Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/IZ4j61Qr7wBMwB_Wwsu3fiXKA5E.roa
File: IZ4j61Qr7wBMwB_Wwsu3fiXKA5E.roa (raw, json)
Hash identifier: sX3C7pn3nd2yWjgL5jrr2d3fVKcRt0bHO+tO5iwPTIA=
Subject key identifier: 21:9E:23:EB:54:2B:EF:00:4C:C0:1F:D6:C2:CB:B7:7E:25:CA:03:91
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 018F3F205D4A7093A121C177B36BDFCAEB3E
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/IZ4j61Qr7wBMwB_Wwsu3fiXKA5E.roa
Signing time: Fri 03 May 2024 15:43:56 +0000
ROA not before: Fri 03 May 2024 15:43:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215427
IP address blocks: 2a0e:a780::/29 maxlen: 29
2a10:9600::/29 maxlen: 29
2a13:c0c0::/29 maxlen: 29
2a13:c140::/29 maxlen: 29
2a13:d240::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 06 May 2024 16:05:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3f:20:5d:4a:70:93:a1:21:c1:77:b3:6b:df:ca:eb:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: May 3 15:43:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=219e23eb542bef004cc01fd6c2cbb77e25ca0391
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:cf:6f:28:a3:c8:8c:e6:4a:e9:0c:dc:21:43:
05:b8:ff:8e:7e:aa:c8:97:7a:7c:9b:f3:80:6d:db:
3d:38:f9:d7:cb:e9:9b:28:bb:5e:08:15:cc:08:18:
54:2c:8e:32:55:cd:39:fa:fc:8a:37:4e:a0:e6:29:
24:23:d1:c8:17:fb:90:20:e3:fc:a8:ed:75:e5:67:
a3:30:5e:23:ed:ab:1d:c7:6a:36:cd:b6:99:fd:a0:
06:7e:88:e2:6b:33:e7:8f:ed:5a:5a:e7:59:fb:d3:
ff:94:f2:1e:2d:fe:3f:2b:6b:33:c7:e8:8e:32:51:
ca:8a:32:f3:de:1b:94:74:ab:c3:5b:e4:f8:c5:c0:
8d:4c:61:25:68:43:0b:dd:73:ae:8f:d2:aa:92:a8:
53:e2:f5:b1:a5:cc:fe:bc:0a:83:d0:8a:ac:9d:de:
d3:37:7c:00:c8:43:3a:55:a6:52:c5:a0:c1:31:a3:
d5:d6:31:4f:e6:7c:db:0b:8b:90:12:30:bb:aa:c1:
44:60:0c:dd:67:da:4b:04:19:71:62:2c:d6:0d:b3:
d3:f0:f3:25:f6:69:d2:46:54:d2:cd:37:e8:22:9e:
ff:55:74:b1:1e:3f:84:ce:73:dd:4b:d0:7f:c7:89:
45:7c:38:c6:32:66:a7:26:d2:67:11:41:e2:33:a5:
c2:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:9E:23:EB:54:2B:EF:00:4C:C0:1F:D6:C2:CB:B7:7E:25:CA:03:91
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/IZ4j61Qr7wBMwB_Wwsu3fiXKA5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:a780::/29
2a10:9600::/29
2a13:c0c0::/29
2a13:c140::/29
2a13:d240::/29
Signature Algorithm: sha256WithRSAEncryption
37:8e:a8:56:d5:a7:e0:de:d6:19:95:19:36:61:6b:25:0a:0f:
ab:7a:f1:62:63:90:cb:35:5c:6c:94:c0:bd:e7:77:52:2c:c9:
a0:93:e4:3e:76:c8:ba:1e:d4:eb:33:7f:2a:a0:96:b2:c4:41:
8a:8b:8b:57:d6:fa:ba:5c:67:61:d8:ac:44:cb:3a:4e:c5:f0:
dc:80:6d:94:be:df:e8:05:2d:e6:00:5a:f8:28:14:ac:ac:56:
3e:ce:5a:42:e0:69:b9:f2:a6:72:2d:3d:1f:54:69:6b:f7:2d:
2f:9c:1e:0c:24:7a:f8:66:78:be:0a:5e:98:0d:1f:42:ef:39:
03:af:33:f7:9b:72:31:98:0e:18:a5:47:e5:6a:a5:6b:19:9f:
b1:4f:5b:57:c0:ec:4d:ef:91:09:da:9a:b3:be:f7:ab:17:fc:
57:d4:ab:d4:66:ad:d6:85:0b:c5:18:94:cb:60:5f:4e:13:35:
db:22:17:4f:fa:cb:56:ef:c5:d0:c3:7c:32:4d:6e:aa:6d:49:
35:7f:1c:cc:f4:ce:94:b0:98:39:26:bd:a9:cc:a5:57:e8:b1:
c0:43:e0:57:e5:37:c1:44:c1:bd:1a:fd:ad:ab:45:e5:b6:e4:
5c:9a:04:b3:5d:e7:7d:11:de:54:db:79:73:76:a3:e7:bb:c7:
5c:14:78:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:04 2024 by rpki-client on console-ams.rpki-client.org