Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/2f9689-a915-4127-a470-85c305f9fe6f/1/vRSISyxkXhJevEIA8qYyUtoeHDQ.roa
File: vRSISyxkXhJevEIA8qYyUtoeHDQ.roa (raw, json)
Hash identifier: EquAZqaHBt9EJG8SxsqxqZXivAWldjS1ikP/+iuTuqk=
Subject key identifier: BD:14:88:4B:2C:64:5E:12:5E:BC:42:00:F2:A6:32:52:DA:1E:1C:34
Certificate issuer: /CN=23162bbf0246cda2280a293432ae6f0bd6826131
Certificate serial: 0187A5E06CFA65805E6AE1A06C754191EB95
Authority key identifier: 23:16:2B:BF:02:46:CD:A2:28:0A:29:34:32:AE:6F:0B:D6:82:61:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IxYrvwJGzaIoCik0Mq5vC9aCYTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/2f9689-a915-4127-a470-85c305f9fe6f/1/vRSISyxkXhJevEIA8qYyUtoeHDQ.roa
Signing time: Fri 21 Apr 2023 22:12:41 +0000
ROA not before: Fri 21 Apr 2023 22:12:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198902
IP address blocks: 2001:678:f7c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a5:e0:6c:fa:65:80:5e:6a:e1:a0:6c:75:41:91:eb:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23162bbf0246cda2280a293432ae6f0bd6826131
Validity
Not Before: Apr 21 22:12:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd14884b2c645e125ebc4200f2a63252da1e1c34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:58:c5:b1:c7:08:3b:cb:51:ac:c2:9d:95:2f:
da:cb:a4:56:44:82:61:6e:43:cc:3c:76:de:4d:aa:
80:05:6e:93:0e:56:95:df:0f:0a:66:a8:1b:6c:f2:
3c:d0:96:a9:d1:9b:b4:10:42:68:fb:78:7e:ed:7c:
9c:b4:6c:7a:51:6d:af:3f:30:c3:a3:58:bf:63:48:
42:41:8b:29:9a:11:9b:dc:77:ea:48:06:14:12:f8:
7f:b4:72:97:1f:12:3d:ea:56:26:92:e3:a8:ac:3d:
99:c3:0f:d0:49:d1:9a:d1:09:2c:ab:41:7f:52:49:
05:13:ab:bd:92:82:28:a3:90:74:b2:71:f4:a3:dc:
25:7c:f2:44:cc:80:ac:b9:6a:86:8d:5c:3b:cb:66:
76:4f:01:6f:a2:74:4a:ac:0e:f8:c9:d8:3d:ab:c6:
55:8c:7e:04:4d:d9:3d:15:d4:1f:57:0a:2d:32:09:
94:50:75:4d:7b:2f:02:85:ec:dc:a8:a3:c2:20:cc:
17:64:b5:0e:33:dc:e6:75:68:6a:ab:e6:9e:e8:e7:
b1:e3:4d:5b:b5:ae:89:89:06:a2:59:73:07:e8:08:
b0:3b:2f:8b:c5:27:a7:5d:dc:e7:c6:6d:48:b6:70:
a2:16:80:62:53:1d:9d:27:b2:80:fb:38:83:6a:a4:
90:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:14:88:4B:2C:64:5E:12:5E:BC:42:00:F2:A6:32:52:DA:1E:1C:34
X509v3 Authority Key Identifier:
keyid:23:16:2B:BF:02:46:CD:A2:28:0A:29:34:32:AE:6F:0B:D6:82:61:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IxYrvwJGzaIoCik0Mq5vC9aCYTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/2f9689-a915-4127-a470-85c305f9fe6f/1/vRSISyxkXhJevEIA8qYyUtoeHDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/2f9689-a915-4127-a470-85c305f9fe6f/1/IxYrvwJGzaIoCik0Mq5vC9aCYTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f7c::/48
Signature Algorithm: sha256WithRSAEncryption
6b:f7:20:5f:8a:66:e4:87:8a:f3:23:12:b8:47:00:75:08:25:
3e:51:67:fa:aa:ee:95:37:8f:4a:b5:77:0b:99:89:90:2f:5f:
f1:16:3e:f3:d2:19:ad:16:d4:30:cd:e6:1e:4f:73:e3:8b:ff:
c3:5e:65:d6:06:0a:93:0d:f9:bc:77:d3:95:96:f7:07:f8:f3:
32:43:bc:db:e5:ac:c6:89:ee:e2:d4:b3:2c:27:f3:91:a6:3b:
06:08:d8:42:13:5a:c9:0d:98:38:8d:c1:e9:79:fe:0b:af:7a:
5e:04:cf:71:23:09:48:29:80:6a:83:4f:d4:4f:86:40:f7:64:
5c:89:54:47:ef:91:7e:70:23:51:e3:64:67:46:40:e5:bc:3a:
f3:41:7e:37:93:33:15:f3:5a:7b:27:d2:ae:e5:0b:9a:f4:92:
ff:0a:4c:ec:97:8f:55:e1:b2:e3:38:54:97:63:73:34:17:7a:
00:8c:e0:38:0a:9e:b0:f1:7a:c7:5a:c3:ba:32:05:c4:1b:6f:
54:53:fd:6e:65:a2:c3:ab:a5:30:41:a1:cf:66:1e:d1:f3:eb:
51:bb:3b:5d:d7:0c:4d:b4:6e:3b:db:ff:1a:82:42:55:37:26:
c4:47:cc:92:18:63:d5:ac:39:cb:be:4a:b6:8e:f1:e8:55:67:
f1:8d:31:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:11 2024 by rpki-client on console-fra.rpki-client.org