Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/SPHYdvsOdYbIxJfZRJjz7mdxFoY.roa
File: SPHYdvsOdYbIxJfZRJjz7mdxFoY.roa (raw, json)
Hash identifier: cm6BTKf3X1wbPztL6zlUg8V1i4PwEWfWPWlMYoBjykk=
Subject key identifier: 48:F1:D8:76:FB:0E:75:86:C8:C4:97:D9:44:98:F3:EE:67:71:16:86
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018EBD5FBF3839D9267264AFD835368755F4
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/SPHYdvsOdYbIxJfZRJjz7mdxFoY.roa
Signing time: Mon 08 Apr 2024 11:02:32 +0000
ROA not before: Mon 08 Apr 2024 11:02:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215158
IP address blocks: 2a09:fa00::/29 maxlen: 29
2a0d:6bc0::/29 maxlen: 29
2a0d:8080::/29 maxlen: 29
2a11:1740::/29 maxlen: 29
2a12:6140::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 08 Apr 2024 17:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:bd:5f:bf:38:39:d9:26:72:64:af:d8:35:36:87:55:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Apr 8 11:02:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=48f1d876fb0e7586c8c497d94498f3ee67711686
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:39:24:a4:b9:6e:3f:5c:56:b3:9f:d8:02:65:
47:4f:00:8e:9d:a5:da:05:ce:6b:25:c2:85:06:7a:
30:84:c4:a4:24:0d:b0:ce:83:f2:41:8e:49:d5:dd:
84:7d:9e:4a:80:b7:af:ac:46:f1:36:13:a5:0c:f1:
ed:30:b0:e6:f4:54:9e:f9:cf:6e:d2:33:4f:0b:3e:
e4:91:47:84:39:a8:a3:29:e0:86:71:ad:bf:7c:8c:
91:c8:aa:96:c6:15:52:b7:9d:e3:ba:21:93:e4:3f:
a9:25:21:29:f1:01:59:5d:58:6b:c3:44:e9:91:7d:
e9:8b:be:1d:fb:6d:1e:7a:56:75:d7:6b:96:a1:31:
ea:a1:07:c0:8e:ce:49:2f:34:ec:2c:76:2d:f0:4d:
5d:09:60:ca:2e:92:b3:9c:63:b1:82:94:45:b8:57:
b9:0f:6f:76:6e:5c:b0:f3:92:de:36:14:ca:f7:99:
bb:67:c7:80:13:f4:e8:82:27:34:9d:07:c5:3b:f8:
40:86:bd:eb:a0:8b:c9:ff:3a:93:ca:2a:b7:d0:97:
77:26:66:32:ca:3c:f8:9b:1b:1c:5d:0c:43:98:8e:
19:69:f6:6f:5a:cb:d1:b5:4f:c1:e7:ee:62:d4:eb:
7c:9c:c3:bc:0b:f4:6f:43:24:a6:dc:e0:f6:18:33:
e8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:F1:D8:76:FB:0E:75:86:C8:C4:97:D9:44:98:F3:EE:67:71:16:86
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/SPHYdvsOdYbIxJfZRJjz7mdxFoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:fa00::/29
2a0d:6bc0::/29
2a0d:8080::/29
2a11:1740::/29
2a12:6140::/29
Signature Algorithm: sha256WithRSAEncryption
24:9a:ee:5d:0d:21:b2:07:99:86:00:12:1d:c9:ad:0e:0c:b3:
b9:6b:87:2f:56:78:96:8a:78:a9:52:0c:28:1d:28:bf:23:f7:
f9:25:74:c4:96:2b:3e:d7:4e:26:d2:bb:f1:c5:99:28:1a:b0:
0f:7a:86:50:c5:19:fe:2c:85:2d:f5:7a:32:62:91:17:d7:fb:
26:d2:1f:0e:19:6f:b5:ef:ff:c5:02:f8:ac:5d:c3:b9:c6:1b:
ee:44:31:5b:64:13:52:20:c5:16:f3:f1:00:b5:fa:65:de:96:
06:0d:77:ac:3b:92:72:09:67:81:a5:3e:3f:b2:56:00:ac:d5:
47:d5:2b:63:4c:a7:ec:65:85:79:fd:c9:c9:09:54:00:85:05:
23:f9:79:32:1d:39:fe:93:ec:45:06:d9:83:c3:a8:72:9a:25:
99:57:38:46:14:81:49:66:76:62:3e:03:5a:9c:73:b7:f6:a2:
80:ba:a8:22:c3:1f:32:5b:17:6b:02:60:4a:ce:70:de:1f:8b:
10:9b:ec:40:0e:21:3b:f3:bf:e6:aa:26:1c:b3:52:9d:ad:eb:
90:5b:1a:0b:62:a4:e3:66:13:e8:87:ee:cb:79:64:10:02:7f:
8a:4a:e1:cb:d0:3f:3d:08:10:6b:35:fe:a3:e4:fd:6f:3b:9b:
3c:3a:0c:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:22 2024 by rpki-client on console-fra.rpki-client.org