Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/v4cqvvKrNOXr0CtpV3CJEUzpAbI.roa
File: v4cqvvKrNOXr0CtpV3CJEUzpAbI.roa (raw, json)
Hash identifier: SJAS7vHyHRlodaxH5g8YBupyxlN8mRQxyDUQXr7ylRA=
Subject key identifier: BF:87:2A:BE:F2:AB:34:E5:EB:D0:2B:69:57:70:89:11:4C:E9:01:B2
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 018FA5524246F1AB8EBCB2A0D9ADA1CC5631
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/v4cqvvKrNOXr0CtpV3CJEUzpAbI.roa
Signing time: Thu 23 May 2024 11:59:42 +0000
ROA not before: Thu 23 May 2024 11:59:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215158
IP address blocks: 2a11:1c80::/29 maxlen: 29
2a11:86c0::/29 maxlen: 29
2a11:a040::/29 maxlen: 29
2a11:b0c0::/29 maxlen: 29
2a11:b700::/29 maxlen: 29
2a11:c680::/29 maxlen: 29
2a11:dac0::/29 maxlen: 29
2a11:e8c0::/29 maxlen: 29
2a11:ea80::/29 maxlen: 29
2a11:fc40::/29 maxlen: 29
2a11:ff40::/29 maxlen: 29
2a12:1040::/29 maxlen: 29
2a12:12c0::/29 maxlen: 29
2a12:2e80::/29 maxlen: 29
2a12:3c00::/29 maxlen: 29
2a12:8580::/29 maxlen: 29
2a12:8a00::/29 maxlen: 29
2a12:9300::/29 maxlen: 29
2a12:d080::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 24 May 2024 12:23:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a5:52:42:46:f1:ab:8e:bc:b2:a0:d9:ad:a1:cc:56:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: May 23 11:59:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bf872abef2ab34e5ebd02b69577089114ce901b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:16:77:f2:93:94:1a:d9:a1:22:e7:6f:d6:03:
56:e6:4b:f4:00:be:f8:2e:93:92:81:da:81:c3:31:
5b:9e:fe:c1:9f:dd:4d:af:3e:aa:1a:1d:a2:12:a4:
2a:8d:de:cb:3f:61:5d:39:59:f5:a1:3b:29:a2:c4:
f0:77:38:e7:30:53:c5:f3:a0:48:c4:d8:f0:2d:9f:
27:b3:7a:b1:37:af:83:1e:75:6f:ba:8b:f2:41:24:
bf:70:ba:99:ec:02:74:ee:de:c1:b6:20:db:eb:6a:
6a:b6:63:1e:51:9d:fb:fb:48:2f:bd:82:a4:26:42:
57:cf:da:97:b8:67:25:44:bb:b5:2e:c3:20:51:cb:
c3:d6:76:d0:d8:89:48:10:ad:47:a6:26:3d:5e:c8:
74:cd:4a:bb:ff:6d:e8:d8:7d:96:35:ec:ea:d6:55:
aa:3a:e3:d7:6e:77:aa:92:23:5f:b9:d5:c3:75:3f:
2a:87:a4:52:24:33:92:26:84:37:2b:d7:e3:cb:d4:
14:5f:07:f8:85:98:e5:aa:32:39:01:e7:82:65:60:
a0:15:ac:d4:7a:2f:bf:d8:9b:29:b7:35:99:2a:7d:
5b:51:a1:72:d8:d6:03:0d:eb:e6:19:1f:51:c9:f6:
30:5c:10:1a:49:f7:51:79:1f:5a:60:e6:c9:f6:61:
07:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:87:2A:BE:F2:AB:34:E5:EB:D0:2B:69:57:70:89:11:4C:E9:01:B2
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/v4cqvvKrNOXr0CtpV3CJEUzpAbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:1c80::/29
2a11:86c0::/29
2a11:a040::/29
2a11:b0c0::/29
2a11:b700::/29
2a11:c680::/29
2a11:dac0::/29
2a11:e8c0::/29
2a11:ea80::/29
2a11:fc40::/29
2a11:ff40::/29
2a12:1040::/29
2a12:12c0::/29
2a12:2e80::/29
2a12:3c00::/29
2a12:8580::/29
2a12:8a00::/29
2a12:9300::/29
2a12:d080::/29
Signature Algorithm: sha256WithRSAEncryption
77:a6:77:7f:b1:c8:53:5b:5d:77:bb:6c:fa:8b:43:8b:eb:9a:
4e:cc:b7:93:83:47:19:5d:39:60:b3:0d:9d:87:8f:43:34:3e:
a9:58:d1:1d:23:95:bb:8e:7c:4f:b9:b9:9c:3d:9d:36:7d:d1:
75:78:cd:ae:94:2d:d9:bc:72:37:d2:e1:98:7b:7c:6e:b0:da:
39:3d:67:95:c9:be:8b:26:4e:29:6f:7a:44:f7:9b:8e:74:a7:
11:56:04:2c:f1:83:10:fc:47:f3:89:1c:aa:f1:fd:08:ce:bb:
09:1c:61:9a:ef:dc:98:6c:b3:f3:de:6c:f6:49:6f:19:1b:0a:
12:ac:d9:40:d0:b0:ab:dd:ee:10:d0:fd:1d:9a:3f:71:f6:3d:
3c:39:fc:5e:05:26:3b:74:92:b0:7f:94:c8:6b:d0:64:a1:b6:
19:ea:91:df:d0:32:1d:5b:9e:ad:04:0a:ac:35:91:14:07:2c:
5d:1f:21:35:82:42:cf:99:f8:71:10:13:87:a7:8a:1c:23:70:
38:ac:34:6d:5c:00:a8:e6:42:80:fb:a2:fb:e8:f8:d3:59:fa:
60:c1:93:2f:2b:76:1c:8a:cd:22:bb:5a:6b:bf:55:da:8b:f5:
a8:d1:0d:40:c4:78:70:b5:fd:c0:02:93:48:6a:3d:20:f8:8c:
6c:d4:dd:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:08 2024 by rpki-client on console-fra.rpki-client.org