Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/4cb687-87fd-4af0-a36b-607272d737cb/1/VNxFOA9crUfQvvnlI_iC4wVupSk.roa
File: VNxFOA9crUfQvvnlI_iC4wVupSk.roa (raw, json)
Hash identifier: wXFxl5I5y9soSTLJ8OnyNLTMKiL53pneqwF+DaWMjaU=
Subject key identifier: 54:DC:45:38:0F:5C:AD:47:D0:BE:F9:E5:23:F8:82:E3:05:6E:A5:29
Certificate issuer: /CN=97242dba26ed882b380dabebab3c5f3942006ecc
Certificate serial: 01856D81B66ECCA673E3B045F2A00559E689
Authority key identifier: 97:24:2D:BA:26:ED:88:2B:38:0D:AB:EB:AB:3C:5F:39:42:00:6E:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lyQtuibtiCs4DavrqzxfOUIAbsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/4cb687-87fd-4af0-a36b-607272d737cb/1/VNxFOA9crUfQvvnlI_iC4wVupSk.roa
Signing time: Sun 01 Jan 2023 13:24:55 +0000
ROA not before: Sun 01 Jan 2023 13:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49283
IP address blocks: 2a00:17b8::/29 maxlen: 32
Validation: Failed, certificate revoked on Tue 13 Jun 2023 05:44:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:b6:6e:cc:a6:73:e3:b0:45:f2:a0:05:59:e6:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97242dba26ed882b380dabebab3c5f3942006ecc
Validity
Not Before: Jan 1 13:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=54dc45380f5cad47d0bef9e523f882e3056ea529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6d:b7:8f:ef:33:de:39:3e:13:b9:f5:84:b0:
ca:87:4e:50:d4:6f:ca:3f:15:10:76:95:af:b3:bc:
77:f8:07:a3:34:8b:84:71:9b:0b:29:13:91:f7:82:
6c:b7:40:ba:2d:0a:22:af:90:60:87:2a:20:4e:f6:
e6:fb:9e:79:70:a0:36:cb:b5:22:77:7d:37:7b:5b:
6b:ac:9d:b2:06:d3:5b:9d:a0:1f:71:59:49:a6:82:
ca:f2:b2:f3:d8:77:25:f8:64:df:0e:fc:5e:c2:0c:
f0:5f:fc:f6:24:00:c0:ab:14:b5:18:3c:44:aa:a6:
d0:c1:ff:fe:30:ce:7e:91:ab:01:ed:0c:e2:1d:a2:
32:a6:de:e8:af:1a:68:77:a7:d8:c4:ea:09:9a:60:
5d:ff:e7:1d:33:74:3d:63:9e:ea:2c:ef:70:37:e0:
4c:4d:38:0f:90:6c:4b:1b:25:98:a6:12:2e:c1:fa:
2c:b5:64:19:ce:e6:5d:00:73:a3:4e:47:6c:30:ac:
3d:19:a0:94:d9:9c:04:16:1f:b5:20:56:60:2e:e8:
15:a9:b0:5a:25:6f:90:32:cc:49:fa:4c:7d:c4:fc:
19:94:53:f5:53:ca:6d:50:4d:03:84:9d:26:6b:39:
61:d3:e0:81:15:51:9e:90:a6:cf:43:93:b7:ba:be:
a2:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:DC:45:38:0F:5C:AD:47:D0:BE:F9:E5:23:F8:82:E3:05:6E:A5:29
X509v3 Authority Key Identifier:
keyid:97:24:2D:BA:26:ED:88:2B:38:0D:AB:EB:AB:3C:5F:39:42:00:6E:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lyQtuibtiCs4DavrqzxfOUIAbsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/4cb687-87fd-4af0-a36b-607272d737cb/1/VNxFOA9crUfQvvnlI_iC4wVupSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/4cb687-87fd-4af0-a36b-607272d737cb/1/lyQtuibtiCs4DavrqzxfOUIAbsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:17b8::/29
Signature Algorithm: sha256WithRSAEncryption
0b:bb:36:d8:56:ed:38:93:a9:38:71:b7:db:75:65:8f:65:4c:
1f:d4:35:52:b7:2b:9e:71:93:69:6c:c6:0c:48:3e:ba:47:74:
e1:22:70:d6:a3:d5:85:b5:c6:c8:10:d4:ce:6a:f8:49:d8:9b:
d9:4d:3e:95:37:14:a4:2d:42:ac:4e:0c:8d:a7:09:4d:61:77:
11:bd:98:48:de:ac:2b:dd:aa:e6:09:d8:21:ab:b2:65:ea:4f:
5c:77:27:0c:1a:bf:0b:da:76:62:fa:cd:16:02:76:58:6a:c0:
bb:e6:77:e2:c8:7c:33:35:ae:ae:19:7b:c2:3d:21:82:27:e6:
78:80:0d:30:9c:6b:29:a9:91:e8:3e:2e:21:f5:07:c2:2d:4a:
39:01:6a:64:9f:ba:d9:f7:9e:b1:86:29:2b:62:75:29:99:07:
1e:f6:b9:9c:f1:ec:a2:0e:c0:50:08:bf:ba:35:e3:27:3d:db:
18:b0:70:b8:8e:9f:14:dc:c7:e5:2f:84:f4:0a:2f:15:e7:0b:
de:e6:aa:63:e0:e8:fe:0f:9f:c5:a0:eb:33:77:d6:a4:3f:6a:
d1:f0:3f:ee:d7:26:1d:98:66:9f:6a:cb:15:f1:4a:f5:4d:78:
f5:12:e6:02:23:94:35:18:29:61:a7:0f:18:53:62:36:47:ee:
81:d2:a8:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:04 2024 by rpki-client on console-fra.rpki-client.org