Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/ltZPboDkNeelLiHqLEpRdXzM6Xo.roa
File: ltZPboDkNeelLiHqLEpRdXzM6Xo.roa (raw, json)
Hash identifier: GPLQ11kYBPDFwszHOj696kuSrJV3bKZhAg6nvS7535A=
Subject key identifier: 96:D6:4F:6E:80:E4:35:E7:A5:2E:21:EA:2C:4A:51:75:7C:CC:E9:7A
Certificate issuer: /CN=9dc28ae9937ff7e49ec4f1234e53d8b9dd694541
Certificate serial: 01904876DD2E5308667F5A29A330480BA76D
Authority key identifier: 9D:C2:8A:E9:93:7F:F7:E4:9E:C4:F1:23:4E:53:D8:B9:DD:69:45:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ncKK6ZN_9-SexPEjTlPYud1pRUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/ltZPboDkNeelLiHqLEpRdXzM6Xo.roa
Signing time: Mon 24 Jun 2024 04:17:47 +0000
ROA not before: Mon 24 Jun 2024 04:17:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60262
IP address blocks: 2a05:b1c0::/29 maxlen: 29
2a09:3940::/29 maxlen: 29
2a10:3c00::/29 maxlen: 29
2a11:240::/29 maxlen: 29
2a11:2000::/29 maxlen: 29
2a11:22c0::/29 maxlen: 29
2a11:3cc0::/29 maxlen: 29
2a11:4500::/29 maxlen: 29
2a11:4fc0::/29 maxlen: 29
2a11:5680::/29 maxlen: 29
2a11:5e00::/29 maxlen: 29
2a11:7940::/29 maxlen: 29
2a11:99c0::/29 maxlen: 29
2a11:9a80::/29 maxlen: 29
2a11:a400::/29 maxlen: 29
2a11:a700::/29 maxlen: 29
2a11:d3c0::/29 maxlen: 29
2a11:f3c0::/29 maxlen: 29
2a11:f600::/29 maxlen: 29
2a12:880::/29 maxlen: 29
2a12:5f80::/29 maxlen: 29
2a12:9b80::/29 maxlen: 29
2a12:bd00::/29 maxlen: 29
2a12:dc80::/29 maxlen: 29
2a12:ee00::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:49:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:48:76:dd:2e:53:08:66:7f:5a:29:a3:30:48:0b:a7:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dc28ae9937ff7e49ec4f1234e53d8b9dd694541
Validity
Not Before: Jun 24 04:17:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=96d64f6e80e435e7a52e21ea2c4a51757ccce97a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:60:eb:9d:4a:92:10:07:11:a7:d8:0e:df:d7:
92:75:2d:ee:3b:35:da:df:67:cf:6d:4f:43:19:99:
24:d4:d8:89:16:dc:1d:3c:6a:3a:ff:ab:a2:04:44:
4d:5c:08:14:2e:01:fc:b4:5a:32:96:46:c3:b0:ba:
64:a6:b5:e8:0a:5f:b4:ea:1d:25:03:af:10:d6:59:
02:a2:af:ce:65:b0:3c:a5:f0:c1:8a:4a:83:e3:7d:
9b:ce:ca:e0:b3:07:6d:88:bc:7c:be:e2:c4:f1:71:
f5:29:fe:50:d3:3e:04:df:d8:e9:03:a9:67:16:01:
43:b2:93:59:14:85:22:5b:3e:f8:fa:49:c4:0f:b3:
8e:ae:45:de:8c:dc:ca:7e:a4:c2:43:47:83:68:8f:
57:a6:01:78:c1:1b:1c:69:e9:1f:b7:00:e2:3c:f3:
89:17:a8:9e:06:78:7e:70:c4:35:25:b6:32:52:de:
fc:1d:14:a0:fe:31:88:9d:fb:1d:1a:22:2a:0e:29:
54:7e:70:42:e2:5b:6f:1d:cf:9b:85:da:84:09:97:
e2:a2:f3:82:bd:14:ff:95:e1:5b:9e:96:0a:8c:05:
5f:61:b4:78:87:d0:7a:18:43:0f:5c:f9:46:89:b2:
d4:8f:43:59:65:de:aa:fb:bc:a2:ae:0b:7c:d2:08:
ee:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:D6:4F:6E:80:E4:35:E7:A5:2E:21:EA:2C:4A:51:75:7C:CC:E9:7A
X509v3 Authority Key Identifier:
keyid:9D:C2:8A:E9:93:7F:F7:E4:9E:C4:F1:23:4E:53:D8:B9:DD:69:45:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ncKK6ZN_9-SexPEjTlPYud1pRUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/ltZPboDkNeelLiHqLEpRdXzM6Xo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/ncKK6ZN_9-SexPEjTlPYud1pRUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b1c0::/29
2a09:3940::/29
2a10:3c00::/29
2a11:240::/29
2a11:2000::/29
2a11:22c0::/29
2a11:3cc0::/29
2a11:4500::/29
2a11:4fc0::/29
2a11:5680::/29
2a11:5e00::/29
2a11:7940::/29
2a11:99c0::/29
2a11:9a80::/29
2a11:a400::/29
2a11:a700::/29
2a11:d3c0::/29
2a11:f3c0::/29
2a11:f600::/29
2a12:880::/29
2a12:5f80::/29
2a12:9b80::/29
2a12:bd00::/29
2a12:dc80::/29
2a12:ee00::/29
Signature Algorithm: sha256WithRSAEncryption
15:74:94:81:52:fb:a0:f1:45:17:36:fd:46:f4:8d:72:db:e6:
61:37:76:5d:51:a0:78:0c:9a:4a:e7:55:f8:07:b2:1f:85:03:
82:62:0e:d0:63:06:ad:7e:b6:0d:d8:0e:04:f4:ad:e5:c4:63:
f2:aa:91:e3:9c:75:f1:4a:f5:8f:0f:b2:9e:a4:c6:c9:e0:29:
48:a6:2b:c4:4d:51:70:0c:e5:34:8e:1d:22:9f:30:3e:81:a0:
6d:60:8a:36:3d:aa:45:46:87:5c:20:02:75:30:b1:60:94:a5:
5b:4e:f2:db:a2:93:ca:92:d7:ea:d0:0e:c6:12:16:15:36:dc:
a1:0d:e1:6c:44:85:f7:df:e3:5b:22:da:e5:6a:73:ef:ab:14:
d9:bd:27:d3:15:af:5e:72:54:4b:e2:2d:2d:df:03:1e:62:09:
8f:63:29:64:d5:65:8e:de:75:51:62:af:f2:44:5f:90:e3:0e:
bc:72:7e:99:56:6e:81:d4:c4:9a:b3:d1:58:52:00:c6:f4:15:
95:e8:74:73:00:38:f8:24:37:42:4e:0e:75:1f:68:85:a6:6e:
94:51:7b:bb:5a:bc:de:7b:0a:df:eb:f1:50:61:e9:35:ab:8f:
86:c6:ba:08:06:15:97:69:08:44:76:a6:39:7c:e5:79:db:a6:
0b:69:e9:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:27:04 2025 by rpki-client