Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/1dbd75-981d-46a3-b5c3-2592a1ea6138/1/_VC7-dWQYXPGpXK2SDBCYJsgTx0.roa
File: _VC7-dWQYXPGpXK2SDBCYJsgTx0.roa (raw, json)
Hash identifier: PCHFrPDBVWKxiepiOeIzVJyoJQmNlh8otshrx1SWXd4=
Subject key identifier: FD:50:BB:F9:D5:90:61:73:C6:A5:72:B6:48:30:42:60:9B:20:4F:1D
Certificate issuer: /CN=426b2d7440fb78844cf0135ec5182b3f6f783a86
Certificate serial: 018963E000B1A767D27A42810720569C2425
Authority key identifier: 42:6B:2D:74:40:FB:78:84:4C:F0:13:5E:C5:18:2B:3F:6F:78:3A:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QmstdED7eIRM8BNexRgrP294OoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/1dbd75-981d-46a3-b5c3-2592a1ea6138/1/_VC7-dWQYXPGpXK2SDBCYJsgTx0.roa
Signing time: Mon 17 Jul 2023 12:42:51 +0000
ROA not before: Mon 17 Jul 2023 12:42:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202360
IP address blocks: 2a10:fe40::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:63:e0:00:b1:a7:67:d2:7a:42:81:07:20:56:9c:24:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=426b2d7440fb78844cf0135ec5182b3f6f783a86
Validity
Not Before: Jul 17 12:42:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd50bbf9d5906173c6a572b6483042609b204f1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d0:50:c4:bb:85:1b:21:1d:8d:c6:6b:7e:1e:
24:b8:b7:f8:ca:1e:05:06:ae:e1:99:65:09:c2:89:
e1:b7:7f:dc:39:24:24:12:b7:01:b2:5c:7c:11:0b:
31:ae:8c:c8:e6:c4:34:f1:ce:0e:f4:21:a7:e4:a1:
b3:dc:65:33:40:c2:ea:51:77:82:ca:d0:2e:6c:35:
b4:33:35:8d:39:ad:b6:54:12:69:9e:58:7f:e0:41:
39:2a:82:d8:69:a1:25:86:df:a6:26:2a:e4:73:08:
52:92:c2:9c:33:81:29:26:e3:d8:d3:54:b0:e2:b3:
14:18:36:99:74:43:b2:58:9a:4b:b4:a7:21:83:f4:
06:bc:2f:9c:f0:57:75:34:1f:b7:70:67:e6:2b:77:
c8:63:e8:7d:3d:c3:14:0d:37:ea:6f:9a:43:c2:d7:
97:2a:d8:e8:74:fc:29:70:65:48:78:c2:8d:8a:4f:
40:b5:dc:ec:3f:98:1b:a7:08:ad:cd:de:74:53:78:
c9:9f:8c:26:76:8d:c5:b1:d5:0c:a5:05:e5:0a:f9:
09:a5:5f:9e:11:72:c7:89:cc:4d:01:ea:cf:14:c6:
98:5f:da:0c:83:cc:cf:c8:09:6c:13:bc:3c:5e:03:
a1:4d:6b:d8:8a:72:33:3e:4d:c3:26:81:41:00:c3:
59:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:50:BB:F9:D5:90:61:73:C6:A5:72:B6:48:30:42:60:9B:20:4F:1D
X509v3 Authority Key Identifier:
keyid:42:6B:2D:74:40:FB:78:84:4C:F0:13:5E:C5:18:2B:3F:6F:78:3A:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QmstdED7eIRM8BNexRgrP294OoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/1dbd75-981d-46a3-b5c3-2592a1ea6138/1/_VC7-dWQYXPGpXK2SDBCYJsgTx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/1dbd75-981d-46a3-b5c3-2592a1ea6138/1/QmstdED7eIRM8BNexRgrP294OoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:fe40::/29
Signature Algorithm: sha256WithRSAEncryption
a3:77:c3:c6:55:81:36:08:f6:c8:5d:cb:3b:0f:13:23:47:0c:
24:83:7c:78:70:07:00:ff:71:a6:5b:26:a7:1f:3b:0d:2e:60:
ef:69:22:00:78:33:80:7c:94:0e:71:ee:a4:20:7d:b2:10:33:
ea:d5:c6:db:a7:24:1d:66:cc:d9:8b:ac:46:ee:ed:7d:77:4e:
5b:aa:a4:f8:66:d3:5d:f9:a8:eb:f0:a9:bb:88:73:34:ad:72:
6e:84:c8:fa:4a:8d:53:da:ed:6d:2b:f7:f0:de:e9:57:e0:ea:
03:88:1e:c2:64:c1:74:59:1a:1e:63:02:55:74:a7:8c:a4:ea:
ee:da:b3:56:a6:d0:6e:8a:a9:6d:dd:cc:89:ed:46:bc:a6:79:
fb:51:74:95:f1:78:16:b6:bf:ad:ad:a3:1f:86:88:18:61:02:
06:60:83:b2:ec:ae:52:43:6c:05:72:26:d4:df:b0:4d:cb:76:
95:32:e3:04:09:07:c4:99:3b:b2:85:e9:9a:1b:79:03:74:6a:
8c:14:ce:e8:78:db:be:9f:7f:88:2f:b0:16:8b:e5:62:9e:64:
17:4a:d0:39:06:c8:ac:c1:38:e8:cc:77:48:b8:e5:8f:04:fb:
6f:27:db:95:41:ba:39:ca:4f:0a:2b:33:94:a5:2f:a7:e1:6a:
ed:35:0d:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:35 2024 by rpki-client on console-fra.rpki-client.org