Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/VYUt30LJoVQOpMQmctueWblVnn4.roa
File: VYUt30LJoVQOpMQmctueWblVnn4.roa (raw, json)
Hash identifier: dpjPyjDqi4Cs1x5XM7LY9oHAkx0ND0KjJfb14198540=
Subject key identifier: 55:85:2D:DF:42:C9:A1:54:0E:A4:C4:26:72:DB:9E:59:B9:55:9E:7E
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 019170D2672B35565F184B800B5933276CB5
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/VYUt30LJoVQOpMQmctueWblVnn4.roa
Signing time: Tue 20 Aug 2024 17:25:22 +0000
ROA not before: Tue 20 Aug 2024 17:25:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 53667
IP address blocks: 2a13:b4c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 02 Sep 2024 16:07:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:70:d2:67:2b:35:56:5f:18:4b:80:0b:59:33:27:6c:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Aug 20 17:25:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=55852ddf42c9a1540ea4c42672db9e59b9559e7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7d:e8:27:20:5c:78:34:78:2a:aa:b8:44:a8:
9c:c3:1f:f0:7e:a9:35:a0:51:da:81:91:c2:c7:88:
6d:1f:3b:5a:b1:ac:df:7a:08:96:99:03:8d:b8:c6:
51:0a:da:59:39:7e:37:ad:ec:ce:9a:46:f0:95:92:
f7:71:74:0c:cf:2a:3c:d9:e1:0d:70:58:44:d4:f7:
29:27:69:f2:26:f9:50:ce:86:5d:36:4b:b9:21:3f:
ac:ba:51:2e:96:91:b0:a9:c0:95:98:44:7a:a7:a2:
d0:84:f2:64:e2:d3:12:a7:3d:66:85:f4:e7:82:6f:
79:91:11:b0:0e:c1:e3:6c:14:a7:1c:63:15:74:76:
0a:33:fa:70:d7:45:87:e1:84:09:95:29:e1:c1:6b:
0a:04:bc:93:54:55:04:84:17:06:3b:77:3e:b1:70:
a8:26:08:b4:d8:27:e2:16:c3:5c:0c:ae:06:36:2c:
52:b4:c9:f4:e6:10:70:dd:b9:cb:80:dd:f8:02:3d:
26:e5:e4:aa:dc:3f:dd:8c:11:72:0a:b6:e1:db:11:
7d:8a:1d:26:e8:e2:1e:33:8a:e5:fe:da:c7:35:45:
af:0e:bf:2a:2a:84:ee:fa:26:28:27:e8:f0:de:fc:
79:1c:e2:5f:d5:07:b8:5a:63:b4:e5:96:3e:1b:9f:
df:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:85:2D:DF:42:C9:A1:54:0E:A4:C4:26:72:DB:9E:59:B9:55:9E:7E
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/VYUt30LJoVQOpMQmctueWblVnn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:b4c0::/29
Signature Algorithm: sha256WithRSAEncryption
c2:d8:bc:16:fb:c4:07:56:62:0a:4b:52:7d:1d:c6:42:e8:c8:
8a:4f:2b:62:d9:63:f5:e6:c3:de:d7:ab:bc:1f:25:85:d6:35:
4b:75:36:ce:e8:fb:1c:6f:81:3b:c1:88:26:04:f0:de:be:5c:
c0:fc:ba:49:2f:54:af:d1:fc:64:3b:56:3d:11:cc:93:5a:ae:
d7:71:02:be:23:c1:9e:39:84:f8:c0:31:bf:77:c6:ca:a0:61:
f6:16:fb:1a:79:a3:da:98:c2:ca:39:43:17:05:26:9f:0f:07:
aa:e6:7c:7d:a2:f7:40:07:2d:71:6c:14:3d:7b:c6:b3:9e:a6:
40:2c:b5:45:1f:69:ba:bf:42:15:a5:55:da:41:db:88:c6:c1:
7e:fc:6b:89:b0:b1:db:a5:f7:3a:13:19:d5:ba:55:19:64:14:
f4:14:21:f9:73:30:27:19:40:ed:f5:51:0c:9c:b1:2f:e6:03:
4d:18:64:8a:27:8c:f7:23:d2:7a:90:f2:8b:1b:ce:24:e0:80:
21:18:bc:f4:ac:32:32:84:30:9d:fc:ce:64:90:f3:82:e6:5e:
4a:9d:f8:d4:43:ae:08:7b:e8:26:99:d7:03:09:46:ce:3c:c6:
6b:c1:13:90:44:0c:b8:d7:65:26:ae:13:4f:74:7f:20:a6:fc:
7f:4b:e0:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 2 18:31:11 2024 by rpki-client on console-ams.rpki-client.org