Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/u7ch3l-U-FRZom3ztoJ3wX7TUQ4.roa
File: u7ch3l-U-FRZom3ztoJ3wX7TUQ4.roa (raw, json)
Hash identifier: RGQBd/QdGH1wXX0rqTNWHQpPQL704kwnl+AAOH+zXi4=
Subject key identifier: BB:B7:21:DE:5F:94:F8:54:59:A2:6D:F3:B6:82:77:C1:7E:D3:51:0E
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 0191830A1A87C07F2FF83D1BA886D47161E0
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/u7ch3l-U-FRZom3ztoJ3wX7TUQ4.roa
Signing time: Sat 24 Aug 2024 06:19:22 +0000
ROA not before: Sat 24 Aug 2024 06:19:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215427
IP address blocks: 2a0e:a780::/29 maxlen: 29
2a10:6c40::/29 maxlen: 29
2a10:9600::/29 maxlen: 29
2a11:ad80::/29 maxlen: 29
2a13:b840::/29 maxlen: 29
2a13:c0c0::/29 maxlen: 29
2a13:c140::/29 maxlen: 29
2a13:d240::/29 maxlen: 29
2a13:d2c0::/29 maxlen: 29
2a13:ddc0::/29 maxlen: 29
2a13:de40::/29 maxlen: 29
2a14:5740::/29 maxlen: 29
2a14:5840::/29 maxlen: 29
2a14:58c0::/29 maxlen: 29
2a14:6ac0::/29 maxlen: 29
2a14:6b40::/29 maxlen: 29
2a14:72c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 22 Sep 2024 19:12:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:83:0a:1a:87:c0:7f:2f:f8:3d:1b:a8:86:d4:71:61:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Aug 24 06:19:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bbb721de5f94f85459a26df3b68277c17ed3510e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:19:57:eb:36:93:95:f8:12:ae:25:29:6f:75:
74:9b:c4:d5:34:a9:55:8e:ba:18:62:75:d4:51:a2:
9a:ee:e5:fd:d4:f9:cc:46:d9:29:0d:08:6c:8f:0d:
3d:9d:05:b6:bb:e9:22:98:cf:8a:a6:7e:22:fc:2c:
81:35:a0:3d:d6:36:c8:6f:3a:a4:ae:a9:43:01:aa:
54:ed:bd:cc:6d:9f:0b:5f:85:57:c9:4a:8c:03:c8:
e6:29:d0:b4:56:fa:1e:02:9f:7d:67:3e:5f:7e:b2:
72:0f:d6:e2:29:87:9c:6d:86:79:72:b4:72:85:57:
65:c9:78:bc:24:68:b7:28:5e:a5:f8:55:9a:1e:22:
eb:2d:1e:dc:82:90:c6:20:80:ce:52:ab:0e:24:90:
e3:b9:42:fe:bc:8e:b3:a7:21:e8:27:1f:32:bb:4c:
27:ab:f3:c9:65:f1:4d:05:ea:01:fc:5c:cf:e8:a9:
e5:fd:d3:5a:fa:0a:76:c2:af:71:43:14:59:f2:b4:
af:85:23:35:34:de:50:65:b0:4f:55:ee:bd:dd:91:
18:77:a5:ed:13:04:41:30:41:e2:37:c1:4e:3c:9d:
c9:fe:02:8e:5f:63:e3:bd:ed:7a:22:b7:fd:3a:e9:
94:9d:a4:15:96:47:4f:3a:01:25:7e:46:59:4b:97:
7c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:B7:21:DE:5F:94:F8:54:59:A2:6D:F3:B6:82:77:C1:7E:D3:51:0E
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/u7ch3l-U-FRZom3ztoJ3wX7TUQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:a780::/29
2a10:6c40::/29
2a10:9600::/29
2a11:ad80::/29
2a13:b840::/29
2a13:c0c0::/29
2a13:c140::/29
2a13:d240::/29
2a13:d2c0::/29
2a13:ddc0::/29
2a13:de40::/29
2a14:5740::/29
2a14:5840::/29
2a14:58c0::/29
2a14:6ac0::/29
2a14:6b40::/29
2a14:72c0::/29
Signature Algorithm: sha256WithRSAEncryption
89:2b:15:99:7e:cf:f2:f9:1a:9b:ef:81:74:d0:5b:b9:94:07:
04:91:7e:dc:ea:79:0e:9f:eb:29:a2:eb:50:c6:e7:e3:e8:8f:
f7:f7:ff:4c:93:77:1a:dd:78:70:28:65:86:fc:a9:4a:58:e3:
58:a4:25:b2:a4:93:70:9a:57:76:e4:96:a9:a2:59:da:96:ce:
48:0f:59:a5:67:eb:19:c3:dc:8b:78:4b:88:dd:22:bc:35:a4:
63:ed:63:bb:e1:f9:63:b7:de:40:f9:8e:a2:e4:aa:94:81:ef:
bb:40:57:c7:35:c1:0c:df:2c:8e:ec:6d:d7:37:25:aa:57:c2:
20:8c:46:1c:e1:0f:43:c9:a4:d7:66:55:6c:2a:c8:2a:f5:21:
51:0c:c3:a9:82:bc:e9:34:1a:55:5a:8f:ad:13:77:9f:e8:a4:
0e:45:41:57:1e:0d:1e:fe:f2:f8:8f:97:0d:68:e3:27:d9:4c:
b4:ce:cf:5b:0c:3d:e7:28:96:3a:9a:89:40:06:b8:e6:93:b5:
f2:32:27:09:eb:bc:54:2b:18:66:fd:b8:61:0f:40:a0:d5:10:
d0:1f:bb:9f:fc:f1:d8:3b:ca:62:f7:db:69:14:cf:d0:b1:eb:
9c:23:9e:ff:f5:39:b0:dc:3b:18:6e:25:b1:f3:75:00:03:0b:
bb:4c:12:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 23 00:52:45 2024 by rpki-client on console-ams.rpki-client.org