Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/eswJkYX8rV9GJeQQRE6d1eMsiuU.roa
File: eswJkYX8rV9GJeQQRE6d1eMsiuU.roa (raw, json)
Hash identifier: S/bBwYeRujJHFwtQbshPBfs1DE865IADybxYqEGBbfE=
Subject key identifier: 7A:CC:09:91:85:FC:AD:5F:46:25:E4:10:44:4E:9D:D5:E3:2C:8A:E5
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018FE4BC2A09F340E50AB5B5D6D78F047780
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/eswJkYX8rV9GJeQQRE6d1eMsiuU.roa
Signing time: Tue 04 Jun 2024 19:31:27 +0000
ROA not before: Tue 04 Jun 2024 19:31:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215158
IP address blocks: 2a09:1040::/29 maxlen: 29
2a0d:e440::/29 maxlen: 29
2a0e:9c0::/29 maxlen: 29
2a11:20c0::/29 maxlen: 29
2a11:2f80::/29 maxlen: 29
2a11:3dc0::/29 maxlen: 29
2a11:6140::/29 maxlen: 29
2a11:6700::/29 maxlen: 29
2a11:8c40::/29 maxlen: 29
2a11:8cc0::/29 maxlen: 29
2a11:a0c0::/29 maxlen: 29
2a11:a800::/29 maxlen: 29
2a12:1ec0::/29 maxlen: 29
2a12:20c0::/29 maxlen: 29
2a12:3340::/29 maxlen: 29
2a12:d180::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 05 Jun 2024 12:07:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e4:bc:2a:09:f3:40:e5:0a:b5:b5:d6:d7:8f:04:77:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Jun 4 19:31:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7acc099185fcad5f4625e410444e9dd5e32c8ae5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f7:eb:71:90:cd:f1:bc:f9:7e:6c:38:04:4d:
13:41:79:03:89:ae:d2:04:aa:d8:99:60:6f:23:fe:
6f:17:88:0e:a7:a1:af:e0:ee:2f:98:f1:20:01:64:
77:d1:ba:e7:ae:d2:87:22:bc:6c:48:d7:f5:94:9b:
e9:67:00:29:3b:0e:8e:dd:b6:97:cc:79:30:ee:8a:
18:4d:22:8a:ec:27:7b:1c:7a:64:61:f8:0a:28:2c:
98:29:fc:3d:2b:c2:8a:f2:88:14:e0:98:0b:85:d5:
69:52:a3:56:6a:d7:10:06:9e:3b:1f:1f:b5:94:36:
67:a1:1c:76:a6:c8:ce:1e:1c:e5:74:56:89:c3:b0:
76:62:d9:2f:d1:21:e4:04:7b:d9:b6:5f:2a:64:13:
d5:e9:ef:c8:4e:f0:28:01:83:9b:f0:ce:77:96:eb:
b7:33:18:d0:f5:b1:03:a9:85:41:38:e7:5f:13:da:
a3:d2:73:36:98:c8:d5:00:d5:fb:3f:d9:b3:7d:c2:
a0:a2:3d:fe:88:78:40:f9:f5:ea:97:bd:aa:e4:7b:
94:35:5c:ef:d8:4e:57:16:46:a5:27:be:77:e0:0c:
8d:ff:ab:5a:9d:2c:75:c3:cf:45:2e:e6:48:58:c2:
c0:d5:1c:25:9f:d2:72:ad:6e:3e:dc:c4:61:ec:6c:
3e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:CC:09:91:85:FC:AD:5F:46:25:E4:10:44:4E:9D:D5:E3:2C:8A:E5
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/eswJkYX8rV9GJeQQRE6d1eMsiuU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:1040::/29
2a0d:e440::/29
2a0e:9c0::/29
2a11:20c0::/29
2a11:2f80::/29
2a11:3dc0::/29
2a11:6140::/29
2a11:6700::/29
2a11:8c40::/29
2a11:8cc0::/29
2a11:a0c0::/29
2a11:a800::/29
2a12:1ec0::/29
2a12:20c0::/29
2a12:3340::/29
2a12:d180::/29
Signature Algorithm: sha256WithRSAEncryption
91:86:9a:53:85:c0:0f:e6:ce:01:36:1c:22:b9:a5:e2:84:de:
80:8c:9f:e3:09:f7:1a:10:b4:7d:70:f0:7e:7b:89:32:24:5e:
cb:d1:fd:d6:f7:7d:e9:4c:27:f6:6f:ea:08:39:87:35:c5:0d:
1a:dd:23:c3:ad:eb:7f:91:eb:0b:67:85:63:32:90:8f:0a:2a:
3e:ac:55:3e:9a:b7:9c:d6:09:66:ba:12:84:4e:a9:14:d6:d0:
c7:d5:aa:70:61:6d:4a:a9:a3:77:14:2f:9d:0b:5a:b5:89:af:
fd:eb:b8:0d:e2:a9:d9:6d:e8:35:3d:a0:1e:2f:5b:65:94:19:
07:9f:f4:9c:cc:5a:50:6d:0d:2e:b5:e0:ab:52:76:75:1e:e1:
1e:e7:4b:7d:0b:74:5e:7d:d2:be:69:58:33:9e:23:78:97:4d:
d5:a6:2b:e7:f9:34:b1:6a:29:47:02:1d:81:ab:cf:41:ca:5a:
4b:5e:9e:67:2a:f5:8b:cd:29:1a:5e:ec:1c:05:38:5d:99:ab:
78:ee:3f:5d:a9:50:ef:fe:67:c5:5f:74:e1:2d:75:e9:af:8c:
f0:9c:4a:3b:90:d9:c3:4f:4f:fc:6e:78:d3:8a:d5:3b:87:09:
d5:79:03:0d:d2:d6:7b:38:ee:a4:76:19:15:2a:92:1d:0d:27:
78:c4:76:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:49 2024 by rpki-client on console-ams.rpki-client.org