Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/VA77sH1Nq44_mQZYY9mcMysUxuk.roa
File: VA77sH1Nq44_mQZYY9mcMysUxuk.roa (raw, json)
Hash identifier: 2mlvI6SFXWq6nY9DVPq362guvBimiGUQuB+9nZWfh0w=
Subject key identifier: 54:0E:FB:B0:7D:4D:AB:8E:3F:99:06:58:63:D9:9C:33:2B:14:C6:E9
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018AB9088565770040F488D88EAAAD65BE03
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/VA77sH1Nq44_mQZYY9mcMysUxuk.roa
Signing time: Thu 21 Sep 2023 18:37:37 +0000
ROA not before: Thu 21 Sep 2023 18:37:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a0e:b107:1870::/48 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a10:ccc3:ccc2::/48 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:b107:5d0::/44 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:97c0:76f::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 04 Oct 2023 06:35:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b9:08:85:65:77:00:40:f4:88:d8:8e:aa:ad:65:be:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Sep 21 18:37:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=540efbb07d4dab8e3f99065863d99c332b14c6e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:57:ac:e9:56:66:1a:84:25:4a:4c:d6:7b:fd:
0a:c2:7d:ae:a8:65:fc:9f:37:39:ac:ad:d6:44:cb:
fa:a1:fc:72:28:eb:e9:43:9c:de:b4:ea:94:bb:0a:
a1:64:24:7f:0b:4b:1f:2f:d7:d0:66:21:40:57:e8:
d1:c0:4a:aa:34:cb:ee:d7:8b:4f:44:a9:07:2f:c4:
3b:75:01:c8:19:cf:ac:58:b4:13:f0:5a:83:7c:8b:
91:e4:e3:20:5d:1e:8e:55:0a:49:36:f8:a0:ad:93:
de:e3:a0:37:41:53:f2:6b:fd:bd:77:e9:0a:ae:18:
12:1e:78:f8:34:cd:a2:d3:b6:93:56:77:5d:68:f6:
f2:93:5a:62:dc:3d:a6:cd:f5:25:ee:68:3f:a0:55:
ad:a3:29:0b:5c:c3:65:21:db:cc:2f:7f:fa:04:ba:
17:d5:69:3a:d9:8b:29:39:cf:88:78:1a:bd:29:7a:
86:7e:f4:98:64:e6:00:fc:15:07:8d:3d:26:f1:2b:
c9:99:ad:1f:2a:dd:09:3f:d0:7a:4d:7a:2d:c2:27:
c4:1c:a7:b3:cf:08:a2:be:19:dc:bd:32:30:fe:bb:
cd:a1:00:cb:d5:61:d0:7d:d1:40:b9:64:e4:c8:1e:
87:24:7f:92:06:53:0e:f8:e8:10:04:e1:02:eb:bd:
13:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:0E:FB:B0:7D:4D:AB:8E:3F:99:06:58:63:D9:9C:33:2B:14:C6:E9
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/VA77sH1Nq44_mQZYY9mcMysUxuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:76f::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c4:ac00::/38
2a0e:b107:5d0::/44
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc3:ccc2::/48
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
51:c9:1c:fb:d1:b1:2c:b6:78:e2:90:4b:0e:a9:86:89:9d:fa:
b3:18:14:f6:07:41:fd:61:ee:f2:dd:48:53:a0:08:c9:bb:8e:
f1:ce:31:ce:de:fd:f4:01:66:c2:13:f0:8d:72:b8:5e:ff:b9:
f1:aa:f0:a6:03:50:94:8f:e6:c4:89:91:16:14:88:ee:80:aa:
dc:67:fa:3f:2c:00:73:5d:4e:06:77:32:29:b8:ea:70:c9:e7:
ef:34:ff:6b:2b:84:22:8e:18:63:5b:0c:cd:ae:32:c7:e9:d4:
d5:b0:26:92:24:bb:33:bf:67:80:e0:5b:65:8e:6c:52:97:24:
5c:5e:21:81:44:3d:68:96:22:d9:d5:cc:4c:10:b6:b4:22:76:
fb:5e:2e:fc:45:f7:94:59:52:1b:6e:b8:3d:d2:eb:2d:a9:f2:
b5:3f:61:82:0f:7d:66:d4:7a:36:b0:f3:59:3f:fd:1a:30:fa:
35:b2:f2:b9:9c:85:a3:3a:06:08:93:04:2e:c7:f7:fe:67:c7:
81:4c:02:6d:16:e4:0b:20:4d:fc:07:0c:7d:5f:31:d7:a7:c0:
20:0d:a2:0a:10:c1:1a:5f:40:b7:87:ce:17:bf:03:45:33:56:
81:2e:85:1e:28:9b:98:2a:82:02:70:2f:43:87:91:d9:e2:a8:
00:9f:f3:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:32 2024 by rpki-client on console-fra.rpki-client.org