Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/__MicPSe4kcMVTPD0awNacoXhbU.roa
File: __MicPSe4kcMVTPD0awNacoXhbU.roa (raw, json)
Hash identifier: LALQZCFhyujEBRPkx+ztU7oKeJcnyQZiNk1TbWY3YCQ=
Subject key identifier: FF:F3:22:70:F4:9E:E2:47:0C:55:33:C3:D1:AC:0D:69:CA:17:85:B5
Certificate issuer: /CN=76670236cd0e038684a33194bde7d4b95adc66f7
Certificate serial: 018E2D6EE0F761C329694CA3DE3F88F658CB
Authority key identifier: 76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/__MicPSe4kcMVTPD0awNacoXhbU.roa
Signing time: Mon 11 Mar 2024 12:13:44 +0000
ROA not before: Mon 11 Mar 2024 12:13:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215540
IP address blocks: 2a05:541:102::/48 maxlen: 48
2a05:541:103::/48 maxlen: 48
2a05:541:104::/48 maxlen: 48
2a05:541:105::/48 maxlen: 48
2a05:541:106::/48 maxlen: 48
2a05:541:107::/48 maxlen: 48
2a05:541:108::/48 maxlen: 48
2a05:541:109::/48 maxlen: 48
2a05:541:110::/48 maxlen: 48
2a05:541:111::/48 maxlen: 48
2a05:541:112::/48 maxlen: 48
2a05:541:113::/48 maxlen: 48
2a05:541:114::/48 maxlen: 48
2a05:541:116::/48 maxlen: 48
2a05:541:117::/48 maxlen: 48
2a05:541:118::/48 maxlen: 48
2a05:541:119::/48 maxlen: 48
2a05:541:121::/48 maxlen: 48
2a05:541:122::/48 maxlen: 48
2a05:541:123::/48 maxlen: 48
2a05:541:124::/48 maxlen: 48
2a05:541:125::/48 maxlen: 48
2a05:541:126::/48 maxlen: 48
2a05:541:127::/48 maxlen: 48
2a05:541:129::/48 maxlen: 48
2a05:541:131::/48 maxlen: 48
2a05:541:133::/48 maxlen: 48
2a05:541:141::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 18 Mar 2024 11:15:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:2d:6e:e0:f7:61:c3:29:69:4c:a3:de:3f:88:f6:58:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76670236cd0e038684a33194bde7d4b95adc66f7
Validity
Not Before: Mar 11 12:13:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fff32270f49ee2470c5533c3d1ac0d69ca1785b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:89:65:88:d1:7e:67:15:35:83:90:f3:83:91:
65:04:65:02:63:0b:3c:1c:59:64:5c:e5:27:b8:54:
73:b8:14:33:6a:99:c8:3b:ff:72:0a:84:a0:c4:49:
75:42:d0:e9:99:35:89:a7:66:a7:ee:5c:de:2c:be:
24:08:46:24:d7:6b:37:59:a2:7b:14:44:9a:45:a5:
16:0c:8c:05:0d:a9:8f:3a:32:b0:19:1d:b3:4e:7e:
27:48:0f:32:ff:e6:c7:66:1a:1b:af:69:17:f8:88:
d5:bc:b3:6c:0c:01:5e:19:c0:44:9c:6a:a1:1d:45:
74:ef:b9:95:07:16:e7:0b:18:83:a1:cb:b7:fc:39:
95:fe:36:2b:ea:23:0a:7d:a4:17:94:84:5c:69:9b:
cb:44:e4:09:8f:91:6e:58:91:00:cd:78:0f:dd:24:
dc:d6:1d:7e:67:19:4d:5d:7c:76:70:c2:88:2b:0d:
0f:45:58:37:81:03:3f:a4:16:d7:32:46:2e:58:7c:
87:07:42:c5:30:fe:e3:55:a2:ad:87:f9:93:25:2e:
64:40:d6:d7:61:21:d9:26:4f:45:21:e0:7c:0e:ee:
a5:ea:de:f3:e4:91:eb:8f:49:b9:7a:46:30:aa:a3:
9c:09:97:07:c4:97:54:11:2f:6c:2b:3d:8f:7c:38:
da:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:F3:22:70:F4:9E:E2:47:0C:55:33:C3:D1:AC:0D:69:CA:17:85:B5
X509v3 Authority Key Identifier:
keyid:76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/__MicPSe4kcMVTPD0awNacoXhbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/dmcCNs0OA4aEozGUvefUuVrcZvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:541:102::-2a05:541:109:ffff:ffff:ffff:ffff:ffff
2a05:541:110::-2a05:541:114:ffff:ffff:ffff:ffff:ffff
2a05:541:116::-2a05:541:119:ffff:ffff:ffff:ffff:ffff
2a05:541:121::-2a05:541:127:ffff:ffff:ffff:ffff:ffff
2a05:541:129::/48
2a05:541:131::/48
2a05:541:133::/48
2a05:541:141::/48
Signature Algorithm: sha256WithRSAEncryption
75:65:3a:bc:dc:65:39:f1:06:f1:94:3d:67:85:86:47:f8:8a:
22:1d:58:fe:40:91:03:27:b7:9b:c3:03:db:cc:cd:4c:5b:30:
9d:a2:07:1a:87:27:8c:8f:92:70:77:7a:3b:18:71:0e:3a:20:
6c:da:62:9d:92:5d:67:f8:36:dc:72:f3:c4:0d:be:cb:94:2d:
7c:0b:27:3e:0a:e1:44:6b:81:54:cd:04:4b:78:44:77:6d:4f:
af:1d:19:1e:2f:0c:5a:4d:4a:13:97:aa:ea:59:2f:af:3d:04:
89:e4:ea:25:80:99:e8:f0:c4:63:1a:d5:1f:fa:27:20:90:23:
07:d1:57:51:0a:a2:2a:0d:3c:11:be:22:44:b3:21:83:02:75:
6f:e7:22:a1:73:34:0e:be:be:4d:db:44:f7:bf:90:4b:b3:d2:
e4:d4:ad:3c:52:0e:12:1e:c0:6e:fa:eb:7c:be:48:87:b2:0e:
4c:52:5e:3c:88:30:bc:7d:35:4c:5c:3d:28:ea:a3:2d:6f:e3:
4c:d7:38:7e:02:42:cb:69:07:85:6b:bf:81:ff:5c:b1:1d:2a:
a7:55:41:02:79:0e:e0:46:1d:61:f8:27:ab:27:3d:3e:b7:c3:
f8:74:0f:4b:18:9b:e4:5b:b7:e8:9e:f7:5d:6e:36:eb:17:78:
f6:1b:64:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 18 14:24:01 2024 by rpki-client on console-ams.rpki-client.org