Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/o-2QpKPjimG08Nf5DGm4Kh1f5wg.roa
File: o-2QpKPjimG08Nf5DGm4Kh1f5wg.roa (raw, json)
Hash identifier: wCWKsTuyZbPe7NwziBm7M9PV66+qRU0QgQojVToDbzc=
Subject key identifier: A3:ED:90:A4:A3:E3:8A:61:B4:F0:D7:F9:0C:69:B8:2A:1D:5F:E7:08
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018F9A58D793E9B9CECA7D98DF2AF946FECD
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/o-2QpKPjimG08Nf5DGm4Kh1f5wg.roa
Signing time: Tue 21 May 2024 08:51:04 +0000
ROA not before: Tue 21 May 2024 08:51:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215158
IP address blocks: 2a11:8cc0::/29 maxlen: 29
2a12:18c0::/29 maxlen: 29
2a12:20c0::/29 maxlen: 29
2a12:22c0::/29 maxlen: 29
2a12:2d00::/29 maxlen: 29
2a12:2dc0::/29 maxlen: 29
2a12:3240::/29 maxlen: 29
2a12:4680::/29 maxlen: 29
2a12:4a00::/29 maxlen: 29
2a12:7900::/29 maxlen: 29
2a12:9180::/29 maxlen: 29
2a12:d180::/29 maxlen: 29
2a12:e300::/29 maxlen: 29
2a12:e380::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 21 May 2024 15:24:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:9a:58:d7:93:e9:b9:ce:ca:7d:98:df:2a:f9:46:fe:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: May 21 08:51:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3ed90a4a3e38a61b4f0d7f90c69b82a1d5fe708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:49:64:33:f5:c6:a2:16:2f:cd:1c:52:c3:83:
73:55:f1:24:fb:4d:b3:c8:9d:55:27:87:50:ce:59:
16:aa:27:6b:e9:95:55:fb:53:0f:76:33:98:f7:8e:
e8:87:5c:bf:7d:8d:9b:9c:37:89:69:b7:3a:69:ea:
df:d9:30:41:9b:29:f2:1b:b3:ea:cc:e1:9e:e4:42:
87:e5:ad:b0:ab:dd:ab:bf:df:ae:45:58:c9:9c:1e:
59:80:c9:09:75:0f:73:6c:3d:ab:51:67:91:a7:36:
67:e3:d4:39:57:0a:4a:99:77:94:d1:6e:96:5c:21:
38:85:fd:5b:db:11:b8:f0:79:f3:1a:cc:77:2a:fb:
c7:b3:5a:33:5b:b9:37:1e:73:ac:85:0a:15:47:58:
4d:4a:88:b9:59:7b:73:aa:65:5d:3b:6b:71:50:85:
7c:b8:b9:a4:4a:65:7d:e8:4a:a4:6a:d7:25:9a:0b:
8d:b8:7b:f8:9a:94:55:ce:d1:3a:c4:c4:01:6d:d6:
2f:5e:c3:f3:48:f2:05:4a:c1:77:cb:11:b1:94:a2:
1b:9c:60:7c:75:5a:fe:5b:21:54:f9:6c:32:89:22:
e8:a4:ff:2d:ea:81:9a:0c:ff:c6:53:d4:01:0f:da:
4b:0b:ce:49:92:7a:c9:7c:4a:61:79:62:16:2f:3e:
6d:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:ED:90:A4:A3:E3:8A:61:B4:F0:D7:F9:0C:69:B8:2A:1D:5F:E7:08
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/o-2QpKPjimG08Nf5DGm4Kh1f5wg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:8cc0::/29
2a12:18c0::/29
2a12:20c0::/29
2a12:22c0::/29
2a12:2d00::/29
2a12:2dc0::/29
2a12:3240::/29
2a12:4680::/29
2a12:4a00::/29
2a12:7900::/29
2a12:9180::/29
2a12:d180::/29
2a12:e300::/29
2a12:e380::/29
Signature Algorithm: sha256WithRSAEncryption
74:49:d1:1d:99:92:37:e5:33:77:45:ea:e9:7d:d3:5e:8f:a4:
44:3d:df:e8:a1:0d:98:dc:13:de:48:89:41:c2:f2:21:be:ad:
fc:d3:34:da:46:af:88:56:e8:27:8b:f7:56:ed:07:8d:7b:a4:
eb:8c:0d:5f:8d:aa:e3:af:02:92:4b:c9:b0:b7:bf:04:52:c7:
04:af:12:7b:c2:db:f7:72:ed:07:ce:26:e7:0d:65:99:21:66:
36:b1:e0:c8:77:55:17:12:b2:8c:15:69:ee:ad:8c:b7:bd:a7:
03:a7:93:b7:74:d9:c6:e5:f8:2e:6a:5e:28:54:e1:cc:17:ff:
0b:ee:c3:fa:5b:ba:25:62:98:e2:58:c1:3b:28:ca:46:b1:9b:
0f:19:00:40:34:6b:c2:23:92:b7:87:31:7a:67:4a:a6:47:89:
01:f5:51:97:1a:0e:a9:ab:ee:f4:41:d0:43:83:92:bb:22:58:
8c:9f:f4:a1:a2:32:ad:73:aa:76:be:4d:86:a5:1f:3b:f8:15:
e6:99:38:75:f2:42:95:a2:25:3e:df:29:ce:2a:cd:30:ed:02:
07:dd:95:23:67:85:da:03:61:fd:25:70:00:01:5a:6a:97:e5:
d8:c7:00:ca:f6:2d:81:69:09:28:67:c3:d5:46:69:41:7d:65:
6a:6e:c8:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org