Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/vOHsSUD4ou5jFDt9vFnrVPA7-9E.roa
File: vOHsSUD4ou5jFDt9vFnrVPA7-9E.roa (raw, json)
Hash identifier: KUMMVF3izQP/Y3ptZ+z8qo2d8K+vjCCVVhWA3EorpY8=
Subject key identifier: BC:E1:EC:49:40:F8:A2:EE:63:14:3B:7D:BC:59:EB:54:F0:3B:FB:D1
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 018571C31B13D7492B4ED6EF8E72F8526176
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/vOHsSUD4ou5jFDt9vFnrVPA7-9E.roa
Signing time: Mon 02 Jan 2023 09:14:49 +0000
ROA not before: Mon 02 Jan 2023 09:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203478
IP address blocks: 2a06:e881:5600::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:c3:1b:13:d7:49:2b:4e:d6:ef:8e:72:f8:52:61:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 2 09:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bce1ec4940f8a2ee63143b7dbc59eb54f03bfbd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:7a:01:64:22:10:dd:ef:58:6b:54:cf:93:26:
9d:43:18:b6:b5:dd:b4:2d:32:76:05:22:90:23:f5:
b5:5a:8e:47:bd:2a:4a:c4:a6:52:e4:c0:74:7f:53:
d1:60:36:51:a6:70:36:b7:2d:ef:79:32:50:55:79:
9d:27:fc:eb:3f:cf:c1:08:1a:8a:62:bf:b5:b5:42:
72:c0:eb:cf:91:98:35:dd:15:6b:89:42:b1:f5:0e:
ab:57:a6:b8:42:f6:fc:d4:24:28:0f:89:70:36:73:
db:49:b2:1d:67:20:74:53:2b:62:43:13:c0:5d:d7:
1d:bb:2b:ce:da:a5:76:b6:fc:ac:dd:13:b2:f0:97:
e3:da:26:27:05:fb:03:e5:58:83:9a:be:e0:8a:b7:
15:83:97:2e:ab:75:23:12:93:75:39:88:84:8a:7f:
f5:62:fc:73:bb:71:36:6f:cd:81:74:38:3b:5a:f4:
11:7a:97:0e:65:03:c3:27:03:10:a1:6e:af:cf:1e:
36:49:6b:15:74:c9:cc:f7:04:9f:97:f0:22:34:ff:
56:42:b9:44:0f:2d:8c:6f:94:b7:13:71:74:e6:fd:
82:f7:a9:45:11:88:cd:c1:14:79:ed:92:66:61:6f:
e6:83:00:ba:12:af:5e:da:69:cb:97:f2:57:d1:d6:
50:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:E1:EC:49:40:F8:A2:EE:63:14:3B:7D:BC:59:EB:54:F0:3B:FB:D1
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/vOHsSUD4ou5jFDt9vFnrVPA7-9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:5600::/44
Signature Algorithm: sha256WithRSAEncryption
b2:da:fb:51:82:b1:59:65:68:a3:1f:b1:b2:5e:b9:0d:e4:6a:
4c:10:dd:ea:c5:2b:5a:f0:ed:dd:b9:08:41:94:18:a5:2d:8a:
0d:0b:de:86:25:11:6d:be:02:4b:8c:7f:3a:82:62:07:f2:e5:
43:98:44:96:2a:44:0d:dd:3e:7f:61:63:bc:33:98:a9:19:80:
41:c5:da:8c:32:10:21:03:84:d1:26:19:37:11:90:90:e1:08:
24:46:d4:b1:34:a3:18:c0:2d:25:c1:a2:f6:cc:68:26:2a:0e:
f6:cd:1d:8c:e0:55:8d:fe:bf:c7:3d:53:8c:76:43:f8:bb:e4:
f1:f6:a1:86:e3:77:1d:ee:4e:ba:99:58:3c:4e:c1:6a:ec:ad:
cd:9c:8c:06:8d:fb:08:e8:57:d9:71:17:29:58:2d:5f:b1:f4:
7a:85:c1:cc:14:e8:28:ea:11:c8:ce:68:47:48:1c:1f:9f:64:
28:22:99:7a:06:dc:b1:11:9b:38:d3:be:ce:74:b5:24:c6:ec:
56:c7:0f:b6:4a:0b:e1:34:18:ae:57:7d:d0:1a:5d:fc:62:48:
05:c1:45:69:22:62:95:94:7c:b4:98:92:62:73:11:08:27:04:
dc:9a:7b:10:c4:6a:8c:a1:84:4e:24:50:d5:a7:01:c2:83:da:
2a:d8:0c:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:38 2024 by rpki-client on console-fra.rpki-client.org