Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/e45ad6-e5ae-4819-9f24-f577aa46de83/1/Vn7GTlDQ6BFC8SOYhIFsJG-cTWo.roa
File: Vn7GTlDQ6BFC8SOYhIFsJG-cTWo.roa (raw, json)
Hash identifier: HJl9YIU40FKZ94ZoghKKH0J0WHsIewxyH4AkJiKKJQ0=
Subject key identifier: 56:7E:C6:4E:50:D0:E8:11:42:F1:23:98:84:81:6C:24:6F:9C:4D:6A
Certificate issuer: /CN=813e051cb831d1989607bb76c0bc5693ff947b53
Certificate serial: 018F2A77C323E99AC102203CC1F72088BCA4
Authority key identifier: 81:3E:05:1C:B8:31:D1:98:96:07:BB:76:C0:BC:56:93:FF:94:7B:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gT4FHLgx0ZiWB7t2wLxWk_-Ue1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/e45ad6-e5ae-4819-9f24-f577aa46de83/1/Vn7GTlDQ6BFC8SOYhIFsJG-cTWo.roa
Signing time: Mon 29 Apr 2024 15:27:22 +0000
ROA not before: Mon 29 Apr 2024 15:27:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35372
IP address blocks: 2a0c:b100::/48 maxlen: 48
2a0c:b100:1::/48 maxlen: 48
2a0c:b100:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 28 May 2024 19:20:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:2a:77:c3:23:e9:9a:c1:02:20:3c:c1:f7:20:88:bc:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=813e051cb831d1989607bb76c0bc5693ff947b53
Validity
Not Before: Apr 29 15:27:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=567ec64e50d0e81142f1239884816c246f9c4d6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:7f:e9:50:4f:ab:b1:25:49:58:4f:3c:98:f9:
52:a1:4f:68:d7:fb:01:91:26:72:63:e5:f7:75:5c:
87:71:88:f0:fe:97:73:b5:18:0a:d0:93:bc:08:8f:
11:89:1e:b2:df:8d:34:2d:b9:f9:a3:87:22:95:ee:
ac:fb:6f:c5:bb:de:aa:09:fe:87:d7:b0:57:f8:3a:
e3:e4:36:db:99:4c:cd:b6:d5:7f:39:2e:3b:81:13:
dc:73:6b:07:cb:31:5c:18:1e:c0:8e:81:7b:9f:b8:
7b:2f:98:a8:80:5d:ae:7a:f4:29:23:ac:67:18:bb:
6b:87:d0:69:2f:de:24:3c:43:5f:b9:58:6f:77:50:
0a:cc:d6:ac:9c:c7:c5:6d:35:81:e2:7e:44:d1:48:
bf:9b:47:b8:f5:6b:df:42:d6:1a:8d:71:0d:2c:1a:
4f:5f:09:34:6b:3d:ec:b8:7f:d8:17:ca:49:0c:cf:
94:cc:db:53:52:95:4f:3b:26:53:89:9c:19:e2:31:
cd:44:f3:57:3e:7c:ed:d4:1e:bf:a0:7b:2b:b7:b7:
ea:16:cb:eb:ed:8f:06:33:19:2f:8e:70:d0:63:15:
6f:3f:f5:84:9d:7a:89:2d:94:97:8b:e5:b0:fd:3b:
43:d7:d1:e4:c8:f2:f9:1b:4d:2f:75:cf:6b:c4:0b:
1e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:7E:C6:4E:50:D0:E8:11:42:F1:23:98:84:81:6C:24:6F:9C:4D:6A
X509v3 Authority Key Identifier:
keyid:81:3E:05:1C:B8:31:D1:98:96:07:BB:76:C0:BC:56:93:FF:94:7B:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gT4FHLgx0ZiWB7t2wLxWk_-Ue1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/e45ad6-e5ae-4819-9f24-f577aa46de83/1/Vn7GTlDQ6BFC8SOYhIFsJG-cTWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/e45ad6-e5ae-4819-9f24-f577aa46de83/1/gT4FHLgx0ZiWB7t2wLxWk_-Ue1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b100::-2a0c:b100:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
76:17:ce:52:1e:10:5e:c1:50:aa:48:42:fe:37:8d:f4:b4:50:
0b:8c:ad:f8:a5:43:f9:b0:4d:a3:54:b2:10:24:57:05:22:92:
2e:75:17:8f:39:8b:65:1c:f8:1d:59:2e:66:79:05:b8:19:37:
79:2a:94:47:fe:67:4e:3d:6c:1f:14:59:eb:e4:ff:e5:f3:cf:
35:f4:41:8f:38:27:b3:12:76:e7:57:d3:b1:1d:91:b9:44:96:
8f:55:19:30:84:5e:79:0b:1a:05:51:65:99:a4:61:dc:fb:ef:
d1:6a:ae:31:a5:59:ff:1e:47:f8:e7:df:f7:4f:8a:27:ed:f0:
ef:23:2f:7a:3e:3e:2f:36:1c:e8:39:b8:fb:66:b3:c3:d9:77:
65:c5:21:0d:ad:fe:a2:71:8a:e0:b0:27:59:f9:25:fb:24:12:
69:e5:03:1c:d9:46:b4:0f:5f:2d:12:2d:3d:60:ed:b1:4e:95:
b7:25:08:73:20:c4:59:29:bf:1e:3d:30:2b:85:d9:d5:d8:27:
89:95:ff:62:cf:47:1f:0b:c5:da:d1:2f:d5:42:81:14:7a:f7:
3a:ef:3e:21:ba:3b:a9:f9:9c:cb:aa:c5:c9:ab:38:9f:aa:53:
58:b2:c1:a6:08:57:70:84:4e:65:76:49:01:d6:c6:ab:20:43:
07:58:87:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 29 01:04:22 2024 by rpki-client on console-ams.rpki-client.org