Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/VaDhp-xbNMm2QUEFscPT8MIg7uE.roa
File: VaDhp-xbNMm2QUEFscPT8MIg7uE.roa (raw, json)
Hash identifier: UMEkkcnZInHQorlNM1o2D3PK2c59QpGjhJl532+8mSM=
Subject key identifier: 55:A0:E1:A7:EC:5B:34:C9:B6:41:41:05:B1:C3:D3:F0:C2:20:EE:E1
Certificate issuer: /CN=4fb2bb7bad50f1921810a028e78edd65f81f6a7d
Certificate serial: 0185720C7AD8163859715A973578BB042920
Authority key identifier: 4F:B2:BB:7B:AD:50:F1:92:18:10:A0:28:E7:8E:DD:65:F8:1F:6A:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T7K7e61Q8ZIYEKAo547dZfgfan0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/VaDhp-xbNMm2QUEFscPT8MIg7uE.roa
Signing time: Mon 02 Jan 2023 10:34:58 +0000
ROA not before: Mon 02 Jan 2023 10:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 32780
IP address blocks: 2a07:23c0:8::/48 maxlen: 48
2a07:23c0::/48 maxlen: 48
2a07:23c0:9::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:7a:d8:16:38:59:71:5a:97:35:78:bb:04:29:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fb2bb7bad50f1921810a028e78edd65f81f6a7d
Validity
Not Before: Jan 2 10:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55a0e1a7ec5b34c9b6414105b1c3d3f0c220eee1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:91:8f:96:8c:8c:16:81:5c:d6:f1:5e:d3:ec:
f3:4f:87:50:70:63:6a:00:a0:ad:bc:6c:c6:85:74:
18:5e:bb:f1:de:7b:81:0f:1a:43:ec:04:48:80:99:
a3:ed:72:8a:ee:f3:fc:02:04:69:c1:65:f2:53:96:
18:29:c1:86:d0:a8:d7:fc:4d:d0:50:b0:7a:7e:e2:
2f:94:57:a2:1c:fa:2f:80:0a:70:2c:a6:d2:2a:d5:
1a:ff:95:4b:b7:fd:93:1e:45:ab:c7:11:2b:74:86:
fc:cd:45:a0:7e:c1:5c:f4:f9:fe:c9:16:bd:95:77:
43:ac:48:b7:29:92:aa:bf:ab:51:94:6a:df:96:d5:
56:43:c6:b8:35:73:9c:de:6d:e1:ed:e7:e7:bc:ca:
15:ce:99:89:46:45:de:22:0d:62:af:99:05:fb:c3:
31:34:bb:bf:7b:8c:13:06:b1:5e:9f:42:06:cf:8c:
20:6e:db:06:06:e9:d9:d4:ae:96:e1:57:45:ae:ac:
49:3c:ca:d4:a3:be:10:4d:b0:81:44:40:d3:17:8a:
d8:b8:5e:88:2b:2b:37:f5:6d:1e:3c:68:71:56:89:
bb:d6:68:b5:62:54:63:81:f2:19:e5:61:f9:2e:a7:
62:28:03:27:74:89:fb:94:4c:40:b9:fd:df:ce:86:
31:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:A0:E1:A7:EC:5B:34:C9:B6:41:41:05:B1:C3:D3:F0:C2:20:EE:E1
X509v3 Authority Key Identifier:
keyid:4F:B2:BB:7B:AD:50:F1:92:18:10:A0:28:E7:8E:DD:65:F8:1F:6A:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T7K7e61Q8ZIYEKAo547dZfgfan0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/VaDhp-xbNMm2QUEFscPT8MIg7uE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/T7K7e61Q8ZIYEKAo547dZfgfan0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:23c0::/48
2a07:23c0:8::/47
Signature Algorithm: sha256WithRSAEncryption
b3:f5:60:5c:8b:fa:68:f8:9b:62:69:8d:f2:c4:d0:45:55:9a:
45:1a:f5:57:40:7c:68:81:58:d4:60:8d:86:63:3f:ee:ff:33:
ab:8a:d9:91:70:ae:4f:6c:10:de:28:57:8e:f9:8a:bf:8a:c7:
76:87:a7:45:85:53:ee:76:75:7f:26:78:c1:96:be:1b:40:a4:
fc:5a:7b:b6:dc:80:d3:05:31:9f:54:57:e6:ee:c0:4e:15:b5:
f2:7f:6e:ef:f3:e6:24:ed:74:1a:f7:c8:22:5d:1b:c4:61:63:
9b:38:38:76:6f:3e:27:6c:68:66:3e:e1:bf:60:b9:26:4c:ae:
33:e7:5f:4f:b1:16:64:53:3c:f1:d5:5f:e2:6b:04:3d:fe:33:
47:4f:1a:40:e7:61:9c:36:91:e5:2f:99:a1:af:35:86:38:1b:
fb:ef:32:57:3b:31:a4:27:52:b3:b7:1c:45:a2:5d:8b:5d:3b:
0b:34:29:5f:32:57:c5:bd:41:1e:b8:f8:fa:db:81:4b:e2:a0:
4c:05:33:0a:68:70:ff:01:31:dd:03:11:64:c8:c8:8f:03:ee:
36:88:10:21:e9:7a:93:c0:23:1a:d8:29:a2:f2:99:25:ae:44:
82:5d:55:2c:58:13:82:74:70:36:ac:cf:80:5f:97:94:d2:05:
bc:f0:d9:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:31 2024 by rpki-client on console-ams.rpki-client.org