Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VNJxaxr9CRrIafI5ODDKMc31lKw.roa
File: VNJxaxr9CRrIafI5ODDKMc31lKw.roa (raw, json)
Hash identifier: kmHrUqVHN8JLA7Mv7H1eyPW9ELhwJaHyxoC23SZ7sFM=
Subject key identifier: 54:D2:71:6B:1A:FD:09:1A:C8:69:F2:39:38:30:CA:31:CD:F5:94:AC
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 01921B27897C38C22CB9415D0EF6921650B2
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VNJxaxr9CRrIafI5ODDKMc31lKw.roa
Signing time: Sun 22 Sep 2024 19:13:48 +0000
ROA not before: Sun 22 Sep 2024 19:13:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215427
IP address blocks: 2a0e:a780::/29 maxlen: 29
2a10:6c40::/29 maxlen: 29
2a10:9600::/29 maxlen: 29
2a11:ad80::/29 maxlen: 29
2a13:c0c0::/29 maxlen: 29
2a13:c140::/29 maxlen: 29
2a13:d240::/29 maxlen: 29
2a13:d2c0::/29 maxlen: 29
2a13:de40::/29 maxlen: 29
2a14:5740::/29 maxlen: 29
2a14:5840::/29 maxlen: 29
2a14:58c0::/29 maxlen: 29
2a14:6ac0::/29 maxlen: 29
2a14:6b40::/29 maxlen: 29
2a14:72c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 05 Oct 2024 19:11:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:1b:27:89:7c:38:c2:2c:b9:41:5d:0e:f6:92:16:50:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Sep 22 19:13:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=54d2716b1afd091ac869f2393830ca31cdf594ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:93:5c:2e:70:5e:1f:52:8b:84:75:2a:4e:f1:
f4:fc:ca:f3:4b:ab:84:77:86:32:2f:42:29:76:06:
89:55:e3:f1:e9:60:bb:33:99:ec:32:95:a7:fa:f4:
6d:ef:ea:1b:d6:a6:2f:36:84:75:de:cd:6c:74:f1:
0a:e6:0c:89:59:0f:a8:e7:15:e0:c6:4b:5d:05:c1:
fa:39:c2:db:e4:ba:b9:a3:df:65:43:bb:69:29:02:
8b:bb:87:d3:dd:36:de:c5:55:33:c7:ce:41:fb:1c:
b5:4a:65:48:1f:86:46:59:5b:f6:64:5f:db:36:34:
16:8d:ee:9e:87:f0:1a:58:c8:74:ce:2b:28:20:db:
64:3c:fa:03:d4:54:3c:2f:fb:5e:7b:02:5a:52:b0:
81:fd:0f:ff:28:85:06:81:c0:6f:f2:0f:b8:33:8f:
d9:75:fd:de:de:60:db:2a:1f:97:6e:9f:84:32:25:
ef:d6:84:df:9c:f2:3e:4b:77:0b:50:f0:17:e7:02:
b8:a7:53:48:b7:20:0b:c6:1c:84:8c:80:39:e5:29:
33:be:5a:6d:6f:4a:1e:f2:6d:fc:3c:1f:3d:c6:80:
ea:6a:6e:41:31:fa:5a:ca:32:cf:5c:04:e6:dc:b9:
d4:d1:79:28:0f:2f:7c:ba:d1:de:f8:53:64:4e:bb:
77:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:D2:71:6B:1A:FD:09:1A:C8:69:F2:39:38:30:CA:31:CD:F5:94:AC
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VNJxaxr9CRrIafI5ODDKMc31lKw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:a780::/29
2a10:6c40::/29
2a10:9600::/29
2a11:ad80::/29
2a13:c0c0::/29
2a13:c140::/29
2a13:d240::/29
2a13:d2c0::/29
2a13:de40::/29
2a14:5740::/29
2a14:5840::/29
2a14:58c0::/29
2a14:6ac0::/29
2a14:6b40::/29
2a14:72c0::/29
Signature Algorithm: sha256WithRSAEncryption
68:e2:ac:4d:ac:03:5f:d4:3f:fc:39:0a:0b:27:9b:c3:6d:25:
22:6d:76:23:d0:9c:7d:29:c6:39:3b:65:4b:01:0b:4e:f2:69:
4a:ff:d9:74:cf:8f:1a:8c:e2:e9:b2:ef:a9:ea:de:78:a9:09:
10:e1:8e:23:d4:44:d8:7d:aa:57:44:96:9a:31:33:fd:58:3d:
a8:a1:9b:d2:bc:bf:06:25:05:c0:b3:6d:8e:09:4b:62:35:f8:
af:aa:01:da:94:21:07:97:d5:ba:fd:d3:e9:fc:1c:6e:d0:b4:
c5:41:ec:69:c1:3d:fb:4d:91:fd:cc:93:d4:ea:a6:df:0e:32:
c4:a2:7f:e2:41:65:d9:ad:50:40:92:8b:09:6f:4d:39:fb:2e:
44:92:9c:04:e5:d5:0b:fb:a2:58:a3:41:b9:f1:46:99:90:79:
dd:b7:db:18:3f:72:66:68:bb:6e:a7:66:21:d6:3d:91:cb:2f:
65:52:9f:56:7b:3b:66:67:b6:db:4c:4e:c1:82:43:b7:69:5d:
c7:54:36:a6:b6:43:91:db:54:f0:0f:74:e7:60:be:56:7f:4b:
ed:0e:41:bf:9e:e2:8e:34:96:53:4b:ad:29:fb:33:12:dd:d9:
ab:fb:95:aa:55:d2:9f:12:b6:e4:ef:05:69:7a:5c:89:1a:27:
5f:23:cf:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 5 23:23:34 2024 by rpki-client on console-fra.rpki-client.org