Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/6Y2vrm59VXyGElO9Ww9-3K13V5c.roa
File: 6Y2vrm59VXyGElO9Ww9-3K13V5c.roa (raw, json)
Hash identifier: bF7JznF/bVbxf77aNC35gW48BKblXhzUkerG4N4URAI=
Subject key identifier: E9:8D:AF:AE:6E:7D:55:7C:86:12:53:BD:5B:0F:7E:DC:AD:77:57:97
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 018FAA8E97C8AAFE8C962478D8F0BFCBD029
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/6Y2vrm59VXyGElO9Ww9-3K13V5c.roa
Signing time: Fri 24 May 2024 12:23:42 +0000
ROA not before: Fri 24 May 2024 12:23:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215158
IP address blocks: 2a11:1c80::/29 maxlen: 29
2a11:a040::/29 maxlen: 29
2a11:e8c0::/29 maxlen: 29
2a11:ea80::/29 maxlen: 29
2a11:ff40::/29 maxlen: 29
2a12:1040::/29 maxlen: 29
2a12:12c0::/29 maxlen: 29
2a12:2e80::/29 maxlen: 29
2a12:3c00::/29 maxlen: 29
2a12:8580::/29 maxlen: 29
2a12:8a00::/29 maxlen: 29
2a12:9300::/29 maxlen: 29
2a12:d080::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 04 Jun 2024 18:17:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:aa:8e:97:c8:aa:fe:8c:96:24:78:d8:f0:bf:cb:d0:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: May 24 12:23:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e98dafae6e7d557c861253bd5b0f7edcad775797
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:7f:cf:c2:52:b7:8a:15:65:37:f6:2e:57:45:
dc:a2:68:03:5c:14:74:75:ea:a5:39:9f:b0:1a:b9:
02:ad:d6:a0:db:7a:8f:95:f3:4b:3f:bd:0c:0a:6b:
c0:13:7d:fe:58:41:97:bc:01:88:e0:34:98:ae:35:
4a:f8:1e:7f:53:a1:6c:0e:c2:97:72:41:d1:ae:af:
ca:a1:8b:7a:fe:1a:42:f3:be:22:a2:ce:bd:98:5f:
aa:ab:67:97:16:cc:d8:67:a9:06:55:05:02:03:40:
1d:f3:9f:7e:d9:9b:21:e7:73:f6:89:3b:42:43:97:
31:ac:b3:04:90:c9:a0:fe:11:53:e8:91:40:7d:bc:
42:99:97:26:4f:ec:f7:a0:d1:6b:dc:b3:84:6d:6b:
cc:3b:d1:b0:52:86:82:13:dc:1c:c8:7b:cd:5b:91:
3b:ed:d5:95:00:06:14:53:2c:ee:7c:36:a1:2b:b6:
3b:c9:10:1b:e2:37:56:ad:9e:b8:75:3f:5b:5a:62:
c0:1b:c2:12:55:87:11:b7:88:79:ea:10:2e:38:0d:
c9:dc:7c:2f:06:d5:3c:b4:bb:75:41:02:92:8c:83:
ad:ad:87:47:af:17:d5:fe:6a:3a:6c:c6:e3:8d:fd:
5f:93:bc:21:4f:56:e0:70:b1:62:a9:42:9d:f1:39:
f7:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:8D:AF:AE:6E:7D:55:7C:86:12:53:BD:5B:0F:7E:DC:AD:77:57:97
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/6Y2vrm59VXyGElO9Ww9-3K13V5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:1c80::/29
2a11:a040::/29
2a11:e8c0::/29
2a11:ea80::/29
2a11:ff40::/29
2a12:1040::/29
2a12:12c0::/29
2a12:2e80::/29
2a12:3c00::/29
2a12:8580::/29
2a12:8a00::/29
2a12:9300::/29
2a12:d080::/29
Signature Algorithm: sha256WithRSAEncryption
2c:de:a0:6b:22:62:d9:54:95:a1:65:ca:3d:36:57:fc:9d:e7:
4c:8f:97:c4:77:5f:5c:68:d1:dc:15:1b:07:44:de:e1:d7:31:
43:6a:2a:9f:de:be:f7:f8:e8:20:4f:e1:80:cb:43:28:8e:3c:
68:60:f6:05:da:34:11:de:da:3e:93:5a:f0:c3:61:a8:bb:20:
6b:aa:62:48:7b:a9:3e:fe:03:61:4a:35:53:02:17:7c:89:8e:
be:91:05:eb:45:10:b1:86:f6:8d:3d:54:61:2d:4b:d2:f5:42:
5b:8c:96:52:fb:c3:72:23:91:ba:55:31:77:9e:fe:65:6f:95:
a1:49:21:eb:c1:84:0b:f9:79:d6:bd:e3:dd:17:5a:9d:51:87:
a1:f9:f4:b5:15:83:71:9d:87:58:1d:01:93:01:27:3d:73:d1:
58:50:ee:b1:3b:03:eb:c2:4f:ef:6b:f7:62:8f:f4:1f:b0:19:
64:c8:01:b3:e5:2a:53:bd:70:c2:38:59:47:23:b4:c6:e6:0f:
34:9e:51:b3:64:6e:3e:04:8d:52:6b:8f:b1:5e:db:f3:13:1e:
c6:ec:b7:5a:2a:e2:16:ce:68:a7:79:f9:22:de:b5:ec:04:47:
c8:59:a8:f3:c3:f1:92:dc:58:5b:7a:e4:83:fa:38:3d:d4:8e:
51:c8:7e:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:08 2024 by rpki-client on console-fra.rpki-client.org