Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/vlfULrgzlq_P7xCkRWSzXtBpc-A.roa
File: vlfULrgzlq_P7xCkRWSzXtBpc-A.roa (raw, json)
Hash identifier: QpljHpspSRfNA1t+UMWjjfhLoQJYPgfNZGGyRVIdxSU=
Subject key identifier: BE:57:D4:2E:B8:33:96:AF:CF:EF:10:A4:45:64:B3:5E:D0:69:73:E0
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0192B0D933B4FFD19ECE094D5893D58A40F3
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/vlfULrgzlq_P7xCkRWSzXtBpc-A.roa
Signing time: Mon 21 Oct 2024 20:51:17 +0000
ROA not before: Mon 21 Oct 2024 20:51:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 2a06:de00:f0::/44 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a0e:b107:1870::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
Validation: Failed, certificate revoked on Wed 23 Oct 2024 22:24:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b0:d9:33:b4:ff:d1:9e:ce:09:4d:58:93:d5:8a:40:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 21 20:51:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be57d42eb83396afcfef10a44564b35ed06973e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:96:d5:32:7a:35:5a:47:53:f9:32:d9:f7:54:
2e:34:e6:56:36:c2:f9:b0:f3:e4:41:d2:11:c2:d6:
e9:db:09:54:c8:ac:ac:30:42:63:cf:4b:a7:ff:f2:
87:d5:e2:cc:63:78:65:d2:ce:fe:3c:06:ba:19:5b:
a0:de:07:7d:fa:03:49:b4:23:e8:90:41:4b:09:df:
f7:c3:1e:0f:de:f6:8a:13:8c:38:f3:d9:aa:a0:87:
76:e0:7e:23:34:99:7a:f4:4f:0e:95:f3:27:da:35:
27:44:cc:41:ef:12:86:3f:b7:ec:79:ae:35:67:1d:
a0:fd:22:59:3e:3c:0e:4f:e0:02:34:a0:22:ab:79:
00:0c:6c:dc:90:b0:1a:98:ed:e6:7c:31:98:b8:4d:
66:7e:48:03:0a:4a:2b:36:ac:e2:d2:39:22:7f:9f:
86:96:10:52:50:e7:43:5b:10:fd:0f:42:79:f3:c7:
eb:d2:b3:e8:bb:8c:f4:a5:1d:f4:ef:fe:7d:28:61:
6e:d5:16:8d:e7:bd:2a:09:76:f0:c7:97:ba:48:f3:
ce:ad:a9:72:f6:b8:61:25:49:b2:93:54:bb:cd:ea:
7d:72:74:d6:54:34:ba:fd:30:9b:c3:41:5e:fa:d3:
6c:c2:27:32:c3:b5:91:ee:03:02:83:d1:e9:f3:f8:
b4:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:57:D4:2E:B8:33:96:AF:CF:EF:10:A4:45:64:B3:5E:D0:69:73:E0
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/vlfULrgzlq_P7xCkRWSzXtBpc-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:de00:f0::/44
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c4:ac00::/38
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
63:bc:36:26:b3:6b:50:08:bd:74:78:c3:48:a3:0a:94:57:47:
03:b2:f5:fa:47:5c:ff:3d:20:13:37:ba:7f:84:98:ba:d5:63:
dd:36:16:96:3a:08:e8:bc:7b:ef:07:fe:57:57:0b:50:2a:cb:
b2:d5:91:6e:a2:d4:1b:6d:59:1b:e6:2e:5e:15:29:c6:6a:51:
8b:50:9b:22:7c:1a:5f:ee:f1:cf:52:2f:1f:a0:bb:23:c3:23:
4d:83:b4:c0:2c:6a:8d:85:a3:c8:6e:51:93:99:6c:d3:f7:d8:
58:ee:a7:d7:b5:58:ea:83:34:0c:d4:71:a8:25:c5:e6:08:b1:
75:78:b7:30:88:f2:d2:cb:c4:71:b9:79:d0:c1:bf:86:24:c1:
41:8c:57:50:f0:8f:7d:d5:13:cc:e1:74:77:c3:3f:e2:3c:6e:
6a:2c:9d:9c:2a:17:12:93:a2:f4:8e:f7:fc:83:6d:b4:fd:ca:
6d:10:7b:ea:f3:b7:8f:e0:ca:55:bf:24:00:a3:42:04:fe:1d:
33:03:fc:81:b7:ff:99:83:8f:d6:bb:84:ec:46:bc:7f:f8:81:
c7:a2:b8:13:ee:ba:00:90:55:8f:69:b9:9a:65:51:4c:15:ae:
11:bb:c8:f5:7b:c5:83:8c:e7:2e:27:9c:14:7b:26:2c:ef:1c:
27:4a:43:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 02:06:57 2024 by rpki-client on console-fra.rpki-client.org