Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/VcdvoE8LbgIADjZ64bn6nFwqyK0.roa
File: VcdvoE8LbgIADjZ64bn6nFwqyK0.roa (raw, json)
Hash identifier: SipwdQtswj5GWBD9ZZS78g08GArETk6I7nq6xX5G7PE=
Subject key identifier: 55:C7:6F:A0:4F:0B:6E:02:00:0E:36:7A:E1:B9:FA:9C:5C:2A:C8:AD
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 018CC9BC6D636DD1C53B7DCA1E9AAF33B9F2
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/VcdvoE8LbgIADjZ64bn6nFwqyK0.roa
Signing time: Tue 02 Jan 2024 10:33:38 +0000
ROA not before: Tue 02 Jan 2024 10:33:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50219
IP address blocks: 2a0a:6500::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 14 Mar 2024 17:50:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:6d:63:6d:d1:c5:3b:7d:ca:1e:9a:af:33:b9:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 2 10:33:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=55c76fa04f0b6e02000e367ae1b9fa9c5c2ac8ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:cc:40:2c:61:18:b4:2c:7c:22:aa:36:39:d8:
2a:ed:fe:18:ea:42:52:99:0e:a2:86:c0:7e:2f:5d:
3d:91:f6:0f:3f:0f:8d:18:06:50:66:5a:49:60:4e:
e5:bb:90:b3:b3:7a:84:5d:81:8a:c5:5b:d3:e7:28:
13:6b:64:3a:33:6e:ed:ea:15:1b:f7:90:75:95:ab:
02:dd:c5:ce:2a:44:91:d2:5f:71:ca:75:e5:54:15:
53:62:42:d7:59:ad:f7:87:80:e6:54:68:6d:09:49:
4d:d6:23:79:7c:0e:a4:05:39:c4:38:46:bc:28:18:
87:60:ed:f8:34:d7:8a:cd:d9:70:a2:b6:f7:5d:4b:
1b:24:78:65:40:34:e7:a6:eb:91:77:ce:b1:1d:ae:
76:98:6b:99:3f:41:1d:2a:66:40:b9:32:6c:71:79:
9b:19:45:ee:c5:ea:c4:82:ad:a2:fe:30:90:f9:13:
b4:da:ff:77:33:73:f5:20:5b:a5:81:08:d2:d5:e8:
48:8f:d4:ab:c8:91:8e:e3:39:c7:76:ef:8f:71:76:
4d:9b:78:74:82:bc:d2:04:5e:02:b8:63:14:1a:7a:
ed:41:40:ba:3f:e8:33:2a:8c:8d:ab:9a:0c:c3:8d:
1c:40:1c:e0:b0:cc:0e:32:2c:5c:ae:b1:a3:c5:6b:
af:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:C7:6F:A0:4F:0B:6E:02:00:0E:36:7A:E1:B9:FA:9C:5C:2A:C8:AD
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/VcdvoE8LbgIADjZ64bn6nFwqyK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6500::/48
Signature Algorithm: sha256WithRSAEncryption
58:b8:f1:e1:5d:00:68:9a:c2:40:c4:0d:dc:11:97:01:2d:94:
e5:e8:51:60:50:e7:c3:41:a8:ac:3b:fa:f1:79:55:e4:00:db:
28:a4:bb:7a:40:93:12:0d:3a:70:fc:f4:2e:43:18:9f:04:39:
0d:92:b6:bf:85:45:c8:56:a7:e3:d9:e3:fa:a0:34:af:10:58:
d8:bd:39:f3:c3:25:92:b2:cf:fa:6d:98:14:bc:04:83:ae:86:
28:2b:29:31:90:b0:af:fa:b5:6f:ff:23:38:fa:74:c0:9d:e9:
b7:94:0a:cf:6c:33:c3:56:82:33:c6:ae:c9:db:5b:f0:82:8e:
77:71:4d:e1:bf:9d:7a:8e:5c:0f:e7:aa:d9:3a:40:64:62:e7:
1d:c0:79:ef:88:a1:2d:77:aa:ef:43:5f:37:ea:eb:8e:b4:b9:
22:4f:95:fc:98:c3:0a:d0:8c:47:1a:50:90:ff:54:2f:db:be:
38:a5:a1:d9:92:4f:45:dd:81:be:c0:25:14:10:91:11:c9:c1:
51:7d:12:f2:c0:a3:f0:b2:5b:6e:db:91:0b:71:fc:1c:23:3a:
8f:f3:24:fc:28:33:6f:c7:f4:5f:25:7c:0c:33:bb:25:d8:1a:
23:aa:16:73:d2:04:4b:05:a2:bf:23:06:ad:70:6d:bf:2c:d9:
30:27:c3:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org