Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/IgVy3W6eMf9EXTZAPQTX9PDABPw.roa
File: IgVy3W6eMf9EXTZAPQTX9PDABPw.roa (raw, json)
Hash identifier: 2ZugBSJeHhKTurMLP+wjM5arFT6GZD3XnQX4zmsbdOU=
Subject key identifier: 22:05:72:DD:6E:9E:31:FF:44:5D:36:40:3D:04:D7:F4:F0:C0:04:FC
Certificate issuer: /CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Certificate serial: 018F0C43007E91E1B27BCA7B7CE94F247E7D
Authority key identifier: B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/IgVy3W6eMf9EXTZAPQTX9PDABPw.roa
Signing time: Tue 23 Apr 2024 18:41:08 +0000
ROA not before: Tue 23 Apr 2024 18:41:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213220
IP address blocks: 2a11:8f87::/32 maxlen: 32
2a11:f181::/32 maxlen: 32
2a12:1803::/32 maxlen: 32
2a12:1805::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 28 May 2024 16:24:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:0c:43:00:7e:91:e1:b2:7b:ca:7b:7c:e9:4f:24:7e:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Validity
Not Before: Apr 23 18:41:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=220572dd6e9e31ff445d36403d04d7f4f0c004fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:99:6a:c9:2d:6b:31:6a:61:1b:85:28:4f:4d:
bd:55:0d:df:ae:72:7b:67:fb:0a:e6:6b:46:2e:f0:
a7:e5:98:f4:22:5b:95:b9:60:29:22:ac:40:40:75:
95:7a:0d:5e:9e:41:6b:df:35:92:77:8f:5d:bf:7e:
e7:5f:e7:fe:92:dc:fa:f1:5a:4b:cd:49:fd:f7:b9:
e0:97:8a:d5:cf:d1:71:4b:d5:ac:fb:80:d3:1d:d5:
cb:09:28:56:f7:ff:cc:25:81:07:c4:3f:c1:54:9e:
5f:9d:05:0b:6b:cf:62:eb:f0:bf:37:4d:8b:c3:7a:
bd:72:b2:21:d1:a2:86:7f:80:f1:a4:c3:fa:8c:f3:
d5:b9:26:27:fc:28:72:24:cd:15:a7:c4:6d:54:ff:
1a:06:b9:9c:f1:35:2a:e8:cd:33:52:65:2f:b2:be:
cb:f0:b0:bf:f6:20:e0:d8:94:68:54:bf:ce:54:9e:
26:31:41:a6:a1:b5:5f:c6:51:46:93:99:12:f7:d4:
8c:99:e8:2c:cc:32:e6:8d:ae:40:04:9a:ac:fd:04:
7e:a4:6f:99:da:54:dd:fd:7a:cd:b8:71:68:23:aa:
ec:c3:67:8a:8d:21:83:1f:b8:b8:87:a7:72:8c:02:
7a:fb:b4:9b:d9:ef:df:85:87:82:89:6a:60:b6:17:
0d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:05:72:DD:6E:9E:31:FF:44:5D:36:40:3D:04:D7:F4:F0:C0:04:FC
X509v3 Authority Key Identifier:
keyid:B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/IgVy3W6eMf9EXTZAPQTX9PDABPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:8f87::/32
2a11:f181::/32
2a12:1803::/32
2a12:1805::/32
Signature Algorithm: sha256WithRSAEncryption
00:97:85:ff:fb:a0:74:11:7d:2b:6b:36:e8:7e:5d:72:97:38:
e0:ec:fa:35:12:03:bb:b3:6a:ba:bc:4d:e5:57:c4:df:f5:dc:
4b:a1:55:16:db:87:92:6d:27:2d:50:fc:c4:96:d2:d1:2b:26:
ba:f5:88:ac:99:04:7c:c2:bf:dd:2e:bf:16:03:ce:38:61:50:
8a:27:cc:8f:c4:45:7d:93:d1:26:94:9d:d8:a8:88:aa:1d:c8:
0f:80:fd:43:9a:eb:de:20:57:c1:dd:80:fc:ba:ea:4a:f6:14:
95:76:39:01:31:db:ac:9f:37:56:65:64:59:a7:90:e7:82:cc:
13:32:79:a5:b2:26:cd:e0:2e:6c:b4:08:79:c4:4c:96:f1:d0:
66:47:e9:c5:40:02:f2:15:da:74:07:05:2b:50:eb:94:5e:90:
8b:5c:65:aa:b4:a7:49:2f:27:00:89:45:b0:80:62:08:48:2c:
af:45:94:b3:2a:6c:c1:74:ca:27:a0:c2:df:f6:7d:74:88:2c:
1b:21:03:d1:29:2d:05:2d:de:66:ae:40:4c:ea:09:be:2c:f1:
48:f9:ef:33:b5:ff:3a:f1:ce:1b:7d:b8:03:de:3a:c4:04:bc:
01:6e:42:d4:20:ff:3a:c5:2d:d8:44:7a:96:23:ed:2d:e6:61:
37:f6:cb:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:18 2024 by rpki-client on console-ams.rpki-client.org