Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/VtLVhmeQOKqNNwv9V9vIxnzWGk4.roa
File: VtLVhmeQOKqNNwv9V9vIxnzWGk4.roa (raw, json)
Hash identifier: +Z6ahW3eUk2pG1miwDtIK1DHkXP4RbwAnTgmBLbmfrw=
Subject key identifier: 56:D2:D5:86:67:90:38:AA:8D:37:0B:FD:57:DB:C8:C6:7C:D6:1A:4E
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018CC9BCE5EC653A125C12B7454DAF9C3EF6
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/VtLVhmeQOKqNNwv9V9vIxnzWGk4.roa
Signing time: Tue 02 Jan 2024 10:34:09 +0000
ROA not before: Tue 02 Jan 2024 10:34:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197469
IP address blocks: 2a0e:97c0:b50::/44 maxlen: 48
Validation: Failed, certificate revoked on Sun 07 Jan 2024 11:58:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:e5:ec:65:3a:12:5c:12:b7:45:4d:af:9c:3e:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 10:34:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=56d2d586679038aa8d370bfd57dbc8c67cd61a4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6f:2f:53:c2:bc:47:03:f0:8e:7f:4e:81:72:
56:55:a5:3c:a4:f2:c4:04:9d:4a:7e:e1:d3:cd:f5:
91:e6:0b:85:72:00:89:0a:41:82:51:21:eb:e8:1f:
9d:3c:5f:9c:80:44:59:0f:42:2d:6b:45:04:ef:67:
6b:d3:6a:3d:7d:92:ff:6c:cf:3b:76:9e:d0:d0:db:
52:ea:f6:a7:b3:69:02:21:a1:f6:ff:aa:46:8a:85:
2a:6c:84:90:d3:41:d1:d3:d0:11:c1:f2:1c:f7:89:
5e:2e:20:1b:7b:b1:85:35:a8:c2:d6:9d:0c:7c:d8:
c5:b4:97:a0:0b:4c:3c:64:8d:88:9e:b0:44:eb:fc:
2d:a4:e2:ea:78:53:77:c0:2a:1f:93:9a:9b:4e:80:
1c:1a:66:8b:d7:72:66:69:04:6c:b0:e4:95:7c:9d:
72:98:0f:92:09:ad:a8:4b:da:c6:4b:e8:7d:f5:71:
9c:6b:5c:c6:a8:3e:3c:27:b6:25:e4:60:46:05:18:
08:50:ae:de:dd:f7:d3:50:6a:6e:ba:6d:71:f9:7c:
40:12:20:a5:37:46:bf:d6:f3:9f:2a:96:3b:78:24:
2b:4a:1b:cf:b2:ef:4a:66:31:47:32:09:7b:9a:3f:
27:23:1b:59:f6:7b:ec:2c:e0:0d:05:8e:1d:9b:6b:
da:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D2:D5:86:67:90:38:AA:8D:37:0B:FD:57:DB:C8:C6:7C:D6:1A:4E
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/VtLVhmeQOKqNNwv9V9vIxnzWGk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:b50::/44
Signature Algorithm: sha256WithRSAEncryption
c1:73:e1:3e:ab:ec:77:0a:e3:3c:75:c0:0b:9c:97:c2:b8:0b:
92:0a:0d:1f:60:4b:05:a8:eb:28:a2:9a:6e:fa:ff:3f:b3:47:
e5:ac:1f:62:2d:5d:50:86:7a:97:a4:28:36:0c:cf:60:c8:a2:
44:da:00:c9:16:56:b1:71:af:01:7c:d1:e6:8c:61:e4:81:93:
87:b3:75:62:6e:61:7f:5f:75:96:07:5f:45:9d:71:6e:fb:d9:
76:6a:8d:91:20:00:9c:b1:83:2a:5d:bf:dd:ae:81:82:1b:6d:
61:19:b9:fb:43:4d:f6:a4:d6:6f:a6:6f:45:db:21:11:81:1a:
01:c0:ee:96:0f:f9:37:68:2e:3b:a3:f8:be:c0:35:56:a0:64:
a9:48:74:2f:09:ff:26:7e:29:f6:dc:c8:1d:4e:3c:a4:39:d5:
74:d0:18:44:70:4b:fc:0e:5e:0d:0e:6a:47:81:7f:a6:d0:c6:
29:a4:21:7f:bc:ea:9b:84:35:79:61:55:66:a1:06:0c:12:d6:
86:bc:59:aa:0d:b6:bb:d7:fe:0c:dc:df:e6:1c:40:05:c6:80:
84:6d:c2:bb:9f:d1:02:73:4d:19:0d:94:3e:c6:1c:b2:a7:70:
26:ac:98:b6:9a:22:6f:ed:1f:6f:d6:16:f1:ae:d3:d1:56:cf:
d4:11:17:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jan 7 13:21:07 2024 by rpki-client on console-ams.rpki-client.org