Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/a38693-cfa0-43e8-a51b-11e9e9f01343/1/pVJpJFgnwJKevzoLgBhhj24AO9I.roa
File: pVJpJFgnwJKevzoLgBhhj24AO9I.roa (raw, json)
Hash identifier: GwYPCp0hpfaxV7hnG/rLC9elElh5PFd+Hpr9MNd71To=
Subject key identifier: A5:52:69:24:58:27:C0:92:9E:BF:3A:0B:80:18:61:8F:6E:00:3B:D2
Certificate issuer: /CN=330fe971b3e36b16a92be85f59985be45968b864
Certificate serial: 018572BA73740A71F9D2CA90F45DC2018858
Authority key identifier: 33:0F:E9:71:B3:E3:6B:16:A9:2B:E8:5F:59:98:5B:E4:59:68:B8:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mw_pcbPjaxapK-hfWZhb5FlouGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/a38693-cfa0-43e8-a51b-11e9e9f01343/1/pVJpJFgnwJKevzoLgBhhj24AO9I.roa
Signing time: Mon 02 Jan 2023 13:44:59 +0000
ROA not before: Mon 02 Jan 2023 13:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21371
IP address blocks: 2a03:6980::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:73:74:0a:71:f9:d2:ca:90:f4:5d:c2:01:88:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=330fe971b3e36b16a92be85f59985be45968b864
Validity
Not Before: Jan 2 13:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a55269245827c0929ebf3a0b8018618f6e003bd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c7:87:be:16:23:71:ab:bc:20:80:11:9f:ba:
a3:e0:49:47:da:3d:1d:48:7f:c3:c5:78:7e:cb:5b:
cb:33:4d:8e:db:f7:80:a1:05:3a:16:af:a3:c3:14:
13:61:2a:3d:f5:c8:50:9a:f2:5e:39:92:23:1b:5d:
97:87:7c:99:44:1b:16:68:7e:83:cc:a0:41:db:3a:
3b:d6:64:cc:36:be:60:99:09:93:61:0f:26:ac:48:
d9:79:56:40:3f:57:bd:56:51:12:2d:7c:37:1c:1e:
86:88:c5:d8:71:f3:04:06:93:a8:0a:56:4f:e7:89:
9d:2f:ef:88:cf:4d:c1:9d:88:1c:81:e5:eb:5c:cc:
48:37:9a:af:55:74:88:bd:ac:e9:8f:b2:ac:0d:e4:
b7:be:17:0a:27:3b:c2:13:94:4f:a5:44:b8:40:9b:
f3:94:14:3e:57:05:02:c5:c0:59:82:00:cd:81:5b:
19:a8:c2:b9:f1:24:2b:0d:41:36:c9:88:97:9e:78:
5c:52:46:56:cf:55:0a:3e:cd:2e:0d:b8:30:9c:46:
92:c2:78:3f:2f:60:0e:0f:13:10:06:6e:7a:c7:0f:
c4:04:2a:cd:3f:2a:83:af:9e:5b:86:fe:7e:65:e9:
7d:17:a1:e1:22:01:81:3e:d3:6e:04:67:85:60:62:
dc:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:52:69:24:58:27:C0:92:9E:BF:3A:0B:80:18:61:8F:6E:00:3B:D2
X509v3 Authority Key Identifier:
keyid:33:0F:E9:71:B3:E3:6B:16:A9:2B:E8:5F:59:98:5B:E4:59:68:B8:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mw_pcbPjaxapK-hfWZhb5FlouGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/a38693-cfa0-43e8-a51b-11e9e9f01343/1/pVJpJFgnwJKevzoLgBhhj24AO9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/a38693-cfa0-43e8-a51b-11e9e9f01343/1/Mw_pcbPjaxapK-hfWZhb5FlouGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:6980::/32
Signature Algorithm: sha256WithRSAEncryption
25:be:cf:f8:8d:b2:1a:be:d1:3b:84:97:da:c5:ba:26:5d:26:
7d:74:e6:ff:94:07:82:8d:49:d5:54:1b:d8:f1:3b:7f:9f:b2:
2d:00:2d:17:19:6f:98:9d:cd:fd:08:ff:fc:fb:99:4c:fa:79:
a5:ed:e3:17:91:0d:1b:34:86:ef:dd:44:bf:0b:3e:a6:48:9d:
7b:51:a7:57:d2:75:e3:b0:fa:f8:3f:17:ff:a8:5a:11:79:63:
6e:32:f1:86:a1:a7:c2:7b:6c:2d:21:c2:2c:73:f6:93:b0:7f:
8d:92:18:48:71:32:c9:10:07:90:e6:22:5d:d5:0a:ed:cf:2d:
fd:60:75:b4:84:24:dd:94:4e:aa:3f:82:7c:4f:d8:b1:b9:bf:
84:85:f2:f8:9e:56:75:ad:c2:57:7d:c0:f7:af:35:d0:f2:29:
72:37:63:e2:85:34:e6:0c:d2:3e:b0:4a:f5:fa:b1:31:1b:92:
d2:26:fe:d3:64:54:81:94:c9:59:55:80:9a:39:4b:b9:1b:3c:
ec:b7:ae:3a:0a:a3:54:be:ee:11:59:d5:8d:84:e2:36:32:c4:
21:bc:2e:b9:43:70:a8:c8:69:60:a4:9c:d8:54:ac:76:e2:20:
f6:04:6f:e6:06:9c:a4:ac:5a:66:3d:61:c6:f7:8d:62:8f:80:
5f:d0:d8:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:29 2024 by rpki-client on console-fra.rpki-client.org