Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/a9RDP7vZizOW_ySV1ehLzZacqVY.roa
File: a9RDP7vZizOW_ySV1ehLzZacqVY.roa (raw, json)
Hash identifier: hA+vtmHfrZGy7WtY2c1z8+IyOc2OiLDMmy7CUAVc4ek=
Subject key identifier: 6B:D4:43:3F:BB:D9:8B:33:96:FF:24:95:D5:E8:4B:CD:96:9C:A9:56
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 018DD2AE81F77E7D0CF8E0438F1C12AD6D38
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/a9RDP7vZizOW_ySV1ehLzZacqVY.roa
Signing time: Thu 22 Feb 2024 21:17:48 +0000
ROA not before: Thu 22 Feb 2024 21:17:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212271
IP address blocks: 2a05:4140::/29 maxlen: 48
2a05:4140:3::/48 maxlen: 48
2a05:4140:4::/48 maxlen: 48
2a05:4140:5::/48 maxlen: 48
2a05:4140:8::/48 maxlen: 48
2a05:4140:9::/48 maxlen: 48
2a05:4140:10::/48 maxlen: 48
2a05:4140:15::/48 maxlen: 48
2a05:4140:16::/48 maxlen: 48
2a05:4140:29::/48 maxlen: 48
2a05:4140:30::/48 maxlen: 48
2a05:4140:31::/48 maxlen: 48
2a05:4140:32::/48 maxlen: 48
2a05:4140:33::/48 maxlen: 48
2a05:4140:34::/48 maxlen: 48
2a05:4140:35::/48 maxlen: 64
2a05:4140:36::/48 maxlen: 48
2a05:4140:37::/48 maxlen: 48
2a05:4140:48::/48 maxlen: 48
2a05:4140:100::/40 maxlen: 48
2a05:4140:187::/48 maxlen: 48
2a05:4140:190::/48 maxlen: 48
2a05:4140:300::/40 maxlen: 40
2a05:4140:400::/40 maxlen: 48
2a05:4143::/32 maxlen: 48
2a05:4144::/32 maxlen: 32
2a11:e100::/29 maxlen: 48
2a11:e102::/32 maxlen: 32
2a11:e103::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 14 Mar 2024 22:08:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d2:ae:81:f7:7e:7d:0c:f8:e0:43:8f:1c:12:ad:6d:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: Feb 22 21:17:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6bd4433fbbd98b3396ff2495d5e84bcd969ca956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c6:c8:19:aa:76:48:f1:45:4c:2a:9e:7b:ad:
43:da:cb:4b:7b:34:b0:6d:87:0a:5a:51:57:60:03:
df:12:19:8c:72:67:2f:a8:96:42:04:55:23:b3:16:
46:e8:e0:5d:51:3f:89:fd:83:f7:28:c5:2a:f2:13:
bc:5b:d7:dd:b5:2d:dd:5d:17:7e:94:4c:3e:db:f8:
51:9f:3f:58:f6:d5:0a:de:2f:71:09:f0:52:dc:da:
48:83:ce:77:53:0b:00:03:06:c3:f9:06:7c:b2:08:
02:45:26:ff:8f:29:c7:4c:9d:2d:f4:f5:f0:83:b8:
58:92:0a:d0:6a:d5:84:98:cc:01:37:60:0d:40:29:
fc:b3:eb:8c:34:6f:cf:cc:2c:ed:f6:ae:56:29:a9:
72:ba:35:c0:aa:df:c2:e4:48:1e:21:e1:ed:84:ce:
1e:9b:f2:1d:0d:03:c7:6f:f7:ce:0f:f8:6c:cc:ee:
36:dd:2a:2f:81:c8:ac:77:cf:6d:95:60:5c:b4:4d:
77:22:60:fd:56:50:51:7f:4d:fe:4a:34:40:ed:9f:
2b:1c:b2:9d:16:81:72:38:3c:fb:dd:46:2c:0f:8b:
15:76:d0:b8:eb:fe:1e:d1:86:45:70:40:3d:c2:00:
b6:5d:44:14:77:33:d2:0d:42:44:9c:cb:3a:12:89:
04:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:D4:43:3F:BB:D9:8B:33:96:FF:24:95:D5:E8:4B:CD:96:9C:A9:56
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/a9RDP7vZizOW_ySV1ehLzZacqVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4140::/29
2a11:e100::/29
Signature Algorithm: sha256WithRSAEncryption
91:9f:2a:29:dd:db:07:73:5a:40:05:23:37:d9:44:ab:af:08:
72:a7:bc:0f:8b:c2:73:94:e4:7f:e6:10:30:cc:a6:09:24:15:
cd:7e:97:e2:83:23:50:2a:70:01:b1:99:4f:4a:21:bd:2a:26:
23:4c:dd:0a:02:0b:aa:b1:be:28:27:cf:78:a1:4d:6c:09:f9:
bd:1a:62:1a:20:61:af:cf:a2:76:70:0b:0e:c4:c2:d0:04:b0:
15:d0:4e:08:a7:23:ce:20:52:df:0f:a5:dc:24:87:07:97:21:
e8:23:bf:83:dc:93:6e:ec:ec:40:8c:3f:1d:3e:ff:cb:8a:21:
90:99:a3:13:f1:a8:7c:c0:19:94:db:96:74:a4:12:ac:74:6e:
67:bb:90:52:22:3b:7f:13:64:ef:5d:ce:70:10:f7:83:c5:5d:
32:6d:84:3c:51:73:7f:a9:a8:18:f2:92:c5:77:a3:a6:a0:32:
1e:56:40:ba:a0:8f:74:b0:01:51:5c:8e:87:7d:fe:39:3a:c4:
58:1f:66:9e:0b:10:02:df:47:c7:2c:f8:de:78:95:f5:e0:d0:
05:71:f5:56:1d:43:18:44:c8:be:14:7f:02:e2:79:81:29:a7:
7a:5c:72:f2:7a:c1:ee:67:36:cf:32:b6:d4:87:80:7f:40:d9:
2d:8d:1b:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 14 23:09:51 2024 by rpki-client on console-ams.rpki-client.org