Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/VSyu7QwD-oB4wXw8UMh298U8-eY.roa
File: VSyu7QwD-oB4wXw8UMh298U8-eY.roa (raw, json)
Hash identifier: VW+kGxos8vdPmY0Jwjl7A7sqzatNmFhfkw4Qs0xTQYg=
Subject key identifier: 55:2C:AE:ED:0C:03:FA:80:78:C1:7C:3C:50:C8:76:F7:C5:3C:F9:E6
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 0185720C5618166D583C637446DDFCCE1D2C
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/VSyu7QwD-oB4wXw8UMh298U8-eY.roa
Signing time: Mon 02 Jan 2023 10:34:48 +0000
ROA not before: Mon 02 Jan 2023 10:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211880
IP address blocks: 2a0d:f407:1025::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 27 Mar 2023 05:12:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:56:18:16:6d:58:3c:63:74:46:dd:fc:ce:1d:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 2 10:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=552caeed0c03fa8078c17c3c50c876f7c53cf9e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d4:ea:7d:3f:15:5a:59:36:db:f1:79:39:79:
b0:3f:da:1b:02:19:43:79:32:be:b1:7b:0c:9e:b1:
de:01:f7:e1:66:7f:e4:53:f4:fa:9f:ee:8c:47:ac:
b5:fb:88:c4:ac:cd:95:e2:58:13:32:13:7b:8d:73:
63:b7:4c:ba:fd:e2:42:3f:fd:c7:39:3c:57:96:2d:
84:3d:cd:8c:e0:ea:ea:ea:08:5c:ee:e0:24:f2:5a:
55:b9:6c:86:dc:ce:fa:9a:2a:b4:19:45:32:a6:59:
30:48:c6:fc:89:05:f6:1c:c5:e0:be:fa:0f:f6:89:
37:9d:4c:4c:4d:11:ea:b8:4b:3a:46:d0:45:36:ba:
de:e1:94:d7:90:f6:dc:b5:61:96:97:98:dc:25:fc:
a4:12:b6:6d:9b:14:7f:4d:21:ca:ab:6a:7f:14:e0:
48:1d:07:2f:25:d1:bb:a0:bd:52:87:f5:29:ff:3a:
3c:cc:2a:0c:42:bf:4f:36:50:5b:54:46:20:b2:3d:
a4:07:ca:76:d1:1b:3d:ba:2c:0d:a2:02:d4:e1:88:
95:f7:b6:26:8c:2f:c5:f4:71:16:73:ff:a5:fa:99:
23:64:db:90:b3:7b:13:73:1e:20:56:c9:ff:21:9f:
06:d8:79:13:ee:76:ad:73:23:1f:42:90:d0:fc:38:
04:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:2C:AE:ED:0C:03:FA:80:78:C1:7C:3C:50:C8:76:F7:C5:3C:F9:E6
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/VSyu7QwD-oB4wXw8UMh298U8-eY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:f407:1025::/48
Signature Algorithm: sha256WithRSAEncryption
2c:0c:77:b9:36:66:02:18:b7:18:7d:e1:4d:96:3b:46:34:de:
f2:db:ee:6c:42:57:ca:4f:11:3d:eb:c6:8c:b5:5c:cf:38:00:
27:c5:2f:5c:4c:f2:ee:fd:32:c4:ca:87:46:75:3e:87:4a:fe:
d7:75:08:4c:c0:2d:36:25:f5:1f:ec:b2:91:73:d5:07:86:e5:
64:76:ce:d3:b8:4e:00:81:aa:4f:c2:0e:c5:b5:e3:b0:57:4e:
61:09:32:8a:29:b0:a7:5e:d8:40:89:c6:f1:73:6b:a0:f0:0a:
79:1e:b5:88:eb:2f:15:33:66:a3:f0:57:db:5a:28:42:d6:0c:
ba:ce:ea:15:06:d1:9a:4d:98:bc:eb:55:5d:0a:ec:32:59:e9:
a6:53:3a:1e:03:81:c2:00:8f:9e:e2:c7:80:ff:32:1a:96:2a:
a8:9c:af:76:12:a6:d9:e3:97:1b:28:77:ab:aa:76:e2:91:65:
46:e6:43:95:b2:cb:45:fa:3d:17:7b:db:8a:f5:2f:bb:ad:c0:
fa:1c:6a:85:7a:a1:1d:4f:c6:c0:05:b9:8e:1a:fb:21:43:53:
d9:11:db:f9:2c:e0:c7:97:b7:36:31:9f:ce:8e:d3:6f:fd:67:
ed:87:f4:81:fa:a4:8d:f8:56:22:a0:b9:45:69:f9:98:b7:2f:
71:9f:a4:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org