Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a21f34-82f2-41c9-b60c-ad43ccd7aae8/1/VQttbL3TZ4sH4-PwudNXjd2snVM.roa
File: VQttbL3TZ4sH4-PwudNXjd2snVM.roa (raw, json)
Hash identifier: Cp5H/vdi9HQCshe6dOqwE/J4sUHivZ9lwp3+TvBovRQ=
Subject key identifier: 55:0B:6D:6C:BD:D3:67:8B:07:E3:E3:F0:B9:D3:57:8D:DD:AC:9D:53
Certificate issuer: /CN=acf7ab3f1a93e714f3074a05d86fcce2206305a8
Certificate serial: 018D02AE67F3F60BC5C7ADEBFD34C92C2771
Authority key identifier: AC:F7:AB:3F:1A:93:E7:14:F3:07:4A:05:D8:6F:CC:E2:20:63:05:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rPerPxqT5xTzB0oF2G_M4iBjBag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a21f34-82f2-41c9-b60c-ad43ccd7aae8/1/VQttbL3TZ4sH4-PwudNXjd2snVM.roa
Signing time: Sat 13 Jan 2024 11:56:40 +0000
ROA not before: Sat 13 Jan 2024 11:56:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199471
IP address blocks: 2a13:fc80::/32 maxlen: 48
Validation: Failed, certificate revoked on Sat 20 Jan 2024 14:50:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:02:ae:67:f3:f6:0b:c5:c7:ad:eb:fd:34:c9:2c:27:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acf7ab3f1a93e714f3074a05d86fcce2206305a8
Validity
Not Before: Jan 13 11:56:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=550b6d6cbdd3678b07e3e3f0b9d3578dddac9d53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:49:1d:e5:b8:6f:8f:40:e6:02:cc:ee:ca:3a:
5f:82:8e:58:0b:c3:c5:82:8b:93:85:a6:cb:0e:b6:
31:f0:94:25:7c:18:97:c0:cb:6f:93:42:db:db:05:
bf:ea:85:41:12:15:d1:19:da:ea:a1:99:ed:62:31:
5a:53:be:0a:3d:d6:65:4a:41:20:92:ae:78:21:25:
a1:da:e5:a3:3e:33:e1:47:8e:b0:80:99:ad:da:28:
d7:44:6d:45:29:19:5a:53:0f:6f:4f:14:4e:65:ee:
68:28:10:b1:a1:8a:ea:65:32:5c:ed:a7:ff:c1:fc:
e4:62:16:47:43:e6:d7:9a:02:69:20:03:5e:17:74:
a3:e9:6c:da:9b:68:a4:d4:af:3f:a5:f0:ad:8a:63:
68:5e:28:08:9e:fd:4c:0b:8b:51:f0:ef:ec:66:dc:
2c:67:bd:91:12:fe:66:27:8e:a6:4d:ab:35:25:4f:
a8:59:18:1c:38:63:5b:46:49:53:7a:c1:a6:71:ef:
13:d2:2d:1c:e6:69:78:89:7a:26:c6:4c:bd:c4:2a:
ea:76:c6:fc:49:11:14:97:aa:92:36:b2:84:50:d9:
bc:f4:ba:fc:40:14:ad:28:4b:14:a3:5d:a8:0c:63:
7e:c7:59:e6:de:9c:3c:eb:27:47:4e:43:0a:16:fc:
2b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:0B:6D:6C:BD:D3:67:8B:07:E3:E3:F0:B9:D3:57:8D:DD:AC:9D:53
X509v3 Authority Key Identifier:
keyid:AC:F7:AB:3F:1A:93:E7:14:F3:07:4A:05:D8:6F:CC:E2:20:63:05:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rPerPxqT5xTzB0oF2G_M4iBjBag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a21f34-82f2-41c9-b60c-ad43ccd7aae8/1/VQttbL3TZ4sH4-PwudNXjd2snVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a21f34-82f2-41c9-b60c-ad43ccd7aae8/1/rPerPxqT5xTzB0oF2G_M4iBjBag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:fc80::/32
Signature Algorithm: sha256WithRSAEncryption
93:2f:6a:03:7f:02:af:9e:2c:68:ea:77:7e:53:44:6d:0d:47:
2a:d4:5d:0c:f4:1a:a4:7d:5e:dc:82:c6:ce:26:c9:39:8d:01:
28:12:f1:40:1c:a7:29:e7:63:12:b4:14:34:c6:6b:55:89:46:
d6:a8:fe:cc:37:31:0a:51:63:62:9c:ac:0b:f6:0d:8a:f3:e1:
56:0e:37:94:b9:54:6e:ec:5c:bd:c7:9d:87:ab:da:f6:57:16:
b1:75:46:a1:7c:1d:9c:9b:af:99:71:84:f0:4b:e4:40:37:18:
29:ee:b0:56:f2:d7:72:57:86:ab:54:d0:16:bc:e1:b4:e6:f2:
7c:17:df:ca:d0:b7:16:36:c9:c0:14:48:d8:7b:8c:6f:36:0a:
7a:ff:63:51:8e:12:aa:2f:27:da:e6:69:45:5b:cf:ba:53:f5:
62:20:e4:a0:57:8f:3a:24:06:09:da:a1:97:f8:a5:b0:1b:54:
7e:33:8c:09:4b:29:9d:b5:c9:d6:ce:2b:10:63:ef:69:8d:06:
cc:22:7f:2b:65:53:a1:bf:3d:ff:63:3c:71:a7:34:d3:40:58:
0c:df:b4:05:07:98:6a:da:7c:df:7a:8c:99:8e:54:60:8c:0f:
96:75:4b:b6:9a:db:2b:38:5c:18:c9:e6:dd:88:84:03:2a:77:
19:f2:61:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:13 2024 by rpki-client on console-ams.rpki-client.org