Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/VHMjO71LzLI63LGg5cuqBcP5VhQ.roa
File: VHMjO71LzLI63LGg5cuqBcP5VhQ.roa (raw, json)
Hash identifier: dMwvwlbr8DYEPwOSluH9FwlkXtycbo1NOsoZRgI+vFA=
Subject key identifier: 54:73:23:3B:BD:4B:CC:B2:3A:DC:B1:A0:E5:CB:AA:05:C3:F9:56:14
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018B14AFED2B46B1B2C2B74BE3FE34CF9A80
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/VHMjO71LzLI63LGg5cuqBcP5VhQ.roa
Signing time: Mon 09 Oct 2023 13:45:55 +0000
ROA not before: Mon 09 Oct 2023 13:45:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216271
IP address blocks: 2a13:dac0::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 11 Oct 2023 20:12:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:14:af:ed:2b:46:b1:b2:c2:b7:4b:e3:fe:34:cf:9a:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Oct 9 13:45:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5473233bbd4bccb23adcb1a0e5cbaa05c3f95614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:7e:93:6e:44:ec:f6:3f:5c:22:e8:0c:33:a1:
7d:58:cf:47:75:9b:a1:19:1f:5a:47:28:98:fc:fe:
f3:9e:9a:51:9d:69:30:47:94:10:53:f8:23:e4:8b:
da:c1:cf:f7:6f:42:ab:d8:ae:80:ab:e3:03:68:e4:
c6:82:7e:52:d7:63:23:35:d3:81:dd:87:88:74:ad:
df:0b:3c:26:27:7b:9d:1a:67:b7:c7:4e:cf:5c:f0:
05:38:40:d2:b8:92:cf:fb:c8:fa:ab:7f:51:cf:53:
ea:25:0d:c3:12:15:95:31:52:f5:b4:c9:33:de:d1:
ac:95:8f:ba:33:79:73:81:d3:c6:e8:ac:84:d7:d5:
fa:51:0f:76:0d:5e:f0:96:c6:ee:7c:01:1d:1e:93:
82:99:4b:2d:43:74:3c:07:88:6d:14:ab:77:6b:3a:
0b:e4:a0:b5:8a:7e:00:9c:3e:96:93:af:95:1a:cb:
d7:41:b4:6f:79:72:9d:25:9c:aa:ed:4f:1c:45:46:
e3:ae:94:5c:4e:8b:63:25:b3:19:ec:7d:49:7e:a1:
fa:f6:d4:ef:82:10:88:5b:42:4f:25:0a:ea:54:51:
c1:67:cd:03:b1:e3:ff:b0:b2:ef:0a:a6:dc:20:87:
25:da:7f:5a:d6:0f:18:fa:f4:c6:5c:5a:cd:a8:6c:
55:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:73:23:3B:BD:4B:CC:B2:3A:DC:B1:A0:E5:CB:AA:05:C3:F9:56:14
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/VHMjO71LzLI63LGg5cuqBcP5VhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:dac0::/29
Signature Algorithm: sha256WithRSAEncryption
71:c4:3c:48:c8:06:32:97:8f:b1:87:68:25:40:be:8f:65:92:
36:eb:ce:41:c9:dd:fa:d3:1d:5d:7f:5e:12:9f:fe:63:05:ba:
c4:a3:38:05:be:08:0d:81:75:12:10:02:b4:65:6d:b5:65:0c:
08:bb:87:34:50:0c:67:26:51:98:d2:ca:f8:a0:47:f6:8d:ea:
4f:e6:e8:37:45:97:43:73:6d:dc:d9:d9:d4:05:8b:c1:cb:ce:
e5:d5:22:6a:d8:af:64:3b:a8:b0:89:7e:e3:6c:3a:db:0a:19:
5c:73:36:e9:6a:c1:ff:8f:6f:ae:aa:83:29:d4:af:a6:ce:a8:
e3:0d:84:ce:c7:24:ac:f2:58:8c:21:fd:1d:a8:b9:b6:86:bb:
2b:a2:14:42:61:5e:58:ee:f9:6b:c4:b6:5f:69:11:2e:1d:db:
ea:14:c2:e3:de:d1:2e:f6:a1:38:ce:fa:b3:28:a6:0f:be:07:
04:5e:17:ea:79:d3:6b:eb:ce:6e:3b:ca:e1:78:0d:9a:d7:23:
77:c6:52:75:71:d2:4b:22:d7:7c:f5:68:21:51:e8:de:14:4f:
37:61:44:c0:f3:d0:8f:10:b0:75:0b:33:ae:26:14:8b:c2:56:
c0:31:be:40:ec:e6:d4:54:b6:08:f4:93:cf:9e:0e:35:a7:1c:
4d:71:a7:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:02 2024 by rpki-client on console-ams.rpki-client.org