Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/77096f-bb89-411e-90e0-30c7f39d8e1c/1/vbkdhTtzsd6_XbFLPSIHXvoV0VU.roa
File: vbkdhTtzsd6_XbFLPSIHXvoV0VU.roa (raw, json)
Hash identifier: X8VAwCW5/5yHKdRZ1JgFiya5wUtE1E/JA6OlHnDs5KI=
Subject key identifier: BD:B9:1D:85:3B:73:B1:DE:BF:5D:B1:4B:3D:22:07:5E:FA:15:D1:55
Certificate issuer: /CN=5b0329066138bb5564571fc3c29ee953e5c1c7a3
Certificate serial: 018F24E1C4CDC5B49FA153B1ACC17C3A4F5E
Authority key identifier: 5B:03:29:06:61:38:BB:55:64:57:1F:C3:C2:9E:E9:53:E5:C1:C7:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WwMpBmE4u1VkVx_Dwp7pU-XBx6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/77096f-bb89-411e-90e0-30c7f39d8e1c/1/vbkdhTtzsd6_XbFLPSIHXvoV0VU.roa
Signing time: Sun 28 Apr 2024 13:25:26 +0000
ROA not before: Sun 28 Apr 2024 13:25:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64286
IP address blocks: 2a0a:7740::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 07 May 2024 18:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:24:e1:c4:cd:c5:b4:9f:a1:53:b1:ac:c1:7c:3a:4f:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b0329066138bb5564571fc3c29ee953e5c1c7a3
Validity
Not Before: Apr 28 13:25:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bdb91d853b73b1debf5db14b3d22075efa15d155
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ba:c7:ea:3b:85:6b:be:b9:24:89:77:c2:b3:
33:32:65:88:91:a0:60:ba:43:9e:1c:71:e2:59:e1:
3f:c0:4b:96:d3:6f:18:c9:11:7b:4f:c0:f5:a5:94:
29:ce:f0:d9:88:34:f5:21:6b:a8:88:a2:10:38:07:
b4:10:69:df:af:e4:d9:ff:80:46:94:b8:c8:d9:d9:
13:e7:7b:a2:50:5f:05:87:0e:f5:0d:0f:dd:58:53:
2f:cb:f6:12:5f:79:a5:eb:a5:2d:76:50:63:d7:44:
75:99:54:45:1f:49:eb:2a:ab:97:69:8a:74:84:db:
c6:fd:0f:ac:cc:36:d6:95:26:75:17:7f:0e:46:bd:
d6:3b:48:8e:57:5c:02:2f:54:67:05:51:37:f1:8d:
b9:65:40:cc:80:10:6b:f8:1f:56:78:13:94:a8:74:
43:f9:8d:6b:52:56:ff:25:c8:14:74:86:99:13:37:
35:50:aa:f5:a2:22:5e:56:be:20:ef:67:8c:90:ca:
a1:42:68:52:23:b1:91:9e:9e:0f:fb:6f:6a:5c:6a:
ab:fb:db:9f:e2:42:4a:0c:5c:01:cb:75:96:f7:a2:
67:83:46:28:35:7a:9d:70:37:84:c9:ad:03:f2:15:
9a:69:dc:67:6d:00:9c:f9:85:86:32:e6:fb:68:80:
ef:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:B9:1D:85:3B:73:B1:DE:BF:5D:B1:4B:3D:22:07:5E:FA:15:D1:55
X509v3 Authority Key Identifier:
keyid:5B:03:29:06:61:38:BB:55:64:57:1F:C3:C2:9E:E9:53:E5:C1:C7:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WwMpBmE4u1VkVx_Dwp7pU-XBx6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/77096f-bb89-411e-90e0-30c7f39d8e1c/1/vbkdhTtzsd6_XbFLPSIHXvoV0VU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/77096f-bb89-411e-90e0-30c7f39d8e1c/1/WwMpBmE4u1VkVx_Dwp7pU-XBx6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:7740::/32
Signature Algorithm: sha256WithRSAEncryption
34:93:59:15:b6:66:94:a6:be:c3:da:c8:1e:3d:58:77:db:92:
79:41:5d:ed:51:92:9c:b4:d1:52:2a:ad:90:c5:f9:cc:94:d1:
e1:67:3a:2e:a5:32:6f:2b:76:6b:8e:15:93:44:e2:59:f3:6c:
7c:51:34:c3:b8:45:10:02:a1:21:81:ce:60:3c:05:05:c0:64:
82:de:c8:3d:d3:55:9d:6e:0f:28:f3:09:c3:8d:fe:6d:d7:32:
2e:c8:ea:5c:58:f3:26:e9:a6:1c:fe:d7:b0:15:6c:91:cc:77:
35:fb:1e:31:84:d4:3f:cc:ef:48:c9:76:a6:d1:ff:d1:4b:40:
fe:0e:34:f6:5c:5d:3b:44:45:0b:71:3e:c4:f0:30:d9:f2:85:
ce:4f:2d:fc:75:46:f0:b0:de:62:82:75:36:86:c5:c3:e9:52:
52:13:75:09:12:76:88:ac:3a:f1:cf:e9:38:be:ec:c5:36:78:
f1:6b:f6:b9:c7:1e:ad:af:b6:b0:67:b8:91:6d:bb:2e:39:10:
55:93:29:00:cb:d9:12:dd:22:21:75:27:40:bd:88:fe:36:67:
3d:65:7e:a6:d0:38:f0:f8:71:11:74:77:42:89:b6:79:3d:f7:
fe:cb:3c:13:16:e3:c1:16:6c:0b:25:50:3e:0a:15:90:0d:d3:
14:fa:5e:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:25 2024 by rpki-client on console-ams.rpki-client.org