Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/264msLef8H-Cf8-wS026Em929v4.roa
File: 264msLef8H-Cf8-wS026Em929v4.roa (raw, json)
Hash identifier: 2VZBUE2W/CfXu2mLDnQdPb8B1eZPVFIXib3JuZQEMfU=
Subject key identifier: DB:AE:26:B0:B7:9F:F0:7F:82:7F:CF:B0:4B:4D:BA:12:6F:76:F6:FE
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 018FF318EC30EA51A728342B7933C5977267
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/264msLef8H-Cf8-wS026Em929v4.roa
Signing time: Fri 07 Jun 2024 14:27:27 +0000
ROA not before: Fri 07 Jun 2024 14:27:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215158
IP address blocks: 2a11:e8c0::/29 maxlen: 29
2a11:ea80::/29 maxlen: 29
2a11:ff40::/29 maxlen: 29
2a12:1040::/29 maxlen: 29
2a12:2e80::/29 maxlen: 29
2a12:3c00::/29 maxlen: 29
2a12:8580::/29 maxlen: 29
2a12:8a00::/29 maxlen: 29
2a12:9300::/29 maxlen: 29
2a12:d080::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 11 Oct 2024 22:17:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f3:18:ec:30:ea:51:a7:28:34:2b:79:33:c5:97:72:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Jun 7 14:27:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dbae26b0b79ff07f827fcfb04b4dba126f76f6fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d9:56:a7:90:00:7b:64:7d:b0:23:08:60:e3:
f6:54:28:1c:ec:12:0c:94:91:3e:60:bb:78:4e:33:
c2:1e:32:54:6f:3a:c8:87:63:52:69:f2:a1:cc:64:
92:de:9e:1c:db:54:a5:66:ae:91:95:1c:86:bc:45:
a7:f6:7a:34:83:bb:d1:61:a7:32:20:e1:a1:da:a0:
36:3f:57:13:b7:88:1b:66:16:58:f1:b8:44:56:de:
77:cf:50:f4:37:a0:07:94:4c:6d:bd:e9:10:9a:3b:
fc:d3:bd:d5:b1:d5:45:e9:50:24:6e:1e:ff:a4:95:
a6:59:c9:f9:fe:91:69:44:79:16:40:53:84:2d:83:
80:cd:c5:c3:e1:6a:d3:af:c9:0f:ae:f7:fd:97:42:
52:63:7b:85:5b:2e:5a:b7:2f:66:cf:ba:75:76:56:
07:08:a7:3b:de:07:ec:9e:9b:20:35:b2:26:61:e8:
4c:56:89:cd:ae:1c:68:bf:96:f2:69:70:7e:f5:59:
b3:2a:bf:b5:3e:8d:9c:b8:92:b8:65:8a:1e:14:d8:
20:24:8b:1b:a9:a0:98:dc:58:38:74:46:9c:c0:8d:
c7:e0:e0:7d:0a:b2:79:66:1f:53:68:be:37:cc:f9:
c6:79:d1:72:0a:b6:1e:ce:0a:ba:61:46:ea:30:77:
be:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:AE:26:B0:B7:9F:F0:7F:82:7F:CF:B0:4B:4D:BA:12:6F:76:F6:FE
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/264msLef8H-Cf8-wS026Em929v4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:e8c0::/29
2a11:ea80::/29
2a11:ff40::/29
2a12:1040::/29
2a12:2e80::/29
2a12:3c00::/29
2a12:8580::/29
2a12:8a00::/29
2a12:9300::/29
2a12:d080::/29
Signature Algorithm: sha256WithRSAEncryption
48:a7:ec:92:7d:45:8e:59:54:77:e9:f6:e7:c2:3d:24:f9:a3:
77:24:9d:f0:be:96:53:fa:7b:04:2d:02:1a:a8:c6:60:56:47:
25:39:3f:5f:c1:ca:14:ce:ed:0c:c0:bc:9a:92:51:63:a3:34:
30:60:9d:8d:c2:ec:b9:f4:fb:7e:1e:e3:00:cc:f7:ab:b1:57:
b5:a3:d6:b9:f7:76:a0:98:6b:11:ae:12:f4:44:e7:97:51:be:
ae:89:6d:1f:97:de:d9:66:36:f5:10:70:5d:69:f2:90:e3:7d:
b7:12:c7:e2:36:68:0d:86:9e:5a:69:31:a4:89:26:87:05:d1:
b0:7c:51:4c:32:75:69:4c:6e:ac:0b:e9:ab:f5:e8:93:c8:8d:
2c:b7:d9:79:7b:de:ef:e4:a4:82:65:88:fc:ef:23:49:e4:5c:
05:6e:00:28:53:f4:19:3c:7c:a1:9b:b1:51:4c:5b:a9:1b:99:
2d:34:7e:91:6b:3e:8d:ae:18:48:ad:20:10:31:5f:20:2d:1b:
c6:1c:a5:43:dd:72:f8:94:fa:1e:f0:1d:e7:bd:15:a1:4e:50:
f1:b7:86:c7:ba:14:f3:cc:ab:ef:c6:cc:74:a8:3a:86:c8:e7:
db:7e:27:98:3b:92:b1:30:05:41:9f:b0:a1:90:96:60:7f:c0:
88:47:16:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 12 00:06:04 2024 by rpki-client on console-fra.rpki-client.org