Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/lExlEViVoQz5k58Eo6oi-LyFS0o.roa
File: lExlEViVoQz5k58Eo6oi-LyFS0o.roa (raw, json)
Hash identifier: KXrkuY5wDqtuhmxk9lpvx8FgEyYhblmggUbvYJ0zDvU=
Subject key identifier: 94:4C:65:11:58:95:A1:0C:F9:93:9F:04:A3:AA:22:F8:BC:85:4B:4A
Certificate issuer: /CN=99b8fd292c8a1b896b8752344a3da92378f2ae5a
Certificate serial: 018F341B3148F3F0510BA34B3FE8B61E2230
Authority key identifier: 99:B8:FD:29:2C:8A:1B:89:6B:87:52:34:4A:3D:A9:23:78:F2:AE:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/lExlEViVoQz5k58Eo6oi-LyFS0o.roa
Signing time: Wed 01 May 2024 12:22:28 +0000
ROA not before: Wed 01 May 2024 12:22:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214998
IP address blocks: 2a07:5900::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 07 May 2024 11:05:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:34:1b:31:48:f3:f0:51:0b:a3:4b:3f:e8:b6:1e:22:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99b8fd292c8a1b896b8752344a3da92378f2ae5a
Validity
Not Before: May 1 12:22:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=944c65115895a10cf9939f04a3aa22f8bc854b4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b8:77:a6:35:43:70:95:c0:dd:38:4b:23:ac:
7e:a1:1c:6d:8e:e5:87:bc:03:57:c0:5c:ac:e1:3b:
0a:6a:fa:e8:fe:4e:29:85:56:4f:05:63:86:45:41:
6f:22:0e:38:d6:f4:b5:00:fe:62:53:f3:c6:01:10:
cd:83:21:e6:0b:99:61:ab:c1:de:88:88:f0:5a:c3:
c7:37:94:f4:53:33:e8:2a:8e:11:fa:68:9b:16:da:
2f:a1:3b:7d:b6:04:d1:5c:f4:d2:b1:69:0c:4e:bc:
e1:2c:bb:b8:a2:90:98:50:50:b8:04:b1:68:ad:3a:
be:a4:2c:4e:ec:70:93:f7:2c:08:a5:e8:55:95:ce:
8a:ba:59:57:e7:91:dc:16:d7:9a:93:93:71:41:b5:
fe:b8:a4:13:bb:3d:2b:2c:5e:18:24:2c:83:50:9b:
02:f9:c1:57:0d:02:5d:03:62:a2:36:aa:09:cd:52:
1e:9f:6e:b2:1b:c4:d3:dc:49:ad:61:3d:bf:c7:4c:
e4:cc:cd:28:aa:3e:09:60:5e:f1:cd:46:a2:6e:b6:
45:1f:c5:4c:3c:aa:79:0c:cd:77:2f:49:6b:fa:2d:
2a:61:9b:64:69:1f:9b:8f:cc:ac:38:80:75:b8:d1:
8d:2e:c8:0e:41:ff:bd:41:79:8a:d9:5d:41:ab:02:
8c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:4C:65:11:58:95:A1:0C:F9:93:9F:04:A3:AA:22:F8:BC:85:4B:4A
X509v3 Authority Key Identifier:
keyid:99:B8:FD:29:2C:8A:1B:89:6B:87:52:34:4A:3D:A9:23:78:F2:AE:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/lExlEViVoQz5k58Eo6oi-LyFS0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:5900::/29
Signature Algorithm: sha256WithRSAEncryption
af:e1:df:a0:eb:64:ce:5c:2b:67:e7:2b:07:4e:a2:8c:5b:7e:
cb:5e:dd:e4:83:eb:9f:a6:87:0b:5b:6f:0a:c2:b3:d5:66:b3:
03:0e:f2:66:01:22:08:5c:c7:d2:4b:aa:12:1f:a2:3a:a0:90:
1d:83:d4:2e:63:6b:2c:0a:17:bc:25:1f:0e:d4:de:4a:51:79:
47:44:76:af:9d:57:c6:3b:32:df:41:54:c5:fd:f4:b6:d8:a6:
26:82:b9:d4:cf:3a:1a:21:d3:44:c8:fa:ae:ab:86:59:13:0b:
5b:c7:67:16:94:19:7f:60:6d:d1:0a:78:2c:32:08:53:ca:cf:
d7:1d:ac:d2:ac:be:1f:80:84:b3:83:13:cc:e4:58:c1:68:fe:
18:43:7d:b0:d7:9c:82:3a:17:86:70:65:6f:cc:5c:00:4d:a0:
f9:f5:b4:c5:74:ca:78:51:a4:c7:a2:99:d8:88:d1:5a:82:98:
e9:b2:69:d4:81:4a:6a:b0:82:2c:b9:0a:04:ac:8f:ba:c5:3c:
2d:42:14:a4:f5:3a:c7:3c:1f:67:6f:de:c1:bc:26:d8:39:6a:
47:78:4b:31:16:eb:d1:00:f4:41:79:82:34:fc:a2:4c:6f:83:
2a:17:99:ef:a6:08:dd:88:a2:7e:c8:17:16:64:20:dd:2b:bd:
f2:21:20:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:42 2024 by rpki-client on console-fra.rpki-client.org