Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/4e52f1-13b2-45df-8a43-1a39e6a6de93/1/LORKBC4DabhWkWWk6gpiDyGCARg.roa
File: LORKBC4DabhWkWWk6gpiDyGCARg.roa (raw, json)
Hash identifier: QSgjb5cgrLvObkmzJwHE6LnDl6PIzUAjOp65fNcM2D0=
Subject key identifier: 2C:E4:4A:04:2E:03:69:B8:56:91:65:A4:EA:0A:62:0F:21:82:01:18
Certificate issuer: /CN=cddbefba8fe3c1f668c8444384fe4a3a9f4d87f1
Certificate serial: 01904A12A5EDD4517FE5468B37AD74C60321
Authority key identifier: CD:DB:EF:BA:8F:E3:C1:F6:68:C8:44:43:84:FE:4A:3A:9F:4D:87:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zdvvuo_jwfZoyERDhP5KOp9Nh_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/4e52f1-13b2-45df-8a43-1a39e6a6de93/1/LORKBC4DabhWkWWk6gpiDyGCARg.roa
Signing time: Mon 24 Jun 2024 11:47:34 +0000
ROA not before: Mon 24 Jun 2024 11:47:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213220
IP address blocks: 2a11:66c1::/32 maxlen: 32
2a11:66c3::/32 maxlen: 32
2a12:cc02::/32 maxlen: 32
2a12:cc04::/32 maxlen: 32
2a12:cc06::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 09 Aug 2024 09:50:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4a:12:a5:ed:d4:51:7f:e5:46:8b:37:ad:74:c6:03:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cddbefba8fe3c1f668c8444384fe4a3a9f4d87f1
Validity
Not Before: Jun 24 11:47:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2ce44a042e0369b8569165a4ea0a620f21820118
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d7:fd:f4:1d:f0:3c:f4:78:67:a5:7d:f8:8a:
52:7d:a9:dd:cb:16:ce:c0:fb:56:1a:d6:22:64:ef:
ba:7b:6a:78:1a:f1:4d:02:74:eb:85:61:24:d9:18:
95:6b:1b:79:2c:6e:87:6f:97:49:75:98:43:5b:c3:
fa:3b:a8:80:81:e1:32:c7:64:bb:88:f2:9e:16:ce:
10:57:00:e1:f6:28:2c:d2:bb:09:25:9f:ef:c6:30:
fa:7b:be:09:f6:b2:e6:39:d6:91:cc:4e:c0:e0:c1:
dd:ec:89:62:6a:50:b9:3a:8c:06:77:ab:73:4a:e3:
0b:a7:38:b2:78:d0:c2:d4:01:13:0b:2d:62:2d:7c:
32:cd:19:e2:fb:2a:9b:28:bc:20:90:dc:11:c6:ee:
bc:ff:60:55:48:6e:04:74:25:c5:eb:4c:4a:ce:1f:
37:70:a5:d1:74:ea:fc:d9:96:32:7b:9b:66:eb:d6:
69:48:29:5c:bc:46:97:18:bb:5e:41:cf:58:4d:7e:
85:ed:d1:9e:00:76:17:bb:b0:5c:26:6e:88:27:aa:
98:4d:4d:3d:57:a1:cc:3b:59:de:c3:fb:bd:3e:6c:
43:2b:b3:f2:eb:77:85:81:ff:07:32:c7:77:39:08:
48:34:2d:f0:00:58:3e:b4:ba:df:cc:51:dd:a1:45:
00:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:E4:4A:04:2E:03:69:B8:56:91:65:A4:EA:0A:62:0F:21:82:01:18
X509v3 Authority Key Identifier:
keyid:CD:DB:EF:BA:8F:E3:C1:F6:68:C8:44:43:84:FE:4A:3A:9F:4D:87:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zdvvuo_jwfZoyERDhP5KOp9Nh_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/4e52f1-13b2-45df-8a43-1a39e6a6de93/1/LORKBC4DabhWkWWk6gpiDyGCARg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/4e52f1-13b2-45df-8a43-1a39e6a6de93/1/zdvvuo_jwfZoyERDhP5KOp9Nh_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:66c1::/32
2a11:66c3::/32
2a12:cc02::/32
2a12:cc04::/32
2a12:cc06::/32
Signature Algorithm: sha256WithRSAEncryption
04:b2:94:29:19:80:18:9e:64:ab:6e:c4:78:9c:bb:74:72:b8:
ec:f5:ad:1e:9e:dd:1f:8d:97:f5:59:29:7c:e0:59:dd:64:28:
42:ed:07:92:93:94:cc:7b:36:f1:da:1b:80:fb:e1:98:07:2c:
17:6a:95:80:9a:ef:ad:9e:61:49:07:ac:f6:53:9b:47:61:aa:
4e:d4:ef:a7:c9:39:20:82:3c:be:0c:d2:a1:81:37:13:11:2b:
d2:21:9a:e7:44:6a:5f:5e:42:e7:65:ec:e2:8c:a0:4e:df:17:
d2:41:27:aa:d0:71:3c:89:cf:ae:92:4f:70:b0:e8:15:35:46:
10:5b:39:63:e1:21:c3:ea:cd:4b:9e:e5:3e:71:2d:10:3b:90:
fc:2e:a1:82:c0:c6:1a:b1:cb:14:b1:7e:b1:fc:84:1f:0b:5a:
53:75:fb:dc:60:86:5e:80:e6:0c:3e:b1:e9:70:b1:41:e8:78:
a0:14:90:30:57:dc:50:7a:3c:e2:a1:72:07:ab:ab:82:cf:b0:
88:12:ae:6d:05:d4:3d:5c:28:71:d0:71:de:47:b2:44:c0:b9:
b6:7c:d0:c8:03:64:a8:24:47:1b:c2:d2:8b:98:5b:4b:86:87:
ff:9a:57:63:24:ae:fc:1a:3e:cf:15:2c:f2:49:7d:f7:2c:09:
e5:ea:ae:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 9 13:17:21 2024 by rpki-client on console-ams.rpki-client.org