Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/83d6fa-461d-4a56-a844-9f942bc12a7e/1/vIM2jScT0sGpPU1BThJTkEMGslU.roa
File: vIM2jScT0sGpPU1BThJTkEMGslU.roa (raw, json)
Hash identifier: IzqQQJffO9F3v+ld5yzc0HGfZHlFKs7CIl6fF2hhjOc=
Subject key identifier: BC:83:36:8D:27:13:D2:C1:A9:3D:4D:41:4E:12:53:90:43:06:B2:55
Certificate issuer: /CN=5688b42175d6214a31a5407db8b6c95f1ec60d4e
Certificate serial: 018DEA873E67D7C7A24203082BF7F8B7FCD2
Authority key identifier: 56:88:B4:21:75:D6:21:4A:31:A5:40:7D:B8:B6:C9:5F:1E:C6:0D:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Voi0IXXWIUoxpUB9uLbJXx7GDU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/83d6fa-461d-4a56-a844-9f942bc12a7e/1/vIM2jScT0sGpPU1BThJTkEMGslU.roa
Signing time: Tue 27 Feb 2024 12:25:48 +0000
ROA not before: Tue 27 Feb 2024 12:25:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215419
IP address blocks: 2a13:7b40:51::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 06 Jun 2024 16:46:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ea:87:3e:67:d7:c7:a2:42:03:08:2b:f7:f8:b7:fc:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5688b42175d6214a31a5407db8b6c95f1ec60d4e
Validity
Not Before: Feb 27 12:25:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc83368d2713d2c1a93d4d414e1253904306b255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b0:8a:30:fd:a9:d8:d4:62:82:93:30:53:40:
02:da:bd:d3:fe:16:d2:cf:5f:a3:3b:08:bb:6c:b9:
9c:f6:4c:67:39:94:1e:dd:50:5e:3e:5e:66:e7:da:
68:8e:a0:f9:10:b2:64:9d:b9:76:ee:0d:7f:66:89:
55:be:e7:96:21:04:88:bc:b7:9e:f7:46:9b:68:eb:
42:7a:d7:1f:92:3a:7e:9c:31:2c:d5:04:73:60:83:
fb:16:3f:48:06:85:f3:ee:b8:31:d8:11:b8:02:b9:
b2:43:c8:95:0b:17:71:b7:7d:5b:1b:49:ab:13:3b:
ee:b7:0f:33:d2:4b:f0:3c:96:10:76:2f:58:d7:55:
a5:ba:d0:fd:86:4a:ca:e9:4e:9d:be:b4:7e:83:06:
71:5e:2d:61:44:81:9c:a2:b4:81:f7:d1:50:58:5b:
b8:1e:70:f8:00:06:65:cd:2e:3a:8f:fc:0f:a9:40:
9b:80:3f:01:b5:10:f4:63:3e:df:f5:ca:c8:0a:1e:
7a:e1:4d:90:a9:17:6a:bf:e5:90:31:94:76:3e:10:
38:04:82:d4:7a:2a:39:1d:70:0b:5b:9d:7e:d8:51:
9b:0e:e3:36:a0:83:00:3a:ef:03:b4:1e:48:db:8d:
95:11:33:70:26:8b:67:e4:ab:8f:17:ec:82:f4:2b:
99:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:83:36:8D:27:13:D2:C1:A9:3D:4D:41:4E:12:53:90:43:06:B2:55
X509v3 Authority Key Identifier:
keyid:56:88:B4:21:75:D6:21:4A:31:A5:40:7D:B8:B6:C9:5F:1E:C6:0D:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Voi0IXXWIUoxpUB9uLbJXx7GDU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/83d6fa-461d-4a56-a844-9f942bc12a7e/1/vIM2jScT0sGpPU1BThJTkEMGslU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/83d6fa-461d-4a56-a844-9f942bc12a7e/1/Voi0IXXWIUoxpUB9uLbJXx7GDU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:7b40:51::/48
Signature Algorithm: sha256WithRSAEncryption
1c:52:ad:16:82:d1:ed:14:a7:cc:c3:35:c8:b5:4c:78:80:0b:
33:e7:e9:38:cf:06:06:e2:96:c8:b4:3b:ee:d9:45:b4:3e:bc:
dd:e2:52:b6:b0:89:c3:06:97:8e:3d:c1:2e:2d:ef:57:00:06:
00:7c:50:82:5b:d5:0e:4b:32:7c:2b:32:d0:bb:08:cb:48:03:
95:5b:58:0d:eb:6e:37:0e:57:32:b0:2b:f3:37:1e:f6:52:4e:
cb:d4:c8:6a:a4:0c:3e:71:3a:24:87:7e:9b:1e:57:bf:ff:44:
ff:9f:67:0b:5d:76:de:fd:0e:f9:f4:80:05:b5:bf:ec:b0:09:
e5:b9:1a:09:1f:f3:45:cf:fc:32:2d:98:4d:97:2c:ea:98:ec:
02:e6:b9:17:9d:d9:4b:ae:f5:4a:3a:20:f2:17:19:83:41:21:
ec:5d:84:78:26:89:c4:cb:b3:5b:4c:5a:f5:ad:a4:0d:12:a7:
87:91:54:fa:57:01:3e:76:b0:81:1e:e1:cc:78:77:2a:f0:35:
f6:d8:d6:2b:41:88:ef:3f:59:e0:de:c8:39:de:5d:63:51:a0:
ae:60:ac:c8:14:3c:3e:9d:b3:8c:06:b1:13:2e:af:09:46:25:
44:5f:dc:7f:b0:15:13:2a:1c:b1:1e:39:69:b1:97:32:2f:4b:
9f:3b:c4:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 10 14:41:57 2024 by rpki-client on console.sobornost.net