Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/JfKcHBE42MVX3EwVB20WOXFVmRU.roa
File: JfKcHBE42MVX3EwVB20WOXFVmRU.roa (raw, json)
Hash identifier: ZVXO3HoSP0gSCUQN/JsHNSChGib8nEmYqoMKr6iWCuI=
Subject key identifier: 25:F2:9C:1C:11:38:D8:C5:57:DC:4C:15:07:6D:16:39:71:55:99:15
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018EB4BFD41239C24B563C6073D897FA45E4
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/JfKcHBE42MVX3EwVB20WOXFVmRU.roa
Signing time: Sat 06 Apr 2024 18:50:54 +0000
ROA not before: Sat 06 Apr 2024 18:50:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213220
IP address blocks: 2a14:7b81::/32 maxlen: 32
2a14:7b82::/32 maxlen: 32
2a14:7b83::/32 maxlen: 32
2a14:7b84::/32 maxlen: 32
2a14:7b85::/32 maxlen: 32
2a14:7b86::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 11 Apr 2024 12:18:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:b4:bf:d4:12:39:c2:4b:56:3c:60:73:d8:97:fa:45:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Apr 6 18:50:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=25f29c1c1138d8c557dc4c15076d163971559915
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:5c:9c:b3:ed:86:b1:d7:e2:2b:47:e3:ad:69:
78:4d:d0:7c:5b:e8:84:fd:c9:0c:0f:4b:f8:10:34:
f5:88:7e:9c:38:a7:8c:bc:61:86:cd:f8:fe:b8:98:
52:11:a1:94:f0:47:f6:fa:04:c2:3f:78:ec:8f:d3:
41:da:9a:bb:1b:f9:97:02:a9:da:a3:b1:44:1d:1c:
5c:c1:74:31:65:28:9a:13:84:24:1d:d8:e3:b9:72:
f7:22:45:dc:4f:af:0e:e0:7c:00:dd:55:2b:4b:f6:
93:49:d9:d8:0f:12:3b:3c:e9:96:a3:53:f3:c5:ca:
d1:0a:74:5e:36:57:ea:aa:28:51:56:40:06:67:53:
2e:0a:5c:d2:5f:07:ba:43:5b:79:dc:a3:b0:e1:8b:
f0:61:b7:b2:c8:30:e6:0d:78:98:46:05:59:be:2f:
d1:e6:1b:49:c3:d9:7e:90:30:db:e0:79:47:00:63:
3e:4f:e3:12:64:5f:fc:35:a6:1b:fb:ab:67:da:48:
0b:aa:16:eb:c4:fe:91:21:96:24:9f:f7:fd:5b:3b:
26:b3:6a:2b:64:ea:62:7e:63:0a:84:ca:e9:ac:be:
21:41:81:fa:d8:14:47:20:ab:6a:d6:cd:13:f2:0b:
17:90:93:b0:0a:81:cd:ec:6c:47:36:9f:16:88:ec:
0e:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:F2:9C:1C:11:38:D8:C5:57:DC:4C:15:07:6D:16:39:71:55:99:15
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/JfKcHBE42MVX3EwVB20WOXFVmRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7b81::-2a14:7b86:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
40:cc:ff:8f:72:e5:f3:97:25:c0:f8:3d:a1:9b:3b:9c:c7:c6:
56:cb:2d:6c:8a:66:2a:49:ee:e3:8f:95:b4:38:86:e4:96:a4:
b1:8d:0f:0b:21:5c:7c:60:53:c1:dd:4d:3e:7a:ff:2a:0f:ca:
df:59:ff:9f:4c:f8:67:ac:9e:cc:be:fe:3b:64:a7:cc:be:3b:
73:3e:a7:26:05:95:8b:31:76:c0:2a:0c:7a:60:e6:1f:db:89:
7d:20:cb:b2:9c:a8:c0:1c:55:6c:7b:54:6f:50:89:46:e6:1f:
78:7a:fc:04:30:88:3c:8c:dd:84:54:9a:72:ca:9b:0d:0a:de:
66:b0:60:5b:1c:6d:3e:45:ec:03:a5:73:00:ff:00:2b:94:ac:
d1:4f:0f:8a:a6:3d:9b:61:ca:92:a4:bf:df:c2:37:e8:ef:55:
62:08:6d:85:6d:8a:57:f7:bb:93:db:d7:62:7a:87:8a:7b:15:
2d:f8:54:6f:7a:af:af:b1:96:81:75:cc:17:51:e5:ea:9f:d3:
b8:0d:cc:ec:40:8e:79:8c:a6:5d:ea:e4:d8:cd:29:9e:1e:c8:
69:71:26:c5:b7:9e:0c:85:3a:ea:18:14:9b:59:fd:5b:7b:73:
ce:2c:c1:ed:f2:16:9b:91:97:2a:8e:88:7a:ee:64:c3:6c:04:
f1:f7:b6:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:22 2024 by rpki-client on console-fra.rpki-client.org