Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/VwdML-OPhb-15CUUR6JPoypx79w.roa
File: VwdML-OPhb-15CUUR6JPoypx79w.roa (raw, json)
Hash identifier: 1wpSj+dw1qvLVtTXXPL76POLDLeSF/PYoPTdv5M3b08=
Subject key identifier: 57:07:4C:2F:E3:8F:85:BF:B5:E4:25:14:47:A2:4F:A3:2A:71:EF:DC
Certificate issuer: /CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Certificate serial: 018570B07F931822797D6361590048273A85
Authority key identifier: 0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/VwdML-OPhb-15CUUR6JPoypx79w.roa
Signing time: Mon 02 Jan 2023 04:14:53 +0000
ROA not before: Mon 02 Jan 2023 04:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 147173
IP address blocks: 2a0e:da40:100::/40 maxlen: 128
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:7f:93:18:22:79:7d:63:61:59:00:48:27:3a:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Validity
Not Before: Jan 2 04:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=57074c2fe38f85bfb5e4251447a24fa32a71efdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:16:31:66:69:c2:74:66:94:6d:7c:09:ab:3f:
46:df:68:f1:2a:52:13:ce:ad:f5:67:20:9e:fe:f5:
df:12:b6:60:02:36:e5:99:b1:c6:37:c9:bf:97:d6:
6b:0c:e6:83:6b:49:74:ab:a7:be:16:a8:6c:46:eb:
fd:17:7e:5a:f6:1c:e8:d3:dc:c2:87:18:f7:df:8f:
90:16:c0:3f:02:29:e9:67:90:ed:0d:b4:d6:91:a0:
bb:c7:16:63:5c:5a:4b:ef:3b:50:85:45:bf:67:01:
08:c8:b5:2a:3e:74:07:26:4e:79:2d:8f:5e:63:99:
ce:24:40:4a:a2:99:e5:af:cc:23:12:d6:33:21:2f:
2b:fe:bb:ed:9a:ca:ee:d0:85:41:61:1f:ea:fb:cf:
c9:e2:7b:17:60:0a:f1:00:dd:d7:68:20:c9:f3:c5:
58:0c:0e:5e:96:df:42:2e:1b:6a:85:46:66:3c:09:
46:9b:5c:67:30:cd:31:d4:a9:ef:47:1b:c6:ab:c9:
c0:14:2c:a8:1e:6e:15:7a:f8:ba:fd:58:c6:11:61:
ff:bb:63:8a:5d:33:82:da:b3:9f:24:f4:d5:ca:30:
f4:14:47:bc:0e:c6:40:2c:3e:ac:f0:22:12:3e:cc:
47:5b:b3:d5:c4:da:13:49:9b:b2:31:3d:8c:a0:37:
17:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:07:4C:2F:E3:8F:85:BF:B5:E4:25:14:47:A2:4F:A3:2A:71:EF:DC
X509v3 Authority Key Identifier:
keyid:0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/VwdML-OPhb-15CUUR6JPoypx79w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/DbZ8XH-n_iSS7sN89CdkK3HUJbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:da40:100::/40
Signature Algorithm: sha256WithRSAEncryption
2d:cc:de:a9:a3:e5:6e:06:7b:b7:e2:bf:56:28:3c:5b:2a:12:
59:80:ae:2e:bb:e9:f8:14:4e:d9:ac:d3:9d:f4:c4:c0:45:6d:
c6:0c:29:7a:12:48:b2:14:b3:d3:04:ef:f6:b4:ff:ed:d4:fa:
ed:14:19:58:9c:bb:bf:3a:1f:9a:4b:ab:e7:52:24:26:5d:36:
22:76:02:2b:4e:6f:f9:5f:5a:d4:5a:83:70:b2:d8:36:a6:85:
ab:6b:d7:40:04:c2:b1:e8:c4:15:21:89:44:44:51:51:2d:d5:
e2:e2:5a:1b:b2:cc:b2:d9:ce:64:3c:0b:c8:fb:15:b6:fd:95:
0e:03:d1:f1:53:b8:e9:fc:61:1c:7e:d8:c2:73:fb:00:91:17:
b4:14:b6:e4:8d:e9:f6:bb:c5:26:2c:54:a6:c6:ab:24:10:28:
1e:db:96:bd:ee:29:08:9e:33:dc:11:3d:b1:89:bf:bc:ad:23:
b7:98:01:61:fd:a4:2d:21:38:5f:2d:26:75:95:23:f1:2c:8f:
1b:7f:be:08:b6:60:8f:2f:3d:cf:3f:c3:69:47:e5:e3:d8:d4:
be:40:4b:ff:91:de:7d:c0:56:40:22:cf:cf:e3:15:ff:ee:20:
b3:e5:3d:99:ff:5c:1c:7c:21:cb:cf:ed:43:5c:5a:c6:d5:96:
da:bf:28:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:38:07 2024 by rpki-client on console-fra.rpki-client.org