Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/ekSU9v4Pfx6P85L49owe9o-F5B8.roa
File: ekSU9v4Pfx6P85L49owe9o-F5B8.roa (raw, json)
Hash identifier: Oe87GI9fGx+EW2EFe0p1G9raTOL7FChhgimdNzHv8V8=
Subject key identifier: 7A:44:94:F6:FE:0F:7F:1E:8F:F3:92:F8:F6:8C:1E:F6:8F:85:E4:1F
Certificate issuer: /CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Certificate serial: 018A961E6AB6EF6468059C235E89DA6A87CA
Authority key identifier: 02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/ekSU9v4Pfx6P85L49owe9o-F5B8.roa
Signing time: Thu 14 Sep 2023 23:54:50 +0000
ROA not before: Thu 14 Sep 2023 23:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208911
IP address blocks: 2a11:8280::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:96:1e:6a:b6:ef:64:68:05:9c:23:5e:89:da:6a:87:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Validity
Not Before: Sep 14 23:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a4494f6fe0f7f1e8ff392f8f68c1ef68f85e41f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f8:5d:d5:3f:f7:f8:0b:f2:9d:8f:05:c0:4f:
1d:5e:e7:78:b2:cc:8c:a9:64:e5:20:d5:3f:28:f3:
26:ff:2f:0b:51:c8:1e:c7:92:08:1a:36:d8:20:78:
86:f9:65:d9:db:76:ed:c2:e1:95:d2:3a:01:41:91:
6d:64:dd:25:44:5c:34:2a:4f:56:04:e7:78:ad:04:
c1:cc:33:98:6d:f9:d6:d5:b3:11:80:bb:17:3b:53:
e6:c2:a5:a9:90:91:7b:2a:34:b8:a3:f2:fc:72:6a:
d6:93:4b:23:4a:ab:b7:bb:d3:31:2e:a6:5e:aa:bf:
0c:b3:65:94:1c:81:b4:90:19:fa:82:44:51:2e:6a:
d6:58:06:e9:10:b5:31:48:23:7c:98:04:43:b6:a0:
a2:eb:4a:f7:8d:b1:9a:79:d7:d9:91:07:25:73:9f:
9d:e6:27:ad:77:26:fb:cf:df:8d:15:91:91:cb:69:
e7:55:2c:5d:76:44:62:a1:63:0c:b7:ff:e2:4d:d8:
ce:46:b1:69:50:40:73:d9:1e:6f:71:6d:c2:d5:32:
61:bf:ec:5b:38:e2:d8:68:07:0a:f6:e6:02:02:4e:
d8:a8:a5:4b:9a:03:ce:31:b1:1c:62:8c:32:c7:0a:
91:2c:f8:e1:56:31:d8:9d:d5:fe:76:4a:39:ac:e8:
fa:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:44:94:F6:FE:0F:7F:1E:8F:F3:92:F8:F6:8C:1E:F6:8F:85:E4:1F
X509v3 Authority Key Identifier:
keyid:02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/ekSU9v4Pfx6P85L49owe9o-F5B8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:8280::/29
Signature Algorithm: sha256WithRSAEncryption
2a:7d:5f:18:47:61:85:08:12:d8:43:8a:89:a2:eb:36:cc:08:
50:94:22:9a:ba:f1:20:b4:84:89:ca:41:11:cd:83:05:58:2a:
9a:f8:63:33:01:50:4e:7f:3d:90:97:f4:4a:9c:7e:5c:cc:3a:
c3:0a:41:bc:99:a5:e9:4c:04:71:e7:4d:54:26:e0:3e:a4:f1:
ec:c6:7a:e9:1c:97:d8:15:ba:79:11:c6:3e:7d:0d:e6:28:fa:
20:1b:7b:43:e2:dd:c2:50:86:ec:da:27:aa:67:b8:d5:34:84:
b2:3b:eb:76:ca:b7:d1:1f:30:fa:08:68:84:a0:f3:53:c5:53:
18:bd:60:0c:b5:06:e0:ff:d6:a3:b0:e8:41:cd:2a:5b:51:0c:
be:4b:7a:40:87:8c:bf:01:4a:6f:83:16:ad:f3:6a:1d:a9:16:
7e:68:52:6c:0b:fe:6f:a4:8b:38:11:22:c0:73:f4:70:31:34:
81:e4:d0:f8:61:90:ba:f1:23:7c:18:f6:c4:e8:c7:b2:c5:42:
12:2a:0e:83:5c:88:fd:a9:c2:50:3c:3f:c3:30:c1:ab:11:07:
67:75:7b:ad:5d:97:a5:0c:9a:65:fa:a9:15:4c:97:22:b9:b3:
82:6f:89:9b:2d:86:4e:db:be:90:c2:4e:d9:0a:65:c7:a8:fe:
06:8c:52:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:12 2024 by rpki-client on console-ams.rpki-client.org