Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1c7c09-e02c-4cbf-9e67-9685555190c4/1/d8wOifzi3XC6CV58RPVT82kaPws.roa
File: d8wOifzi3XC6CV58RPVT82kaPws.roa (raw, json)
Hash identifier: yXQEJ8YjaAdYc54HuXYHiCuSqAao0qfwGHzlTImh33k=
Subject key identifier: 77:CC:0E:89:FC:E2:DD:70:BA:09:5E:7C:44:F5:53:F3:69:1A:3F:0B
Certificate issuer: /CN=d81d42aae019e4ea44a616378eb66b389de8c511
Certificate serial: 01856E81EE3D2C720CA133CFAD5426B3C617
Authority key identifier: D8:1D:42:AA:E0:19:E4:EA:44:A6:16:37:8E:B6:6B:38:9D:E8:C5:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2B1CquAZ5OpEphY3jrZrOJ3oxRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1c7c09-e02c-4cbf-9e67-9685555190c4/1/d8wOifzi3XC6CV58RPVT82kaPws.roa
Signing time: Sun 01 Jan 2023 18:04:46 +0000
ROA not before: Sun 01 Jan 2023 18:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50902
IP address blocks: 2a0f:fc80::/32 maxlen: 32
2a0f:fc81::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:81:ee:3d:2c:72:0c:a1:33:cf:ad:54:26:b3:c6:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d81d42aae019e4ea44a616378eb66b389de8c511
Validity
Not Before: Jan 1 18:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77cc0e89fce2dd70ba095e7c44f553f3691a3f0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:8a:bf:1e:ae:5d:f2:9b:ab:00:af:1a:f9:84:
93:0b:c3:8b:4c:dc:7c:4f:b7:00:a7:d3:f4:37:2b:
67:a1:29:0e:a7:29:e9:e0:8c:a2:fa:a6:48:28:6a:
e5:5d:ad:22:68:67:9b:15:ff:c2:86:6a:fc:34:86:
b4:60:7d:60:9d:6d:46:71:8d:37:68:43:7e:0d:c1:
b8:61:3f:17:23:c4:01:05:4f:3d:52:7e:45:32:9d:
4a:f0:12:93:15:17:4d:80:d1:42:9b:9a:56:8c:21:
ea:06:1a:e0:1c:b3:ed:19:90:5c:e6:e0:5b:2d:b3:
60:3d:a7:15:23:46:1c:da:ac:62:50:99:11:d9:9a:
11:10:18:28:da:cf:0b:c4:9c:5d:46:bd:2d:07:97:
4c:ad:e2:e0:19:ee:9f:94:cf:3b:6e:3f:11:b4:11:
3a:09:f6:c8:df:44:1a:13:95:cc:1d:a5:2c:a4:cc:
20:72:a4:2e:1f:91:5a:87:5c:34:96:8c:0f:c8:65:
d7:25:a4:21:64:c8:78:bb:42:62:22:a4:ff:3e:ee:
3a:0d:c2:2a:bf:85:1d:92:06:28:e9:c9:e2:56:2d:
16:ac:d2:69:d9:ed:08:e2:0e:55:73:dd:96:72:cf:
0e:7f:01:a6:93:0f:58:e3:ca:f6:6b:61:71:fe:e0:
c9:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:CC:0E:89:FC:E2:DD:70:BA:09:5E:7C:44:F5:53:F3:69:1A:3F:0B
X509v3 Authority Key Identifier:
keyid:D8:1D:42:AA:E0:19:E4:EA:44:A6:16:37:8E:B6:6B:38:9D:E8:C5:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2B1CquAZ5OpEphY3jrZrOJ3oxRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1c7c09-e02c-4cbf-9e67-9685555190c4/1/d8wOifzi3XC6CV58RPVT82kaPws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1c7c09-e02c-4cbf-9e67-9685555190c4/1/2B1CquAZ5OpEphY3jrZrOJ3oxRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:fc80::/31
Signature Algorithm: sha256WithRSAEncryption
01:25:6a:0f:72:84:e3:1c:0a:8b:98:60:e9:98:bb:03:30:a0:
b7:da:d9:65:9f:48:75:22:29:36:15:ee:66:e9:bd:f1:44:67:
e4:e8:95:88:4c:0c:80:57:ec:ea:5c:78:93:cd:3c:30:3d:90:
d6:06:be:c6:1c:39:b0:b0:ee:bc:03:5b:68:52:5d:62:c4:ed:
ea:ea:8d:38:0d:2e:57:c1:b3:38:63:41:1b:c3:a3:02:b1:ce:
e4:a8:bb:63:af:0d:89:e9:7e:2f:79:39:6d:65:c5:0a:8a:2e:
a5:d9:0e:c5:26:ff:ba:3d:64:ef:7b:38:e8:a1:fc:eb:e8:f2:
99:c4:bb:5c:ce:fc:3b:a4:dc:90:7d:65:9d:25:bb:bf:47:f6:
78:df:ea:f2:f8:5d:2a:fc:8e:c4:0f:b0:95:1f:c6:e3:01:b3:
90:fc:6f:2c:f2:6e:db:d4:66:32:3d:f3:37:4d:ad:09:d3:35:
ad:08:4b:e2:e5:c8:e6:69:ce:c2:54:d6:c7:eb:23:c8:5e:bf:
c9:58:a4:c7:84:3b:e6:44:19:05:71:f3:04:ab:c2:5f:31:3f:
26:74:74:47:05:79:35:e1:33:b8:e8:08:43:ed:33:8d:f0:8d:
aa:dd:db:50:84:7a:02:8f:d6:fe:e6:80:91:28:fa:50:8b:b2:
00:af:88:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:15 2024 by rpki-client on console-fra.rpki-client.org