Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/K90RoMfIVvucpeTBs8jkwk3SEV8.roa
File: K90RoMfIVvucpeTBs8jkwk3SEV8.roa (raw, json)
Hash identifier: yaU5SnHW4yDalGfg9ST7LnrYdzdDkVAj+l3ncs7oTlM=
Subject key identifier: 2B:DD:11:A0:C7:C8:56:FB:9C:A5:E4:C1:B3:C8:E4:C2:4D:D2:11:5F
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018DD5002F3B133394C08442DD66B064D03F
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/K90RoMfIVvucpeTBs8jkwk3SEV8.roa
Signing time: Fri 23 Feb 2024 08:06:15 +0000
ROA not before: Fri 23 Feb 2024 08:06:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60262
IP address blocks: 2a06:6ec0::/29 maxlen: 29
2a0e:6c40::/29 maxlen: 29
2a0e:8780::/29 maxlen: 29
2a0e:a280::/29 maxlen: 29
2a0e:a3c0::/29 maxlen: 29
2a0e:a580::/29 maxlen: 29
2a0e:bac0::/29 maxlen: 29
2a0e:be80::/29 maxlen: 29
2a0e:c180::/29 maxlen: 29
2a0e:c740::/29 maxlen: 29
2a0e:ee80::/29 maxlen: 29
2a0f:a40::/29 maxlen: 29
2a0f:f40::/29 maxlen: 29
2a0f:fc0::/29 maxlen: 29
2a0f:15c0::/29 maxlen: 29
2a0f:32c0::/29 maxlen: 29
2a0f:3340::/29 maxlen: 29
2a0f:33c0::/29 maxlen: 29
2a0f:3440::/29 maxlen: 29
2a0f:34c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 23 Jun 2024 04:55:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d5:00:2f:3b:13:33:94:c0:84:42:dd:66:b0:64:d0:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Feb 23 08:06:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2bdd11a0c7c856fb9ca5e4c1b3c8e4c24dd2115f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e6:dd:a9:8e:d0:29:7d:ef:93:3a:9e:6d:cb:
64:39:32:51:48:0c:4f:4b:16:e5:02:77:05:6b:0a:
6f:f6:ea:67:30:d6:b2:6b:17:13:bd:4c:7d:c6:9b:
4a:1c:a4:43:ed:8e:97:3d:24:fc:12:fc:33:57:83:
f8:ba:b4:cd:e8:9f:04:fb:c2:19:5e:1f:0a:10:1a:
ef:01:6d:f2:52:5b:28:4f:ac:91:58:3e:59:3b:28:
02:c5:bb:b2:a3:b8:d9:12:95:b4:11:75:d0:8e:09:
7e:f6:f3:6c:1b:91:7c:f7:a2:6d:68:07:81:a8:45:
d1:8f:68:ac:d9:98:63:d0:53:90:83:96:29:1b:96:
9b:c2:30:23:25:ab:7f:e4:03:a3:02:b0:b6:cc:0d:
7a:0c:a5:09:4f:29:e4:56:27:d6:a1:94:98:8f:c8:
f1:bd:67:e8:34:ca:7f:af:d0:32:8d:0f:38:fb:21:
9b:b9:8c:77:c7:db:5a:f6:08:f3:c3:6e:5e:27:ef:
89:18:b6:c7:94:f5:ec:3d:f4:61:ac:3c:87:55:51:
7b:44:57:0b:1e:35:e2:b2:55:bd:e0:15:2c:21:0c:
00:86:d7:8c:5e:bc:76:31:eb:85:56:bc:69:a5:df:
dc:d9:e6:ee:4a:0d:ce:95:24:67:6f:5b:ce:72:24:
dc:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:DD:11:A0:C7:C8:56:FB:9C:A5:E4:C1:B3:C8:E4:C2:4D:D2:11:5F
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/K90RoMfIVvucpeTBs8jkwk3SEV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:6ec0::/29
2a0e:6c40::/29
2a0e:8780::/29
2a0e:a280::/29
2a0e:a3c0::/29
2a0e:a580::/29
2a0e:bac0::/29
2a0e:be80::/29
2a0e:c180::/29
2a0e:c740::/29
2a0e:ee80::/29
2a0f:a40::/29
2a0f:f40::/29
2a0f:fc0::/29
2a0f:15c0::/29
2a0f:32c0::/29
2a0f:3340::/29
2a0f:33c0::/29
2a0f:3440::/29
2a0f:34c0::/29
Signature Algorithm: sha256WithRSAEncryption
32:2a:72:99:d5:01:20:e4:2d:fb:2a:e5:76:2f:56:85:fd:b7:
fa:73:49:9f:15:84:86:e5:72:67:3a:36:d1:7a:7c:e8:67:4c:
8a:7e:e0:b5:29:3b:be:cc:37:d3:3c:de:c9:81:12:0e:f6:ba:
0a:38:e0:37:53:16:59:f7:b3:8c:b2:1f:5a:f1:3f:df:5d:14:
5c:ce:ce:24:f7:76:14:f9:b2:81:89:c4:dd:38:bc:c9:40:44:
86:ba:eb:56:3b:d5:47:4b:4f:df:a1:11:6b:db:c2:9a:29:d7:
3f:e1:66:b3:b9:bf:7d:da:78:1f:05:5e:fb:3e:d4:46:cb:34:
4b:a1:ed:08:7f:1f:b3:4f:08:02:28:04:89:e6:3e:36:b6:ac:
27:f7:d0:58:70:6f:51:10:5c:14:f0:9a:da:ff:66:90:bf:fd:
8a:a9:0b:46:cd:1c:db:a5:0a:13:ec:19:78:0d:d2:9c:34:18:
97:b5:a4:22:27:01:d4:18:47:e0:54:9d:c2:7f:49:0e:80:e9:
82:8a:c2:37:48:86:09:83:b9:d0:12:7d:8a:e7:e9:7d:9f:10:
fe:ae:c2:60:1a:75:3d:d6:78:de:76:a9:b5:59:40:43:24:85:
5f:9d:d8:6c:a2:8c:2d:15:19:4a:d5:d8:09:c6:5f:7e:8b:cd:
d2:82:da:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 05:39:16 2024 by rpki-client on console-fra.rpki-client.org