Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/VKSiqD6wqMeRBVxn84juVSOwnrU.roa
File: VKSiqD6wqMeRBVxn84juVSOwnrU.roa (raw, json)
Hash identifier: qz5JiA+B2PiMyS7BKrCwdG0fXW2pe//cRlBc+hH1ySY=
Subject key identifier: 54:A4:A2:A8:3E:B0:A8:C7:91:05:5C:67:F3:88:EE:55:23:B0:9E:B5
Certificate issuer: /CN=3aca50858a1856ffa02e91356f14236e7c38b85a
Certificate serial: 01856F30114597D9AB9B6B26CF6616D81D91
Authority key identifier: 3A:CA:50:85:8A:18:56:FF:A0:2E:91:35:6F:14:23:6E:7C:38:B8:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/VKSiqD6wqMeRBVxn84juVSOwnrU.roa
Signing time: Sun 01 Jan 2023 21:14:59 +0000
ROA not before: Sun 01 Jan 2023 21:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57045
IP address blocks: 2a0e:1106:1000::/40 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:11:45:97:d9:ab:9b:6b:26:cf:66:16:d8:1d:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aca50858a1856ffa02e91356f14236e7c38b85a
Validity
Not Before: Jan 1 21:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=54a4a2a83eb0a8c791055c67f388ee5523b09eb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:2b:9b:8e:11:6b:b3:d8:5c:ca:23:c1:c0:05:
63:01:2c:53:c7:03:05:da:d0:a4:32:11:1d:8c:37:
c0:19:0c:f7:bf:8a:cc:72:86:ba:cb:b7:be:d0:d0:
54:83:f7:3e:89:5a:b1:7b:5d:f3:39:86:98:2e:06:
1a:3b:4d:b4:57:e8:0e:c4:7e:d9:3f:48:08:c6:a5:
56:ea:fa:87:69:db:98:83:ea:c3:3f:14:c3:9b:3e:
00:03:42:d5:d0:fd:a1:d4:07:dc:a6:1f:b4:56:65:
49:4f:36:d0:c0:28:ac:0e:74:b6:c7:28:5e:e6:0e:
cc:57:15:74:4f:95:31:44:4e:b9:9e:20:52:1f:4d:
47:45:d4:c2:d6:13:2d:7f:c6:2c:9f:cf:f1:22:2c:
43:ef:2a:78:0e:71:85:5a:80:40:2b:3c:2c:c0:6d:
a4:98:4c:a4:82:17:66:fe:4d:92:85:a3:bc:14:44:
52:2c:70:d3:2e:b2:fb:fa:ad:50:6a:2f:2d:03:08:
fc:c5:de:51:00:17:48:95:b0:5a:4e:f3:2a:40:83:
64:ba:17:b5:98:a4:12:af:7a:7c:22:2f:8a:2d:25:
65:12:04:a8:20:55:11:ac:89:de:92:17:9d:77:9c:
f1:2c:99:9d:a0:35:f0:40:ef:6a:a1:e4:51:3f:06:
30:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:A4:A2:A8:3E:B0:A8:C7:91:05:5C:67:F3:88:EE:55:23:B0:9E:B5
X509v3 Authority Key Identifier:
keyid:3A:CA:50:85:8A:18:56:FF:A0:2E:91:35:6F:14:23:6E:7C:38:B8:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/VKSiqD6wqMeRBVxn84juVSOwnrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:1106:1000::/40
Signature Algorithm: sha256WithRSAEncryption
80:1a:ca:e5:c2:6d:32:ba:e5:59:f6:07:4d:82:a4:9f:b9:6f:
ff:b6:c4:76:69:84:8e:7e:4a:0a:21:96:71:2d:5b:f6:a8:49:
72:68:75:74:e1:e8:71:5b:5c:6e:65:6a:6b:b1:5e:f8:3f:40:
15:00:af:5f:da:86:d3:0e:9b:44:4a:9c:eb:fe:a2:a5:61:ac:
ac:46:f2:a8:2a:53:ce:f2:7f:aa:ab:f1:11:ee:9c:97:f1:3e:
c1:4f:ae:b2:2f:53:38:d1:25:49:13:61:26:29:32:bd:cf:31:
26:3e:fd:e8:2a:ee:51:36:40:af:7b:3a:ac:cd:0d:2d:05:f8:
53:7d:21:a6:b9:78:26:46:b9:22:54:ac:47:4e:30:fc:0e:da:
f0:3a:98:a3:62:3e:7c:6d:a5:6d:f1:1b:fc:3d:33:2c:ea:b1:
e0:12:04:ad:32:d0:07:a7:3f:ec:f4:70:8f:50:a2:ba:c2:af:
05:43:d5:70:76:12:53:05:e4:87:97:9b:73:1a:9e:29:d1:35:
a8:76:e1:97:41:74:81:92:be:66:8a:09:b0:41:29:85:30:10:
97:98:97:f1:63:77:47:9a:4f:c2:24:35:54:fe:63:b7:e5:ae:
fc:8c:91:ee:be:37:6d:d9:fd:6e:fa:b5:34:37:39:d3:2a:1a:
87:2c:cb:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:37 2024 by rpki-client on console-ams.rpki-client.org