Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/VAXNg3_DsQ8pHOgZCrLR3Vn4NWQ.roa
File: VAXNg3_DsQ8pHOgZCrLR3Vn4NWQ.roa (raw, json)
Hash identifier: Yox9QhxPFgOGxGiHzit1kYzA/+UFg3lmpRm/v6qlvH8=
Subject key identifier: 54:05:CD:83:7F:C3:B1:0F:29:1C:E8:19:0A:B2:D1:DD:59:F8:35:64
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 018C451234E202FFC3475E49A453497FE64F
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/VAXNg3_DsQ8pHOgZCrLR3Vn4NWQ.roa
Signing time: Thu 07 Dec 2023 16:17:50 +0000
ROA not before: Thu 07 Dec 2023 16:17:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215956
IP address blocks: 2a0e:8f02:2270::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:45:12:34:e2:02:ff:c3:47:5e:49:a4:53:49:7f:e6:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Dec 7 16:17:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5405cd837fc3b10f291ce8190ab2d1dd59f83564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:2b:0f:d7:e2:98:a7:22:b8:c9:ee:e4:0d:39:
61:5f:90:e0:0c:0e:06:65:81:d9:01:3d:01:2b:a7:
c1:15:0c:be:38:f6:3d:9d:a7:1c:5b:23:1e:b9:78:
f2:7d:7c:da:33:ec:8c:88:db:b0:7d:a5:94:57:de:
ac:c3:30:dd:e5:93:bb:a3:85:73:89:84:d1:96:e2:
b9:c9:2a:46:4b:82:98:6b:e2:d1:10:02:5e:cd:a7:
76:1e:7f:a5:e8:1a:b9:3e:39:dd:61:78:cb:86:06:
76:9a:53:5e:26:a6:07:a4:25:19:55:9b:65:c2:5a:
c2:59:e4:37:c1:b6:b9:85:6b:96:8e:03:e9:15:5b:
54:b8:a1:8d:57:b6:46:09:d7:93:44:63:5d:22:a3:
fd:f0:86:08:c6:cf:d8:11:ad:86:f4:11:34:09:75:
8e:00:78:a0:1a:33:77:81:63:e6:93:42:76:0c:39:
9d:50:45:91:88:2a:4d:1d:ac:ed:08:6f:89:50:d9:
6e:68:b1:90:79:af:24:81:e9:30:e7:7c:12:d6:cc:
7a:b9:df:f4:08:06:c6:5a:86:27:f9:84:c7:da:6f:
ad:82:2f:33:45:b1:76:1d:b0:ce:62:e5:ae:3c:83:
15:0f:d8:2a:86:cc:6b:17:55:c5:b0:f6:2b:f9:68:
0d:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:05:CD:83:7F:C3:B1:0F:29:1C:E8:19:0A:B2:D1:DD:59:F8:35:64
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/VAXNg3_DsQ8pHOgZCrLR3Vn4NWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:2270::/44
Signature Algorithm: sha256WithRSAEncryption
03:6b:48:57:d2:2a:f5:8f:85:84:4e:33:cc:23:eb:54:2c:15:
88:15:7c:b2:ca:1c:27:5b:a0:f2:68:13:0d:b5:da:df:71:64:
0a:9b:d2:4a:13:f7:12:31:32:11:30:5a:47:d9:fd:84:b8:95:
13:d0:cb:c6:9a:f9:c4:5e:3c:0e:fd:12:6f:2d:a1:93:cb:ea:
e6:9b:e8:a3:c7:c2:65:8c:d4:12:f7:65:c6:b3:14:f3:de:1e:
65:68:31:92:07:21:96:1b:92:7e:9b:d2:dc:22:ee:1b:35:45:
3e:03:1a:91:4e:79:f8:e2:af:85:42:75:ae:2b:d7:47:48:1c:
62:34:4d:29:30:b0:fa:80:23:ee:71:96:f3:d5:64:84:d0:fe:
b0:78:0d:88:17:fa:c6:2a:47:15:88:18:a0:50:cf:c2:a0:f1:
76:2c:07:7b:5b:4e:51:03:09:1f:98:a8:e3:0a:93:52:f2:d5:
b5:65:37:6b:39:91:57:21:25:da:cb:f9:15:07:34:02:ef:92:
ea:48:0e:33:47:3f:c5:e9:b3:c9:d8:11:04:cb:67:4a:94:7f:
5f:cb:a6:b6:a2:63:85:d1:75:e2:42:77:6e:51:16:b7:8d:a1:
de:a8:b8:9e:81:4c:e6:19:02:f9:59:45:78:fb:1e:9e:f5:66:
b1:65:74:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:00 2024 by rpki-client on console-ams.rpki-client.org