Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/vRs9UCdd1s8UEGw7IPKfonH6LRA.roa
File: vRs9UCdd1s8UEGw7IPKfonH6LRA.roa (raw, json)
Hash identifier: rJLN9+tigIiYztsIBHyOlT9cZPBNfzhD/bzzqT/98Mo=
Subject key identifier: BD:1B:3D:50:27:5D:D6:CF:14:10:6C:3B:20:F2:9F:A2:71:FA:2D:10
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 018F85DD9ED67B370291B8878F186670D0B1
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/vRs9UCdd1s8UEGw7IPKfonH6LRA.roa
Signing time: Fri 17 May 2024 09:24:04 +0000
ROA not before: Fri 17 May 2024 09:24:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214958
IP address blocks: 2a04:6e40::/29 maxlen: 29
2a11:91c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 03 Jun 2024 06:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:85:dd:9e:d6:7b:37:02:91:b8:87:8f:18:66:70:d0:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: May 17 09:24:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bd1b3d50275dd6cf14106c3b20f29fa271fa2d10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:48:f4:85:60:67:4a:f2:8f:56:17:1e:ad:d3:
0e:9e:19:01:27:57:52:0a:9e:70:69:44:5b:bd:48:
15:43:d1:a7:68:26:a5:05:7f:f6:3f:26:13:9c:11:
39:1f:86:2c:0f:e9:ef:2c:34:99:af:0b:a7:18:31:
51:ac:47:8e:b2:04:1f:b3:38:79:a5:28:fa:bf:c1:
30:66:f4:64:71:a3:6e:a1:be:97:c8:5d:d2:3f:37:
5a:1c:49:f2:2e:16:4c:2a:b4:53:30:16:d5:e1:dd:
11:6c:7e:52:d2:44:81:fd:02:0b:21:b3:ae:6f:20:
06:32:9a:60:2c:41:a3:a4:b8:c4:29:64:e3:ba:1b:
02:3d:c3:8d:55:e0:f6:52:27:1c:52:af:d4:76:4d:
4d:aa:ad:84:73:11:d6:db:35:de:a8:7a:da:0e:78:
fb:88:4b:52:b9:99:63:c8:bd:49:26:6d:54:d3:da:
03:ac:b2:18:15:dd:54:ea:ce:40:10:87:49:79:6a:
77:fc:4d:1d:e8:e1:8d:3f:75:e1:a0:3a:89:05:bf:
02:51:80:8c:fe:cf:09:f6:99:77:b3:32:4e:5a:e4:
d6:5e:0a:fc:7e:80:09:98:df:89:e7:04:06:d2:86:
66:df:c0:31:4b:48:55:bb:4c:e6:18:95:ac:70:18:
9b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:1B:3D:50:27:5D:D6:CF:14:10:6C:3B:20:F2:9F:A2:71:FA:2D:10
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/vRs9UCdd1s8UEGw7IPKfonH6LRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:6e40::/29
2a11:91c0::/29
Signature Algorithm: sha256WithRSAEncryption
86:dc:d3:07:ad:95:c7:09:a4:40:95:0f:0b:96:26:96:1d:ff:
25:65:da:3d:88:b3:36:98:d9:09:30:c6:10:2e:08:7c:a6:3f:
75:0c:c0:23:85:d7:e9:fb:6d:5b:b9:c5:4d:1d:8e:c1:8d:fb:
38:fc:6b:52:35:dc:73:b0:08:10:5a:74:a7:22:c7:16:73:0e:
a9:8a:46:62:33:84:fc:fb:fb:2e:98:f6:1f:77:76:8e:a6:b9:
2c:b1:b1:ca:a2:ca:e3:74:07:a6:f6:42:a4:9e:cc:c6:d0:3c:
da:44:de:1f:69:b4:f6:7b:ce:c8:35:09:f5:35:cf:e1:b8:5e:
88:bd:3d:09:ca:af:9c:2f:15:96:ef:88:89:97:c3:be:df:c6:
66:33:9e:2c:17:1b:dc:a8:1d:27:df:0f:82:65:63:00:85:ec:
34:65:71:93:a9:f9:6d:f5:48:d7:95:62:be:80:0b:5b:1f:ac:
a4:1d:f6:09:f8:e1:9f:e3:91:3f:f7:26:27:15:b9:e8:8d:7c:
76:58:15:76:e4:f2:b2:2d:af:0d:af:0b:f2:90:fc:76:2b:19:
7e:e7:30:22:c8:a9:40:a8:52:26:6f:e1:57:b4:4f:7b:a1:61:
32:34:f5:3c:86:55:e0:70:9b:6f:80:4d:c5:f9:4a:79:2e:61:
bc:2f:4e:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:01 2024 by rpki-client on console-fra.rpki-client.org