Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/VhqC8LCbxAfL1hBejDz8JCthWfI.roa
File: VhqC8LCbxAfL1hBejDz8JCthWfI.roa (raw, json)
Hash identifier: Z0lbrF6+nEwbBEf3/sa5Xlls8JpJdamWknZ8bLTh5KQ=
Subject key identifier: 56:1A:82:F0:B0:9B:C4:07:CB:D6:10:5E:8C:3C:FC:24:2B:61:59:F2
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0187A8A339C9EDB120CA5081311BBE14699D
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/VhqC8LCbxAfL1hBejDz8JCthWfI.roa
Signing time: Sat 22 Apr 2023 11:04:42 +0000
ROA not before: Sat 22 Apr 2023 11:04:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202827
IP address blocks: 2a0e:b107:1ce1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a8:a3:39:c9:ed:b1:20:ca:50:81:31:1b:be:14:69:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 22 11:04:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=561a82f0b09bc407cbd6105e8c3cfc242b6159f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:fb:c9:6c:fe:1e:d1:df:f6:cb:33:9f:da:ad:
3c:cf:81:b3:82:90:cb:78:18:2f:36:ad:a7:d1:a4:
c8:4b:81:1f:67:43:df:8f:a7:fd:d1:42:7e:fd:9e:
b2:9e:c8:5c:66:c4:e4:8a:43:d8:d9:f3:f2:33:9f:
09:c2:cb:be:be:65:25:84:7d:8f:8a:1b:81:52:17:
2f:4d:c4:a6:e9:ea:6d:a6:20:ff:e4:98:b5:e9:3d:
ee:ca:eb:d5:b2:9a:6b:cd:a1:a3:66:85:f3:a7:fb:
7f:56:86:ca:4a:a2:1a:10:9d:12:ad:2f:23:1d:0c:
c2:eb:6d:46:d6:ca:52:2d:cc:0e:7d:60:63:62:84:
a5:2a:be:fb:a6:35:ef:c2:c9:dd:70:06:1d:a9:1c:
f8:6a:a1:a1:63:89:72:36:86:f7:c1:e5:7c:cd:e5:
2e:81:d6:26:e8:b8:41:3d:3c:41:89:41:81:ea:df:
f3:73:39:68:f5:f3:31:19:7d:3c:95:5d:a7:fb:b2:
96:76:be:7e:db:84:64:47:5e:ad:3d:0d:13:d3:8d:
0e:c3:20:f7:01:57:32:b3:19:28:79:49:e6:80:ce:
88:93:25:6e:65:48:b4:cd:3e:46:45:ec:e1:2f:10:
ff:d6:99:83:05:de:c2:76:fd:51:83:39:5f:6c:4c:
b0:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:1A:82:F0:B0:9B:C4:07:CB:D6:10:5E:8C:3C:FC:24:2B:61:59:F2
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/VhqC8LCbxAfL1hBejDz8JCthWfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1ce1::/48
Signature Algorithm: sha256WithRSAEncryption
47:cf:a2:1e:be:cd:74:40:11:d7:33:8b:b9:a7:96:fd:c0:77:
b5:01:af:3d:b5:1a:a8:9b:b2:5d:1f:dd:b8:f2:54:62:10:e5:
f1:f6:70:2d:eb:35:4f:e3:e0:28:b5:6a:dc:76:9d:6f:22:c3:
aa:47:62:90:38:cc:f3:1e:d3:86:15:37:70:82:ce:cb:55:b7:
63:d0:52:44:00:58:6b:ce:5f:45:85:f8:6c:a4:3a:62:6d:96:
05:56:6a:92:45:f6:38:b8:e2:d9:ea:c3:5f:f8:e6:1d:b9:47:
dd:ec:5f:2a:56:96:3c:97:f4:3f:4d:9b:e0:7a:19:e8:e9:0f:
6e:5b:d7:7b:ff:70:f8:82:e4:28:35:b3:8a:b6:f8:bc:9b:91:
3f:01:79:0b:3b:84:2c:d9:61:4d:5c:75:c3:96:9a:f4:96:3c:
9b:46:0a:4e:b1:7f:df:a5:2f:58:82:4f:ae:0a:61:1d:da:d8:
b9:16:4a:b6:5e:d2:7a:e7:16:87:3d:68:d5:59:54:40:69:35:
ce:de:f7:56:88:6a:ea:2f:ca:e7:12:ce:5d:f4:cc:b1:f3:f2:
23:00:74:61:14:44:8a:47:ab:5e:f1:76:37:df:ba:c3:e1:62:
13:70:02:55:f0:36:88:ab:36:53:7d:b1:44:b2:23:4c:b0:7b:
ac:29:88:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:50 2024 by rpki-client on console-ams.rpki-client.org