Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/rwrEjOQBvCev_UQDgN1LVaXNKQQ.roa
File: rwrEjOQBvCev_UQDgN1LVaXNKQQ.roa (raw, json)
Hash identifier: Y6BF+R22ynpqfky+hYE8rz5r62kpn8iWu2AeF8cSz0k=
Subject key identifier: AF:0A:C4:8C:E4:01:BC:27:AF:FD:44:03:80:DD:4B:55:A5:CD:29:04
Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial: 01857054C905D5D39E86E36E6D17DDCCC624
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/rwrEjOQBvCev_UQDgN1LVaXNKQQ.roa
Signing time: Mon 02 Jan 2023 02:34:42 +0000
ROA not before: Mon 02 Jan 2023 02:34:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43182
IP address blocks: 2a0d:f740::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:54:c9:05:d5:d3:9e:86:e3:6e:6d:17:dd:cc:c6:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Validity
Not Before: Jan 2 02:34:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af0ac48ce401bc27affd440380dd4b55a5cd2904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:cf:36:aa:9a:d8:8c:31:7c:88:dc:c6:95:a1:
78:a7:46:f6:09:ef:e1:75:b0:3a:30:78:b5:c8:94:
55:4d:f0:95:8c:ed:eb:3e:68:3f:b2:8c:2c:90:fe:
36:fc:4d:5d:b4:d4:df:2a:d0:65:c3:50:6e:2c:36:
08:96:32:9f:68:10:cc:9a:2a:87:4c:f6:cc:2e:b9:
38:78:b4:0c:df:7e:7e:ec:dc:74:44:1d:a3:34:7a:
a4:b8:f4:f2:cd:f2:7d:de:de:e5:d1:df:ee:4f:b5:
3a:3c:ad:86:ad:81:d8:08:40:12:76:41:a1:ca:ba:
d2:66:30:66:9f:7a:f4:1b:d3:f9:06:45:29:ee:a1:
77:05:2e:61:08:22:5a:c7:c2:66:8b:ea:59:f8:37:
e1:d4:35:3e:94:88:dd:74:be:6a:91:c5:22:95:06:
fc:bf:22:64:97:5b:0a:0a:fc:eb:56:ae:f9:d4:35:
97:6a:f8:aa:87:cf:b6:86:df:e3:df:bf:85:e6:9f:
1e:16:27:b6:dc:50:a2:07:2d:56:70:7e:c1:0d:51:
8f:60:11:a6:d7:c4:5d:7e:ca:bb:73:46:39:f0:f8:
b9:2c:d8:e1:f3:9d:12:29:0a:1a:25:ad:15:d6:7d:
1f:57:94:4e:78:89:ec:0d:e8:ea:ac:1d:fb:13:54:
f9:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:0A:C4:8C:E4:01:BC:27:AF:FD:44:03:80:DD:4B:55:A5:CD:29:04
X509v3 Authority Key Identifier:
keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/rwrEjOQBvCev_UQDgN1LVaXNKQQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:f740::/32
Signature Algorithm: sha256WithRSAEncryption
44:35:f8:d2:42:78:89:83:30:c8:bc:61:16:cb:d1:0e:0d:52:
6b:34:e3:10:de:e8:71:6a:d1:66:38:e1:90:76:59:ba:8c:99:
bb:ea:39:6f:12:a6:52:23:ee:d8:3e:37:27:19:ca:b9:cf:97:
07:ba:eb:36:2a:a1:5f:ed:a2:14:6d:a9:56:bc:de:0e:e9:c6:
2d:70:ec:3a:ba:5c:e1:00:5f:5f:1a:b2:84:09:79:34:4b:21:
6f:80:76:79:ef:98:3c:48:d9:43:3d:8a:3f:0a:29:94:d0:36:
9a:2a:53:db:a0:18:61:70:16:4c:81:ca:a1:b8:b2:4e:bd:15:
38:59:de:03:42:d6:71:9b:d3:8e:f9:3b:52:04:1f:d9:c4:29:
65:90:c9:0d:ed:76:47:3b:d9:1c:5d:58:f2:af:e9:54:d4:fe:
73:ba:8e:ae:d2:7d:d1:24:9c:60:ef:44:69:43:5b:53:fe:34:
91:b6:fb:0a:5a:2c:6e:52:00:25:63:f7:10:4d:7c:d8:bb:3f:
f8:44:c6:8d:2e:a9:e1:a3:98:55:61:53:b6:8a:d5:be:65:2d:
58:7e:7c:f7:ce:f4:5d:5e:c2:7d:cd:93:fa:ae:c9:4f:be:55:
37:b7:2b:3d:b6:69:1a:6d:f4:e9:a9:52:7b:8d:c4:c5:dc:1c:
ab:88:84:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:00 2024 by rpki-client on console-ams.rpki-client.org