Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/WbDoRPh4FAR1rEVlSWChnzykYsk.roa
File: WbDoRPh4FAR1rEVlSWChnzykYsk.roa (raw, json)
Hash identifier: B4+VEpXiYkwCEW0jCiSxp/QMtu4PP2Qb3tZnnqyRmF8=
Subject key identifier: 59:B0:E8:44:F8:78:14:04:75:AC:45:65:49:60:A1:9F:3C:A4:62:C9
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018E750155A7C8F9315FF3BFE92FC6BAAB0D
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/WbDoRPh4FAR1rEVlSWChnzykYsk.roa
Signing time: Mon 25 Mar 2024 09:46:45 +0000
ROA not before: Mon 25 Mar 2024 09:46:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204227
IP address blocks: 2a00:1728:2e::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 25 Mar 2024 12:28:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:75:01:55:a7:c8:f9:31:5f:f3:bf:e9:2f:c6:ba:ab:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Mar 25 09:46:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59b0e844f878140475ac45654960a19f3ca462c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:77:f4:99:94:47:5e:92:e7:67:e9:2e:e3:51:
4e:28:3c:8e:3f:fe:8b:fe:dd:e0:78:fc:87:c3:2b:
9c:12:9c:35:5a:f1:ce:2c:dc:5f:68:e2:b4:37:70:
f8:ec:dc:79:58:a5:b6:5d:ac:a8:ec:e7:cb:9b:05:
42:60:a5:df:27:c7:31:e6:ae:f7:6b:83:fc:81:96:
1c:c3:b2:13:6a:6e:1c:2d:7c:53:63:5f:e1:7d:0d:
61:30:7f:d6:96:b8:13:70:a0:d6:95:b8:1f:a4:df:
1a:95:09:fc:90:91:e5:50:ac:15:aa:f0:65:29:f8:
b4:65:5b:60:61:f2:9d:95:fa:96:51:03:11:93:f0:
92:e5:9f:cd:e6:2b:a7:a4:39:f0:36:17:ef:3f:a4:
97:72:df:0d:17:de:5c:1b:93:f0:b8:04:d6:7f:b5:
73:c4:62:35:85:0f:89:59:90:6c:2b:9f:6e:15:b7:
7c:6e:42:d1:98:95:fa:de:a5:b6:73:e2:2d:7b:18:
56:8e:a0:59:72:34:a6:45:5a:37:c0:f0:dd:78:9a:
85:84:6f:50:6e:72:64:8c:d4:87:24:1a:ce:d9:8d:
ce:4d:e3:04:ad:8a:79:b7:4d:04:b8:a0:63:45:39:
47:a0:04:52:ff:04:ea:fb:0c:2b:d8:a8:62:37:ba:
bc:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B0:E8:44:F8:78:14:04:75:AC:45:65:49:60:A1:9F:3C:A4:62:C9
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/WbDoRPh4FAR1rEVlSWChnzykYsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1728:2e::/48
Signature Algorithm: sha256WithRSAEncryption
a2:c9:d7:2c:64:6d:e0:bf:d5:65:5b:5b:9d:fa:2b:a9:f1:78:
1e:a4:b6:6a:db:49:38:6a:7a:6c:f0:03:fc:74:7c:33:d0:10:
c1:84:ae:cc:0e:d3:d6:90:21:a5:cf:76:c2:d6:2f:69:f0:10:
fe:20:1b:4f:29:7b:c5:29:65:cf:de:81:f8:58:63:22:d2:19:
ca:35:71:38:f5:cb:77:5b:43:1a:95:07:bb:2a:ce:90:77:92:
4b:7c:b1:21:1a:d8:50:75:5b:99:f2:03:0f:14:77:09:14:c0:
57:2a:8d:f7:16:9f:ca:6b:6c:e5:e1:6c:8a:85:85:1d:e5:06:
00:ec:9c:fc:fe:b5:71:59:94:a3:74:cf:8e:53:c5:ac:af:e7:
6b:40:44:4f:a9:20:6c:8a:83:33:8b:2d:9f:3b:ad:7e:2d:b0:
2f:54:b5:1f:f1:77:1f:0a:d8:91:54:60:62:34:a7:73:58:04:
08:02:f7:a4:6e:63:1b:6f:52:4b:53:35:b7:a4:6c:ac:1d:a1:
ed:27:19:9a:56:2f:4f:e2:59:2c:72:18:d9:3e:17:25:45:57:
23:77:b1:f4:69:b6:9f:98:a6:91:ce:c7:90:40:c0:67:14:1b:
79:7b:72:fe:ec:2e:9b:e8:10:75:14:54:ce:cd:49:ab:4e:7c:
47:3a:67:64
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY51AVWnyPkxX/O/6S/GuqsNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjQwMzI1MDk0NjQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OWIwZTg0NGY4NzgxNDA0NzVhYzQ1NjU0OTYwYTE5ZjNjYTQ2MmM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmnf0mZRHXpLnZ+ku41FOKDyOP/6L
/t3gePyHwyucEpw1WvHOLNxfaOK0N3D47Nx5WKW2Xayo7OfLmwVCYKXfJ8cx5q73
a4P8gZYcw7ITam4cLXxTY1/hfQ1hMH/WlrgTcKDWlbgfpN8alQn8kJHlUKwVqvBl
Kfi0ZVtgYfKdlfqWUQMRk/CS5Z/N5iunpDnwNhfvP6SXct8NF95cG5PwuATWf7Vz
xGI1hQ+JWZBsK59uFbd8bkLRmJX63qW2c+ItexhWjqBZcjSmRVo3wPDdeJqFhG9Q
bnJkjNSHJBrO2Y3OTeMErYp5t00EuKBjRTlHoARS/wTq+wwr2KhiN7q8WQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFmw6ET4eBQEdaxFZUlgoZ88pGLJMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvV2JEb1JQaDRGQVIxckVWbFNXQ2huenlrWXNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgAXKAAu
MA0GCSqGSIb3DQEBCwUAA4IBAQCiydcsZG3gv9VlW1ud+iup8XgepLZq20k4anps
8AP8dHwz0BDBhK7MDtPWkCGlz3bC1i9p8BD+IBtPKXvFKWXP3oH4WGMi0hnKNXE4
9ct3W0MalQe7Ks6Qd5JLfLEhGthQdVuZ8gMPFHcJFMBXKo33Fp/Ka2zl4WyKhYUd
5QYA7Jz8/rVxWZSjdM+OU8Wsr+drQERPqSBsioMziy2fO61+LbAvVLUf8XcfCtiR
VGBiNKdzWAQIAvekbmMbb1JLUzW3pGysHaHtJxmaVi9P4lkschjZPhclRVcjd7H0
abafmKaRzseQQMBnFBt5e3L+7C6b6BB1FFTOzUmrTnxHOmdk
-----END CERTIFICATE-----
Generated at Mon Mar 25 15:18:04 2024 by rpki-client on console-ams.rpki-client.org