Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/Vx_k38b-eVstaRF_-4OSrj7PXmQ.roa
File: Vx_k38b-eVstaRF_-4OSrj7PXmQ.roa (raw, json)
Hash identifier: /x5av3QyBm4R9XXnjuxBWAhTsgpY5Rhg9rcxIz/aH3c=
Subject key identifier: 57:1F:E4:DF:C6:FE:79:5B:2D:69:11:7F:FB:83:92:AE:3E:CF:5E:64
Certificate issuer: /CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Certificate serial: 01856BDC7292432EB86CCA726F3A525495DF
Authority key identifier: 0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/Vx_k38b-eVstaRF_-4OSrj7PXmQ.roa
Signing time: Sun 01 Jan 2023 05:44:47 +0000
ROA not before: Sun 01 Jan 2023 05:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210932
IP address blocks: 2a0f:607:1500::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:72:92:43:2e:b8:6c:ca:72:6f:3a:52:54:95:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Validity
Not Before: Jan 1 05:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=571fe4dfc6fe795b2d69117ffb8392ae3ecf5e64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:04:48:36:27:cd:14:77:ac:cf:ec:12:ea:ec:
3a:e2:a2:21:7b:72:70:61:b1:20:1d:85:ed:a7:53:
37:bc:9e:a1:17:81:d2:8b:a6:26:88:af:55:ad:17:
d7:0e:9a:b3:f2:34:34:e5:8a:ad:39:cb:a9:b1:c2:
8d:fc:32:95:ec:5e:b8:bb:36:81:c7:20:0c:6b:45:
b0:7a:cf:ec:e4:b9:fb:5a:87:a4:29:65:a5:db:b4:
75:44:29:19:ba:f1:09:73:8b:36:b8:75:22:91:4c:
74:28:b5:23:61:79:53:a1:4c:b7:ba:48:a6:72:f9:
ac:52:5d:47:61:11:b3:9c:be:ee:2f:1d:09:20:3a:
56:f4:10:a1:4b:9d:d4:3e:69:37:f0:95:25:29:43:
98:4a:b1:0e:5a:cc:b0:61:9d:c4:d5:5d:74:b6:6a:
aa:55:b4:94:d1:dd:2c:04:e5:26:44:e2:44:f0:91:
99:fd:f1:a7:f2:09:c3:81:27:71:57:3e:c2:aa:e3:
50:9d:de:ea:73:81:e5:5e:3f:e8:f2:10:c1:c5:fe:
2b:8e:0b:54:50:6a:99:f6:c7:4a:8c:fc:0e:aa:1e:
51:77:83:c1:d8:5c:13:30:2b:1a:a6:b7:3d:7e:2d:
af:a0:b2:a7:b2:72:bb:ef:9d:2f:c7:76:4f:e2:1b:
5c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:1F:E4:DF:C6:FE:79:5B:2D:69:11:7F:FB:83:92:AE:3E:CF:5E:64
X509v3 Authority Key Identifier:
keyid:0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/Vx_k38b-eVstaRF_-4OSrj7PXmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:607:1500::/44
Signature Algorithm: sha256WithRSAEncryption
42:15:1b:02:17:72:79:39:73:ea:00:a5:85:f8:4a:51:87:2e:
90:33:ca:79:6b:62:48:01:38:39:87:f9:43:4c:be:e0:56:bb:
02:e6:df:79:af:ae:64:69:a9:8c:98:e8:61:d5:6f:65:74:dd:
90:46:aa:33:84:99:b0:00:fd:b0:ed:ae:de:9e:6d:b8:dc:e0:
50:21:2a:7b:ac:af:5b:ce:ff:91:83:a4:f0:4b:d0:fe:ee:14:
85:4a:67:df:ec:56:f2:9f:3c:7d:fb:3c:b0:5d:c4:10:15:29:
15:ef:3c:a8:d2:7e:f9:a5:2e:6c:80:a1:58:27:d2:bf:c1:6c:
0c:57:6a:4f:10:40:4c:58:15:e1:87:c8:87:3a:81:5a:0c:59:
9c:1d:d6:b3:62:c3:ed:1d:b9:3d:3f:52:33:62:9f:1c:8f:f8:
e8:04:de:2a:27:33:87:16:16:7c:76:f9:f7:4b:db:5f:d0:41:
fc:f8:be:e0:7c:b0:68:40:8f:d2:24:fc:a8:c1:75:2d:0d:03:
dc:2e:0f:f7:56:23:ce:87:98:dd:38:d4:77:2d:5e:7d:6d:cc:
88:c9:82:2a:ff:dc:88:b6:40:b8:2d:04:5e:c5:d2:1b:cf:35:
d3:bb:37:af:2d:d1:e7:00:a1:41:47:ab:5d:9d:ff:24:e5:6f:
4e:95:d5:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:27:46 2024 by rpki-client on console-fra.rpki-client.org