Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/VUcX2YM-a9HjC2MnltvvZYhpMRM.roa
File: VUcX2YM-a9HjC2MnltvvZYhpMRM.roa (raw, json)
Hash identifier: Vxc+vwo0DjsX2jJJQmlyo1BlqoEHN0aksD5Hm/9m7b8=
Subject key identifier: 55:47:17:D9:83:3E:6B:D1:E3:0B:63:27:96:DB:EF:65:88:69:31:13
Certificate issuer: /CN=3691d2950145dceac00c0ca4eb536d92867b38d3
Certificate serial: 0186D6963364D4F546AD090C1729B3F61135
Authority key identifier: 36:91:D2:95:01:45:DC:EA:C0:0C:0C:A4:EB:53:6D:92:86:7B:38:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpHSlQFF3OrADAyk61NtkoZ7ONM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/VUcX2YM-a9HjC2MnltvvZYhpMRM.roa
Signing time: Sun 12 Mar 2023 16:10:13 +0000
ROA not before: Sun 12 Mar 2023 16:10:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207080
IP address blocks: 2a0c:2f06::/32 maxlen: 34
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:d6:96:33:64:d4:f5:46:ad:09:0c:17:29:b3:f6:11:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3691d2950145dceac00c0ca4eb536d92867b38d3
Validity
Not Before: Mar 12 16:10:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=554717d9833e6bd1e30b632796dbef6588693113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ad:b8:4f:87:45:2d:a2:92:1c:08:5a:c9:dd:
92:92:93:42:c2:37:5d:b1:7a:b3:d4:15:6c:3c:42:
94:c0:6b:bc:84:a2:40:50:71:10:7b:8d:5b:bf:70:
c5:00:b6:ca:84:ab:be:c3:4f:0f:cb:63:4e:0f:fd:
03:fa:6f:db:46:1f:b0:4f:0f:d3:de:57:92:75:f6:
15:f3:8d:7d:90:bc:61:d2:41:f9:50:fe:b2:b5:50:
b8:1c:ff:29:7e:7a:f6:5b:1e:e2:c3:cb:c9:2c:9a:
07:87:c2:35:5b:81:04:49:31:cd:d2:3f:10:7c:c9:
e8:36:f8:26:ac:e4:a0:b3:78:56:f3:e9:63:18:6f:
5a:dd:e0:bb:21:36:b7:4f:01:05:52:f6:31:8e:e9:
f3:f9:5b:ac:2b:d7:c1:23:ae:e6:e3:1a:20:2d:3e:
ed:08:4b:d4:a3:34:d5:e1:1b:de:ea:78:3d:c3:fb:
dc:7f:cc:74:2c:f1:82:a3:87:e3:40:ee:30:06:1f:
1f:ab:90:86:c0:8e:c5:c0:d1:ec:f1:c2:2f:eb:1f:
22:7e:9e:9e:8c:79:75:c9:46:cf:b8:a6:ea:4e:87:
91:bd:a2:ad:50:a5:d6:a6:cb:0c:bb:88:c6:98:ab:
be:df:f8:50:ef:f9:86:8f:c3:3f:3f:a0:57:fe:4d:
27:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:47:17:D9:83:3E:6B:D1:E3:0B:63:27:96:DB:EF:65:88:69:31:13
X509v3 Authority Key Identifier:
keyid:36:91:D2:95:01:45:DC:EA:C0:0C:0C:A4:EB:53:6D:92:86:7B:38:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpHSlQFF3OrADAyk61NtkoZ7ONM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/VUcX2YM-a9HjC2MnltvvZYhpMRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/NpHSlQFF3OrADAyk61NtkoZ7ONM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:2f06::/32
Signature Algorithm: sha256WithRSAEncryption
bb:35:7a:11:ca:9f:72:30:cc:13:19:cf:c5:30:3b:05:87:0c:
89:ba:3e:12:cd:34:67:c7:97:4d:a1:1a:56:61:77:82:c3:f7:
42:eb:35:d5:fe:48:d4:bb:23:50:16:95:c2:36:f0:a4:c3:23:
b2:59:85:a3:da:b9:1a:78:b7:50:47:4d:58:ad:fa:5e:df:08:
eb:e5:d5:40:7f:13:fc:90:ba:8c:d7:cc:99:77:35:4e:bc:ed:
91:07:77:70:66:c2:a1:80:5f:cb:62:eb:7b:77:dd:4c:db:c6:
1b:55:3d:1f:eb:ba:6f:26:83:49:90:5b:b9:81:2e:07:bd:ea:
b8:8c:23:5d:80:64:7c:2e:28:14:13:a3:2d:f5:3e:66:5a:0e:
e3:7a:3b:13:c2:95:07:52:5e:5b:1f:fd:a1:33:8d:65:c3:b0:
d6:1e:6a:c2:9c:d5:05:ba:d3:de:30:fb:29:fe:ea:31:e8:7d:
22:c2:f1:08:3a:1b:21:de:f0:12:cd:ec:44:54:82:47:8a:92:
15:78:ed:de:b3:36:79:77:14:0e:5c:a9:02:1b:40:07:ad:26:
4f:9d:97:8b:f3:cb:df:20:e0:06:2d:2a:34:9b:48:87:e6:17:
2b:89:2c:30:cc:64:90:dd:20:c8:97:65:e7:27:cf:b5:32:e3:
58:c5:1b:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:49 2024 by rpki-client on console-fra.rpki-client.org