Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/vtP3pJM92RJFgN302zhgyIPnKJA.roa
File: vtP3pJM92RJFgN302zhgyIPnKJA.roa (raw, json)
Hash identifier: SWBy5V2r1mt7uAloPhbux1BwQLkrkzyPH3VHevbZK4I=
Subject key identifier: BE:D3:F7:A4:93:3D:D9:12:45:80:DD:F4:DB:38:60:C8:83:E7:28:90
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E4B97847C6D7C9CC65E25EE7FFAB8
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/vtP3pJM92RJFgN302zhgyIPnKJA.roa
Signing time: Mon 02 Jan 2023 06:14:48 +0000
ROA not before: Mon 02 Jan 2023 06:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142438
IP address blocks: 2a0c:b641:130::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:4b:97:84:7c:6d:7c:9c:c6:5e:25:ee:7f:fa:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bed3f7a4933dd9124580ddf4db3860c883e72890
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4e:56:70:97:c6:78:69:c3:d5:d2:08:d1:db:
23:37:a0:12:af:31:da:69:6d:aa:e7:ec:07:92:e1:
e2:9c:24:f7:24:4e:8f:3f:64:4b:d0:c0:e2:39:e4:
5c:d5:55:ff:37:8d:ea:27:3e:95:bc:0b:42:72:71:
0b:a3:78:f1:66:db:3c:98:8a:8b:1e:e7:e3:98:01:
51:a6:c4:bf:24:a5:a1:60:cc:90:df:bc:15:a6:eb:
dd:48:b6:b0:09:78:95:f9:4e:f2:84:ae:7d:55:98:
77:8b:0c:4e:19:8e:97:f0:08:14:a3:1f:97:5f:24:
98:2c:e9:58:e5:60:59:cc:e9:35:cb:01:71:ff:58:
ad:77:b6:50:b7:18:53:cf:1b:23:db:9f:e1:a4:b6:
31:bd:b2:69:8d:0e:03:d6:e7:3f:22:a6:d3:a8:8a:
b0:3c:44:96:e1:0c:77:c5:62:1d:15:dc:1c:65:f9:
50:8d:a4:39:2a:46:60:03:49:43:c7:8b:bd:fb:7e:
46:fe:b7:da:a5:17:64:59:65:29:5c:1c:c3:88:bc:
3c:2a:aa:97:4b:3e:5d:92:44:c1:90:e2:e8:8d:0b:
56:3c:9f:7c:0d:9d:30:bd:8f:cc:b0:cf:dd:f7:09:
5e:8c:7b:03:c4:d4:2a:17:d2:8d:fe:c3:06:d5:d8:
5e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:D3:F7:A4:93:3D:D9:12:45:80:DD:F4:DB:38:60:C8:83:E7:28:90
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/vtP3pJM92RJFgN302zhgyIPnKJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:130::/44
Signature Algorithm: sha256WithRSAEncryption
07:a3:44:03:e6:5e:c0:f8:03:f1:7a:cd:60:72:f1:05:91:46:
09:21:d9:29:3e:45:51:51:57:5e:65:5c:40:0d:21:2d:2e:61:
fa:5e:91:b0:98:7c:d9:b7:1c:26:33:09:b1:e3:33:d2:16:cb:
de:1d:c6:b2:68:91:8b:70:fa:9f:f2:93:02:d2:5e:a6:0d:03:
77:bf:db:a2:f2:fb:5d:af:63:7c:99:b8:78:db:86:f7:08:a7:
b6:11:14:52:6c:78:2b:e4:a4:87:12:45:6b:89:68:b7:ac:8a:
fc:d7:50:99:6e:3f:93:90:5a:6b:06:d6:a6:4e:23:cd:4e:d8:
ea:f3:4b:77:fa:67:90:be:96:cd:34:6c:bf:a3:b1:d0:ee:c8:
d9:ba:45:5c:2c:55:a8:ca:40:f5:19:1e:00:ba:0d:57:ad:3d:
8c:3f:f6:4d:d9:6f:59:69:f2:21:16:5b:3a:b9:74:53:f3:ed:
99:0b:57:69:e9:d7:26:c5:46:80:c2:37:fc:9f:2c:e2:91:30:
c1:1e:c3:4e:67:05:c0:5f:81:61:0c:6a:0d:dc:07:8c:18:99:
b0:92:7a:f6:83:2a:8f:67:84:b0:18:44:9d:2f:bd:74:77:bd:
f3:f8:76:04:87:c1:d0:36:a1:68:06:3c:39:fc:31:35:0e:c1:
49:dd:94:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:02 2024 by rpki-client on console-ams.rpki-client.org