Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/fa342e-b3bc-4373-8c6b-8854c82b545d/1/WF0zddUYQV9wyFoiq9QV8lST9Ig.roa
File: WF0zddUYQV9wyFoiq9QV8lST9Ig.roa (raw, json)
Hash identifier: ZaJKL/gU37CwVzOFPfC+S10IFsiy8cQo3Pg7i4l4ins=
Subject key identifier: 58:5D:33:75:D5:18:41:5F:70:C8:5A:22:AB:D4:15:F2:54:93:F4:88
Certificate issuer: /CN=cb335dc6feb385f6a23344056a13c2c595028e91
Certificate serial: 01856FE722AEB6973DA4F0BD7D97884E4A8D
Authority key identifier: CB:33:5D:C6:FE:B3:85:F6:A2:33:44:05:6A:13:C2:C5:95:02:8E:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yzNdxv6zhfaiM0QFahPCxZUCjpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/fa342e-b3bc-4373-8c6b-8854c82b545d/1/WF0zddUYQV9wyFoiq9QV8lST9Ig.roa
Signing time: Mon 02 Jan 2023 00:34:56 +0000
ROA not before: Mon 02 Jan 2023 00:34:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61361
IP address blocks: 2a0e:3780:c0ca::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e7:22:ae:b6:97:3d:a4:f0:bd:7d:97:88:4e:4a:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb335dc6feb385f6a23344056a13c2c595028e91
Validity
Not Before: Jan 2 00:34:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=585d3375d518415f70c85a22abd415f25493f488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1e:31:27:3a:39:bd:99:6b:1f:60:bf:24:35:
e4:ce:41:f5:76:87:f2:2b:9e:73:5b:2d:14:f3:e5:
00:66:8a:70:bd:06:d0:ee:a4:fe:ed:42:4e:1c:cb:
08:d0:9c:c7:c4:90:26:4c:31:df:45:1f:5e:f3:c9:
92:ea:d4:98:84:dd:52:54:80:7d:51:98:1a:8f:d9:
a2:47:44:ae:80:ca:dc:ab:1e:bd:97:b8:cb:5f:21:
2a:77:8d:2b:43:ef:db:c7:7e:59:54:b6:b4:39:f1:
61:c3:6f:89:43:56:81:64:4c:f0:e6:f0:00:ab:20:
69:e5:88:4f:cc:a7:70:52:c0:9f:c4:dc:c7:d8:db:
27:0b:28:a5:e0:a5:42:14:d6:70:a7:67:2e:a6:b9:
18:65:22:16:07:b9:62:6d:4c:c5:a5:d6:38:10:fa:
a3:a8:6d:e2:a8:51:37:49:05:11:b1:b6:a7:05:3a:
23:65:c5:64:31:75:14:a3:4d:68:0c:35:fc:e2:a6:
b9:b3:e6:2c:4f:dd:45:4b:ea:86:d7:06:c8:ad:d1:
52:21:5a:17:1a:61:2c:7c:94:81:0b:93:da:c6:5f:
de:d2:a2:62:d6:3c:59:d9:04:39:cf:1c:32:a6:8e:
dd:e7:f2:25:a3:6a:e6:f7:e8:63:14:d2:31:2a:1e:
41:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:5D:33:75:D5:18:41:5F:70:C8:5A:22:AB:D4:15:F2:54:93:F4:88
X509v3 Authority Key Identifier:
keyid:CB:33:5D:C6:FE:B3:85:F6:A2:33:44:05:6A:13:C2:C5:95:02:8E:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yzNdxv6zhfaiM0QFahPCxZUCjpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/fa342e-b3bc-4373-8c6b-8854c82b545d/1/WF0zddUYQV9wyFoiq9QV8lST9Ig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/fa342e-b3bc-4373-8c6b-8854c82b545d/1/yzNdxv6zhfaiM0QFahPCxZUCjpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:3780:c0ca::/48
Signature Algorithm: sha256WithRSAEncryption
3d:f7:ab:e6:e5:3e:64:ad:b7:d1:53:cd:e2:1b:02:cd:cf:f3:
8d:2d:c2:d4:01:fe:09:16:7b:1d:4a:27:8d:77:43:e2:29:83:
15:1b:a0:1f:2a:b6:7a:df:b4:14:9d:a3:88:7f:94:05:df:eb:
cb:86:7e:76:66:7b:10:30:8e:b6:4a:67:f6:3a:1e:ba:5a:bc:
b9:58:99:56:12:5a:b0:74:f9:5b:05:5b:24:a9:2b:9c:f7:ce:
89:2c:61:ad:cb:4f:a3:6f:8f:43:69:a5:ab:a0:fe:48:cd:83:
10:cc:c4:f5:b4:cd:1f:fb:7b:25:10:59:a1:7f:88:8c:0f:73:
fe:65:fe:c9:7a:44:d1:00:cf:20:87:64:53:07:5f:d7:35:e7:
cf:ae:e6:10:81:01:2f:1f:65:71:c0:7b:d3:2d:fc:e1:03:b9:
0c:c7:09:99:68:bf:0e:a9:ba:47:88:97:67:6c:c0:eb:4f:3e:
e0:de:25:b9:89:4a:0c:d4:ae:dd:82:0c:65:84:b5:16:c8:49:
b6:20:19:86:41:c8:52:e3:0a:1c:89:ba:cf:25:d9:cf:fc:05:
91:71:fc:19:e1:72:c3:3e:a7:76:71:c8:b7:f7:97:fe:c1:f0:
f3:93:14:d8:63:d7:a9:7e:e6:9e:9f:65:a8:dc:df:ee:47:e8:
83:5a:3f:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:19 2024 by rpki-client on console-fra.rpki-client.org