Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/_VaYKWBj3iALkU7rKmvIhktKSd8.roa
File: _VaYKWBj3iALkU7rKmvIhktKSd8.roa (raw, json)
Hash identifier: EGKNx4MlABFadmhJ0PNTQYNLLEOb7HsbWPorm4IvnQA=
Subject key identifier: FD:56:98:29:60:63:DE:20:0B:91:4E:EB:2A:6B:C8:86:4B:4A:49:DF
Certificate issuer: /CN=7001e422227fa44cc5cb95d2a9dcce0fa5b89c07
Certificate serial: 018BA4A5E0A6CC074831EAC06882DDB24992
Authority key identifier: 70:01:E4:22:22:7F:A4:4C:C5:CB:95:D2:A9:DC:CE:0F:A5:B8:9C:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/_VaYKWBj3iALkU7rKmvIhktKSd8.roa
Signing time: Mon 06 Nov 2023 12:40:16 +0000
ROA not before: Mon 06 Nov 2023 12:40:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211432
IP address blocks: 2a0f:6740::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a4:a5:e0:a6:cc:07:48:31:ea:c0:68:82:dd:b2:49:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7001e422227fa44cc5cb95d2a9dcce0fa5b89c07
Validity
Not Before: Nov 6 12:40:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd5698296063de200b914eeb2a6bc8864b4a49df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:10:41:7a:d8:96:95:04:3a:5b:a1:56:cb:76:
99:72:40:e9:6a:9a:41:ad:9e:54:da:c8:6d:13:18:
49:94:fa:02:f0:f6:9f:9b:79:4b:54:83:dd:ca:92:
e2:00:cf:fc:f5:61:85:6a:6c:f8:cd:60:01:c0:02:
fc:ea:26:84:ee:96:73:78:95:11:8e:69:5d:9f:2b:
b0:00:5d:3a:d8:8e:55:08:7b:7c:e4:b8:a4:f9:41:
38:51:8e:e4:68:35:3c:56:7d:d2:dc:9c:74:02:0c:
bd:d3:3a:d1:ff:9f:88:d8:a6:da:2d:91:93:64:3b:
6f:a6:23:e5:6a:b7:b9:7d:b1:3c:90:5a:31:3b:77:
e6:b8:1d:79:90:f0:f1:b5:4a:ae:57:9d:5f:12:2f:
72:6e:67:9d:4b:74:24:a6:a3:46:6d:2a:66:23:70:
ae:02:b0:cc:07:e7:0f:24:00:ce:04:a4:85:e6:b6:
a6:27:80:5c:73:18:2b:7c:de:8d:f8:bd:9d:b5:d4:
85:5c:47:14:8d:c0:96:30:14:b6:54:3d:b7:58:4c:
f6:6a:7b:b2:be:6d:71:a1:ce:3a:be:05:0e:64:7c:
f4:0a:6a:80:f8:2c:c7:a4:17:ee:df:07:e0:8d:b9:
cc:12:05:0b:e7:8b:46:79:2a:40:55:01:b7:2b:82:
89:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:56:98:29:60:63:DE:20:0B:91:4E:EB:2A:6B:C8:86:4B:4A:49:DF
X509v3 Authority Key Identifier:
keyid:70:01:E4:22:22:7F:A4:4C:C5:CB:95:D2:A9:DC:CE:0F:A5:B8:9C:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/_VaYKWBj3iALkU7rKmvIhktKSd8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:6740::/29
Signature Algorithm: sha256WithRSAEncryption
2f:1e:a3:ae:e0:cd:a4:8c:0d:10:d1:f2:c0:92:49:63:94:ff:
81:2b:74:3e:03:a7:87:02:0e:99:45:8f:a8:a6:da:e6:77:9a:
4d:63:fe:8b:04:47:b3:2d:b0:34:2b:99:ae:b3:01:9e:b2:b7:
ab:ac:c5:80:42:4b:fa:41:08:42:b0:1c:1b:5e:83:31:2c:63:
64:12:9c:79:62:8f:26:99:b4:38:65:30:8e:09:ee:58:82:f7:
94:51:92:86:ba:cb:81:69:7d:54:ac:fa:d1:4b:49:9e:ad:5a:
1f:8c:d5:af:46:3c:4b:70:87:3d:cc:35:27:80:5d:6d:34:8f:
9e:e8:5a:c4:48:0c:e1:12:ef:bb:6e:ee:49:8a:c9:03:52:fa:
8b:8e:45:b3:94:1d:8d:42:f3:e3:f6:6f:c9:9f:2d:22:21:4f:
06:42:dd:d6:9f:c4:4c:ca:28:9b:ec:10:92:5b:6d:70:a8:67:
21:ff:b8:58:12:a7:2e:de:2c:51:2b:ae:c3:d7:d0:a8:0f:2f:
4c:c0:e6:d6:f2:17:17:92:09:cf:57:83:09:ec:6e:4b:5f:bb:
5d:8f:f2:08:89:8b:45:8d:46:77:b4:10:02:a2:9f:45:81:2b:
af:ad:1a:d3:8d:d0:92:c9:a9:86:39:d2:b1:19:63:a1:97:ac:
4a:18:67:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:42 2024 by rpki-client on console-fra.rpki-client.org