Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/VeGnO2xtjluegK7V64oK5Oa6z3c.roa
File: VeGnO2xtjluegK7V64oK5Oa6z3c.roa (raw, json)
Hash identifier: 5j1NhchsUBySB8EU47NSOn04kkrNzi2SqoQF24Srr+0=
Subject key identifier: 55:E1:A7:3B:6C:6D:8E:5B:9E:80:AE:D5:EB:8A:0A:E4:E6:BA:CF:77
Certificate issuer: /CN=3e28d6f13e359dd0bb4534a24655974c57d2b0fe
Certificate serial: 01881AD46E0296E6BCEC93C75C4550AFDE7D
Authority key identifier: 3E:28:D6:F1:3E:35:9D:D0:BB:45:34:A2:46:55:97:4C:57:D2:B0:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PijW8T41ndC7RTSiRlWXTFfSsP4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/VeGnO2xtjluegK7V64oK5Oa6z3c.roa
Signing time: Sun 14 May 2023 15:15:09 +0000
ROA not before: Sun 14 May 2023 15:15:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198571
IP address blocks: 2a07:db81::/32 maxlen: 32
2a07:db85::/32 maxlen: 32
2a07:db83::/32 maxlen: 32
2a07:db87::/32 maxlen: 32
2a07:db84::/32 maxlen: 32
2a07:db82::/32 maxlen: 32
2a07:db80::/32 maxlen: 32
2a07:db86::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 13 Jun 2023 15:40:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1a:d4:6e:02:96:e6:bc:ec:93:c7:5c:45:50:af:de:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e28d6f13e359dd0bb4534a24655974c57d2b0fe
Validity
Not Before: May 14 15:15:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55e1a73b6c6d8e5b9e80aed5eb8a0ae4e6bacf77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:6a:46:7b:b4:d9:f2:20:bc:25:f2:7a:2e:8f:
11:dd:ee:65:c5:7a:de:15:36:ec:ea:fc:8f:72:80:
6b:36:10:0e:98:0f:cc:13:15:4e:27:25:cf:b3:73:
93:f6:63:3c:0c:df:40:6d:2a:9f:e2:96:ad:29:19:
b4:f3:f6:6f:05:39:80:a3:5b:96:3c:00:54:eb:07:
e6:6e:f5:fd:88:be:60:6b:d2:26:af:78:a5:4d:21:
58:3e:1d:9c:a8:b6:30:8e:ee:4f:69:43:9c:9d:49:
37:5d:a7:8a:53:5f:78:24:24:ec:57:e6:07:fe:f2:
8c:2e:40:c3:a6:55:5d:0d:52:fb:9a:11:49:2f:dd:
06:85:a9:99:70:63:e0:32:84:32:53:57:e2:70:bc:
22:ff:da:bf:8a:ec:84:20:1a:4d:8d:ba:cf:ce:8d:
33:f8:42:59:16:c8:6d:67:ae:80:3a:ae:c0:81:dc:
a2:c0:d9:aa:c3:3c:95:ac:1f:d6:f6:71:38:1e:5b:
bc:f3:d8:b4:1c:98:88:14:d4:20:a7:01:85:ab:6d:
ef:60:41:69:5c:db:6e:e4:7e:be:1a:18:63:df:ad:
80:48:99:41:a1:8a:f4:42:1c:9a:78:e5:07:07:73:
ab:7f:ed:f4:8d:87:ce:55:b9:9e:b4:9e:40:4f:5d:
a4:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:E1:A7:3B:6C:6D:8E:5B:9E:80:AE:D5:EB:8A:0A:E4:E6:BA:CF:77
X509v3 Authority Key Identifier:
keyid:3E:28:D6:F1:3E:35:9D:D0:BB:45:34:A2:46:55:97:4C:57:D2:B0:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PijW8T41ndC7RTSiRlWXTFfSsP4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/VeGnO2xtjluegK7V64oK5Oa6z3c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/PijW8T41ndC7RTSiRlWXTFfSsP4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:db80::/29
Signature Algorithm: sha256WithRSAEncryption
7f:73:3a:2f:b9:76:6c:7f:ed:bb:b1:17:78:28:bb:04:96:45:
f1:5e:33:7f:f8:0f:8b:1b:49:ca:69:09:ac:9a:24:74:18:45:
da:92:c2:dd:db:8f:93:9e:a1:43:9e:5a:2e:8c:22:37:cd:5f:
fc:9f:a1:8a:e1:b3:97:44:ab:14:e3:64:04:a3:45:c8:51:85:
7f:a9:a1:4e:c4:f5:6b:c9:65:93:2a:43:90:70:0b:3d:fb:ea:
56:aa:ea:89:bf:26:df:0d:fa:77:2f:55:1c:a4:8f:57:97:9b:
7a:9d:19:cd:c3:2a:82:65:43:f7:a6:1d:e9:89:30:20:95:05:
8f:48:29:1a:09:c1:84:35:64:ce:10:51:4b:01:6c:a6:08:de:
30:81:6b:e3:85:70:5e:9f:6d:80:a8:b3:30:50:17:98:d7:39:
8e:04:2a:cf:d8:ee:f0:51:40:e1:0c:d8:dc:71:52:4f:e5:60:
94:f6:b1:85:2b:56:cb:f4:7d:df:3e:c9:c4:e2:fe:b6:86:14:
5c:96:f0:3f:58:fb:42:46:0c:6a:be:a0:77:10:14:d9:e0:33:
26:e3:55:ad:5f:df:4b:78:59:7b:ef:8e:b3:44:ad:d4:92:cc:
2b:65:a2:6e:d2:8f:6c:c1:af:56:02:bc:9f:59:70:02:21:1a:
ff:88:0f:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:11 2024 by rpki-client on console-ams.rpki-client.org