Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/UI1XS7VxvRUf30E8l7B6HopGho4.roa
File: UI1XS7VxvRUf30E8l7B6HopGho4.roa (raw, json)
Hash identifier: RtTZk0PjaaZt5y56K8kGls06Fn8KrBhLF8jDULVCKZs=
Subject key identifier: 50:8D:57:4B:B5:71:BD:15:1F:DF:41:3C:97:B0:7A:1E:8A:46:86:8E
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 01920A9151B14594D732D9D426D19DBDB0BF
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/UI1XS7VxvRUf30E8l7B6HopGho4.roa
Signing time: Thu 19 Sep 2024 13:55:48 +0000
ROA not before: Thu 19 Sep 2024 13:55:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211123
IP address blocks: 2a11:e106::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 08 Oct 2024 18:05:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:0a:91:51:b1:45:94:d7:32:d9:d4:26:d1:9d:bd:b0:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: Sep 19 13:55:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=508d574bb571bd151fdf413c97b07a1e8a46868e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f7:99:f9:6d:1f:a6:e9:f9:d0:09:2d:2c:f6:
a5:d0:08:ea:2c:71:54:9c:95:4c:7c:06:d0:21:0e:
13:da:16:8e:45:cb:a5:f6:9c:3d:2f:c1:59:cb:5c:
3a:3c:f9:f8:53:35:b5:26:89:66:f5:86:42:3f:b1:
e2:d2:6d:d8:b7:08:d5:6d:86:59:e0:24:64:2a:05:
34:d1:7d:d1:13:b6:1b:b9:13:ce:6c:99:d3:69:77:
9c:dd:b4:db:33:c8:b9:1a:15:01:9f:36:77:4c:34:
99:c4:c8:42:84:c2:20:42:47:e6:b9:ee:47:47:1d:
a2:da:59:43:a0:cc:43:78:11:8b:72:06:55:66:bf:
f3:50:16:22:7c:7a:b3:7e:bb:8f:b0:47:0c:40:89:
16:a5:01:bf:d9:32:89:34:55:3a:7e:1e:f9:80:69:
e0:50:9f:3a:9f:bb:8b:a1:bb:37:f4:a7:6d:42:24:
f3:4e:89:c3:f7:a9:6a:7a:4a:c2:82:60:8c:63:db:
67:d3:8a:e0:bf:5a:80:64:79:cd:93:c8:6c:99:51:
1f:67:ae:54:a8:32:e6:06:37:d9:a6:6a:e0:2f:4a:
98:16:21:1d:49:91:aa:ec:84:ee:54:77:aa:ea:1a:
10:fa:a4:bf:a4:72:6b:ea:01:7e:28:70:57:b8:10:
51:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:8D:57:4B:B5:71:BD:15:1F:DF:41:3C:97:B0:7A:1E:8A:46:86:8E
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/UI1XS7VxvRUf30E8l7B6HopGho4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:e106::/32
Signature Algorithm: sha256WithRSAEncryption
65:03:04:b9:1f:99:18:da:6b:a2:66:48:48:84:50:4c:77:8d:
7c:b9:40:82:24:fd:f0:71:e9:2f:7b:9e:31:7c:4a:68:36:55:
31:f7:8a:55:9d:4a:5d:26:db:21:4e:df:05:a9:50:a7:cd:aa:
7e:ba:b6:d7:7c:46:70:5f:79:d0:de:e9:87:2f:d9:ba:a8:0c:
d4:4b:75:47:ce:f7:98:00:d6:13:1e:3c:e1:4c:f4:c2:69:8e:
97:27:f3:41:63:9e:00:aa:7c:1e:cb:71:dc:cf:a0:52:6d:83:
4f:cb:42:70:89:29:f4:6c:f4:e5:f4:c6:23:b3:64:eb:02:78:
e6:40:1c:fa:49:e3:ef:96:4d:dc:68:eb:3a:78:00:2e:3f:ae:
17:11:78:a2:1d:f9:38:3a:ea:b3:56:7e:d9:42:75:df:22:7a:
d6:4d:b7:6a:5b:83:25:b2:76:38:90:4d:f2:d3:f7:0e:68:79:
e2:f0:d4:7c:ea:e3:dc:d7:31:e8:af:1c:68:be:2f:73:c0:2a:
d2:cf:c1:a4:d8:00:35:19:f1:bc:76:b7:3f:42:f6:41:88:13:
12:18:a8:00:66:73:cd:5a:00:32:51:f4:82:e3:a8:64:62:1c:
e2:94:60:ec:2e:92:23:ca:25:ce:3c:60:35:90:f2:41:82:a1:
06:f2:ae:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 8 22:48:48 2024 by rpki-client on console-fra.rpki-client.org