen: 48
2a05:4140:300::/40 maxlen: 40
2a05:4140:400::/40 maxlen: 48
2a05:4147::/32 maxlen: 32
2a11:e100::/29 maxlen: 48
2a11:e102::/32 maxlen: 32
2a11:e103::/32 maxlen: 32
2a11:e107::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 14 Jun 2024 17:44:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:08:9e:aa:f1:f2:a8:f9:8c:05:4a:52:c3:08:f1:70:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: Jun 11 18:45:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d6f57c46053e367955636d034476257665ca8bd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f9:f0:a2:6e:ca:5d:46:36:30:93:7e:21:6c:
4c:b7:1e:c3:d5:ee:91:f6:e4:55:38:4c:dd:80:9f:
a6:13:df:a5:95:cd:04:13:4f:63:74:1d:0e:54:8f:
f5:06:2b:1a:5a:ab:56:f9:c8:53:5d:95:f6:30:72:
31:93:99:54:9a:ac:d7:e3:e3:d4:81:18:2d:e2:1d:
d8:44:6c:66:5d:6e:51:6b:f0:ba:fe:65:ad:de:f4:
8d:eb:0e:ba:cb:ab:c9:01:1b:82:d6:94:ae:a7:e7:
14:f1:81:75:83:da:a3:04:78:32:a3:a3:5e:0f:a6:
a1:81:15:36:76:b1:99:0f:db:a1:a4:65:9e:ae:d1:
01:b5:f8:c0:6e:4c:4c:e6:f9:3e:7f:ec:41:81:ff:
ff:3b:91:70:70:ff:a5:be:a8:8c:6b:c5:fd:11:61:
18:cf:fc:ba:41:63:32:83:f0:7d:e7:3e:fb:ca:75:
8c:34:ee:90:8a:99:ae:58:b3:c8:67:52:a1:a9:b4:
85:ca:4e:ae:de:5f:c5:eb:0d:b9:7d:5b:51:2e:1c:
de:da:99:70:ba:2f:c1:68:5a:9d:f5:3b:51:5f:91:
ba:e1:86:32:b1:44:63:3b:1d:35:75:83:ad:aa:8a:
c8:bd:66:e5:1a:85:49:cb:06:0e:92:dc:fd:e7:32:
db:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:F5:7C:46:05:3E:36:79:55:63:6D:03:44:76:25:76:65:CA:8B:D8
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/1vV8RgU-NnlVY20DRHYldmXKi9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4140::/29
2a11:e100::/29
Signature Algorithm: sha256WithRSAEncryption
45:0f:ee:26:95:fa:d0:83:88:d1:ec:c7:04:8d:9a:b0:1e:4a:
d6:f7:a7:19:35:cb:ef:07:a2:ed:31:42:ab:02:2f:3e:cd:dc:
88:2c:d3:68:6b:1e:d1:c5:f7:5f:40:74:58:5a:12:ad:b8:11:
34:4f:72:8c:9e:7e:9e:40:93:00:0d:8e:5b:68:87:ca:f9:44:
cf:f2:57:70:39:7e:d7:6c:13:71:f7:09:8a:bb:60:f0:ef:7d:
b3:77:0f:59:63:10:6a:ee:75:96:2c:6a:bc:68:9c:3c:fa:cc:
ad:6d:65:88:84:1a:b1:05:28:8d:e1:b1:ee:09:b1:a1:3e:25:
30:c6:1a:df:55:f6:88:26:79:15:28:4a:8e:c6:aa:1e:5a:23:
eb:b0:94:59:1b:e9:72:3a:5c:43:73:54:3d:91:93:db:ba:b4:
85:29:fc:a9:c5:4a:d8:9f:66:ae:bc:bc:ed:5f:33:51:74:39:
1e:8b:44:fc:cc:13:90:7e:c2:5c:17:0f:0f:59:ee:4e:ee:05:
5a:c4:0d:dc:e4:b5:ee:e1:37:56:c1:40:a3:53:7b:2d:b7:fe:
bd:f7:56:39:2f:b0:1e:a5:74:74:2e:03:bc:79:dd:9f:12:7e:
99:7b:1b:eb:92:20:09:42:d5:bc:5d:e2:66:18:5e:ea:bd:cb:
47:c3:0e:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 14 18:56:27 2024 by rpki-client on console-fra.rpki-client.org