Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/VeY2IzTNRi0VVQeZyMmed98BKqk.roa
File: VeY2IzTNRi0VVQeZyMmed98BKqk.roa (raw, json)
Hash identifier: H+UT4c7pIeVL56qfQoCOBIyFYdbW0KwsF+RfHaDhUJw=
Subject key identifier: 55:E6:36:23:34:CD:46:2D:15:55:07:99:C8:C9:9E:77:DF:01:2A:A9
Certificate issuer: /CN=e278c4aaa021bed8b926e3591fdf50c8df6bc172
Certificate serial: 01882EEF4ABFD52A8A087D88361E7511787D
Authority key identifier: E2:78:C4:AA:A0:21:BE:D8:B9:26:E3:59:1F:DF:50:C8:DF:6B:C1:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4njEqqAhvti5JuNZH99QyN9rwXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/VeY2IzTNRi0VVQeZyMmed98BKqk.roa
Signing time: Thu 18 May 2023 12:56:54 +0000
ROA not before: Thu 18 May 2023 12:56:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207824
IP address blocks: 2001:678:ba4::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:31:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2e:ef:4a:bf:d5:2a:8a:08:7d:88:36:1e:75:11:78:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e278c4aaa021bed8b926e3591fdf50c8df6bc172
Validity
Not Before: May 18 12:56:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55e6362334cd462d15550799c8c99e77df012aa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:5d:c9:29:42:31:4d:3b:16:6d:34:dd:ff:ae:
26:0e:eb:d5:64:df:52:e5:4b:15:85:5b:c7:97:bb:
ce:82:9d:66:8c:98:f4:93:b0:e4:d6:7d:93:1b:47:
7c:b8:62:a5:3b:06:0c:3c:72:ab:85:4e:d8:07:96:
42:36:f1:c3:11:f6:02:7b:22:3c:1e:d2:a4:b4:9a:
ea:a8:8f:76:7f:fa:81:03:1a:3b:ef:da:37:23:91:
b8:70:e1:f8:18:95:15:d3:36:ee:5b:03:15:86:6d:
80:e6:2e:55:4f:17:93:c5:04:a3:f2:8a:fe:0d:45:
4a:6d:3e:1f:4e:3b:8c:db:e7:36:d4:14:18:fc:27:
84:81:78:e2:4b:99:f8:a5:44:99:7b:7e:a6:86:90:
cd:ac:19:54:3f:4a:e6:d8:da:2d:b6:11:32:c4:f9:
72:d4:5a:b1:a8:fa:2b:a9:22:4f:57:4e:29:f8:47:
86:0a:b3:d0:37:65:5e:93:d6:2f:75:59:6d:b2:dc:
1d:73:8e:5a:22:54:82:a0:f7:d0:96:93:3f:19:b3:
4e:25:23:8e:cf:c4:7b:3d:0f:39:2f:7b:25:57:ed:
92:fe:ac:23:da:75:8b:93:df:28:5c:14:23:a8:35:
6f:4c:7d:f9:1b:27:2c:b8:c5:e4:bb:a5:04:3f:3a:
f9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:E6:36:23:34:CD:46:2D:15:55:07:99:C8:C9:9E:77:DF:01:2A:A9
X509v3 Authority Key Identifier:
keyid:E2:78:C4:AA:A0:21:BE:D8:B9:26:E3:59:1F:DF:50:C8:DF:6B:C1:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4njEqqAhvti5JuNZH99QyN9rwXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/VeY2IzTNRi0VVQeZyMmed98BKqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:ba4::/48
Signature Algorithm: sha256WithRSAEncryption
be:30:c2:01:7c:98:a9:66:6d:3c:96:36:79:46:67:52:b5:c0:
4b:5b:ae:e1:fa:31:de:46:17:40:33:7f:4f:78:a3:92:26:15:
9d:ac:9d:cf:d5:8d:0c:78:c4:2a:a6:20:50:20:b9:c0:de:58:
e6:d1:d1:2e:0c:63:fd:e7:12:f5:a0:13:9f:28:51:d4:75:32:
bf:60:a6:0d:bd:82:ed:e8:69:51:ab:62:32:d7:65:9c:6a:e7:
ec:3c:eb:1b:ce:8a:6a:82:be:c9:af:7f:01:5d:e7:87:e1:9f:
bf:dc:2e:a7:51:34:89:2e:58:80:d0:b7:e1:4a:6f:46:cc:cc:
49:62:79:3e:29:b9:b5:ce:4f:40:52:d1:25:ff:a8:e0:82:e5:
74:2f:ec:49:d2:92:53:5a:4d:85:13:f1:0a:d3:ed:03:12:af:
d5:4b:64:fa:a1:02:a7:17:9a:e3:8e:d3:57:05:ae:9d:3e:e9:
42:dd:b8:26:49:39:c8:02:e7:c2:da:7f:45:25:2a:14:5d:3f:
77:ca:c4:e5:6a:db:51:82:bc:06:98:9d:d5:d5:a5:fe:5a:68:
1e:95:a1:e9:dc:0e:4c:4b:45:87:b8:55:2a:39:42:5e:ac:89:
a7:47:19:c2:09:c2:e5:6b:e6:77:a2:33:cc:83:75:09:3c:91:
4e:d1:99:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:20 2024 by rpki-client on console-fra.rpki-client.org