Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/w_cP6-TeZklXGT6wh81lFwNrObs.roa
File: w_cP6-TeZklXGT6wh81lFwNrObs.roa (raw, json)
Hash identifier: YcMZ2DWY2zt36PjG0dSLv7EKLczpTCN4U5h5caSaP04=
Subject key identifier: C3:F7:0F:EB:E4:DE:66:49:57:19:3E:B0:87:CD:65:17:03:6B:39:BB
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 0191743827116912466D7934AAD7D41A497F
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/w_cP6-TeZklXGT6wh81lFwNrObs.roa
Signing time: Wed 21 Aug 2024 09:15:22 +0000
ROA not before: Wed 21 Aug 2024 09:15:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 40676
IP address blocks: 2a12:440::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 24 Aug 2024 10:48:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:74:38:27:11:69:12:46:6d:79:34:aa:d7:d4:1a:49:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Aug 21 09:15:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c3f70febe4de664957193eb087cd6517036b39bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:55:f3:c2:60:e0:4b:30:86:b5:0e:4b:8a:a2:
04:38:84:8c:50:b5:47:40:e1:43:e2:51:f9:af:72:
a0:fc:cf:7e:44:ae:46:19:a0:4f:0d:bd:e4:dc:d7:
be:28:4d:a9:c3:16:d9:22:e3:04:66:b9:68:8e:70:
32:9e:54:cf:a8:41:a1:a0:0c:00:24:e3:36:82:8c:
f1:9a:27:29:69:5c:63:54:04:a8:ed:bb:a4:7a:22:
91:17:c9:61:06:ce:31:9d:61:7b:53:7e:43:7a:2c:
f9:fd:4f:c2:ff:74:67:0d:ed:4a:d3:2c:82:69:f1:
fb:41:e0:7d:3a:da:aa:f6:78:59:5a:e2:88:b8:db:
17:88:54:cf:ce:27:77:d5:50:f2:98:70:a7:20:b2:
c2:16:86:5f:83:68:6d:07:02:5b:a6:a1:e0:6b:da:
36:b3:e5:a6:51:d6:0a:c0:c0:29:42:f9:c8:3d:5d:
67:0e:57:ea:5b:8d:f6:dd:6a:2c:62:fe:83:ff:12:
58:5a:b6:78:f2:1c:64:39:37:cf:9a:8f:e7:44:89:
77:e0:35:46:6e:84:d1:ad:34:e7:6b:08:fe:e1:b9:
d4:d7:26:da:db:75:9a:be:15:b6:40:a7:e1:86:c0:
0e:20:fd:84:62:6f:60:aa:8b:3f:35:e7:ed:d0:06:
8b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:F7:0F:EB:E4:DE:66:49:57:19:3E:B0:87:CD:65:17:03:6B:39:BB
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/w_cP6-TeZklXGT6wh81lFwNrObs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:440::/29
Signature Algorithm: sha256WithRSAEncryption
a8:2e:16:d9:51:e1:6b:e0:ef:75:7d:ab:fb:07:10:5e:7e:72:
23:52:10:2e:2c:98:de:e3:7d:db:2a:04:48:00:ed:03:41:39:
65:0d:ae:58:77:b0:21:60:f9:47:38:ef:11:f2:03:0b:48:4a:
98:d0:69:56:a8:41:66:49:c8:62:3c:07:8e:49:63:92:a4:65:
6e:f6:ea:7a:65:6d:56:91:c1:ec:0c:e5:ec:3d:74:b1:45:67:
e2:90:98:dc:18:6a:07:34:35:34:53:30:bd:eb:a1:1e:19:96:
4f:fe:d7:71:25:06:6e:1d:6f:2b:0c:e7:ef:23:5d:71:7a:e0:
99:50:34:70:d6:c3:ec:17:c1:98:a2:a2:20:15:85:90:6d:ab:
eb:50:03:f6:47:8d:77:cc:9c:a5:b0:18:36:3b:56:f5:a4:d7:
1b:26:b6:e5:77:9b:75:81:bf:e9:b0:85:41:a4:d1:01:2b:fb:
66:37:85:01:6a:fa:63:53:72:e4:9e:32:ec:44:01:e9:2f:82:
36:e4:32:48:c5:ce:a2:62:ed:85:74:0f:68:5c:bc:fb:63:b8:
23:c3:87:10:0f:67:80:bb:8a:9e:ca:f5:62:cd:ea:d1:24:e2:
c4:ca:96:e4:7e:c4:8c:cf:58:07:c7:cf:1d:eb:f8:35:12:16:
76:85:eb:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 24 13:38:18 2024 by rpki-client on console-ams.rpki-client.org