Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/vPgHzJjOtKFGU-5w0kBkeY5TKFI.roa
File: vPgHzJjOtKFGU-5w0kBkeY5TKFI.roa (raw, json)
Hash identifier: iYfJteWbYl0/3aeYL/9NujVm6sKyfFt3Gcl+CDBgDa0=
Subject key identifier: BC:F8:07:CC:98:CE:B4:A1:46:53:EE:70:D2:40:64:79:8E:53:28:52
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 018571A7BE2208A7CE5F15F6440DF433E3E2
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/vPgHzJjOtKFGU-5w0kBkeY5TKFI.roa
Signing time: Mon 02 Jan 2023 08:44:56 +0000
ROA not before: Mon 02 Jan 2023 08:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209883
IP address blocks: 2a0e:f8c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 11 Aug 2023 14:38:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:a7:be:22:08:a7:ce:5f:15:f6:44:0d:f4:33:e3:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 2 08:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bcf807cc98ceb4a14653ee70d24064798e532852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:52:bf:11:1f:35:48:7d:5f:d0:41:73:89:5f:
a4:b0:5a:72:84:79:bc:47:0e:95:9a:a8:37:d2:27:
69:8e:0d:4e:1a:f3:a7:a9:2b:9a:2d:65:69:3d:7b:
31:54:65:16:e1:0c:f7:7c:35:58:4e:90:62:a5:2e:
6c:73:7c:cd:35:b8:8f:79:a7:bf:17:27:1f:e5:81:
ec:d5:f4:19:c9:3e:13:40:fc:89:0a:54:3d:fe:3c:
9a:47:84:a8:d4:5a:7d:80:f7:99:5f:da:1e:f4:dd:
e8:3b:91:d2:2b:02:77:5d:17:f4:6e:35:c8:7c:0c:
75:a5:a6:b6:7b:2e:04:40:19:ad:aa:2a:5c:06:c3:
12:4f:36:c7:b6:a3:40:42:d8:f0:63:4e:a1:f0:e2:
ef:81:94:65:90:02:ad:d1:fc:db:06:9b:a7:76:7d:
f2:58:cb:bd:28:ad:89:29:97:ff:6f:2d:b0:74:c5:
68:14:c8:b5:a0:6b:dc:3d:f3:e4:ec:74:8a:50:55:
d7:3d:0b:2a:a0:9a:84:a4:03:08:96:bb:ba:97:c3:
1a:12:f6:24:a3:ce:6e:b7:76:30:23:25:46:a5:51:
9a:28:e4:c1:56:9c:e7:5a:46:03:73:cd:bc:e1:1b:
3c:ad:42:fc:1f:04:c4:12:47:ca:27:8c:03:fe:ae:
0f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:F8:07:CC:98:CE:B4:A1:46:53:EE:70:D2:40:64:79:8E:53:28:52
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/vPgHzJjOtKFGU-5w0kBkeY5TKFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:f8c0::/29
Signature Algorithm: sha256WithRSAEncryption
8a:c1:33:c7:a9:2b:84:d9:2a:ec:cd:b9:a6:77:13:ec:89:f2:
65:20:e2:3f:58:aa:dd:8a:59:25:12:3a:fc:c3:2b:0b:43:04:
1d:a1:22:23:60:ee:40:21:cb:dc:52:ac:c6:c8:7e:0d:93:29:
dc:5d:fa:08:e0:b4:38:d0:96:a6:82:e1:37:ca:c9:9b:c0:e1:
48:47:c4:06:50:bf:8b:97:00:7f:eb:9c:53:29:20:23:c4:0e:
d6:14:b6:f2:62:b1:6e:1b:ac:81:aa:24:b8:c4:94:4c:0e:ac:
e9:c0:3c:dc:f1:12:bb:2f:a2:c1:7b:00:9a:0a:5d:14:44:48:
3a:ff:fe:97:32:75:52:06:ed:4d:a6:68:7f:b0:51:48:7c:e1:
2e:ef:47:88:e0:98:47:f0:91:4b:1d:f2:02:27:f3:d1:6c:6d:
e7:4f:7f:d4:c9:f7:7f:bf:a3:0b:a1:35:14:fc:09:8d:26:38:
2e:2f:ae:20:10:ff:32:d2:fd:dc:b7:b7:ed:be:03:df:d9:09:
3b:c9:56:97:ea:8b:bb:27:b2:1b:52:ab:4e:38:2e:67:e1:55:
a6:94:7a:b5:1d:37:79:da:9e:1b:15:0c:fb:28:97:3f:c2:da:
86:01:03:98:b6:e8:ca:dd:19:3c:8c:b2:1d:a0:f8:80:90:78:
dc:06:ae:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:27 2024 by rpki-client on console-ams.rpki-client.org