Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/wxscPVOo_TdQqLD5hXySWPR-sA8.roa
File: wxscPVOo_TdQqLD5hXySWPR-sA8.roa (raw, json)
Hash identifier: 94sO6f/JJxLC1zmCjGOoxjmkpgS+WRPR+ATusf2J+Fo=
Subject key identifier: C3:1B:1C:3D:53:A8:FD:37:50:A8:B0:F9:85:7C:92:58:F4:7E:B0:0F
Certificate issuer: /CN=f71d4a4374df222ac3235b9602206d96bf1dac82
Certificate serial: 0188250EF5A26527D6C60506010947C9DCB6
Authority key identifier: F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/wxscPVOo_TdQqLD5hXySWPR-sA8.roa
Signing time: Tue 16 May 2023 14:55:17 +0000
ROA not before: Tue 16 May 2023 14:55:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a06:5901:8000::/40 maxlen: 40
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:25:0e:f5:a2:65:27:d6:c6:05:06:01:09:47:c9:dc:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f71d4a4374df222ac3235b9602206d96bf1dac82
Validity
Not Before: May 16 14:55:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c31b1c3d53a8fd3750a8b0f9857c9258f47eb00f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a1:22:a4:ee:c3:0a:13:f2:a7:5a:e5:1b:32:
a6:e5:2a:a1:20:ed:a4:82:c2:fb:03:33:cd:5c:4a:
03:a3:41:b2:e4:51:67:35:42:ea:fe:30:27:46:db:
98:86:2b:b8:38:82:52:2e:81:07:15:09:26:bd:66:
6d:9d:6f:4f:69:f8:70:84:41:95:a6:70:9a:6c:16:
c1:59:1a:9b:af:95:21:42:c0:a2:d1:7b:18:2f:3f:
05:50:f8:a5:7e:04:13:ed:19:7b:c0:27:92:17:f3:
72:c9:0f:52:09:53:7a:a3:40:0d:bd:59:37:68:69:
cf:a8:c9:74:ba:e9:8f:c4:95:0b:9b:c2:f5:8a:ef:
6b:0c:72:1f:7d:b9:43:c7:26:53:14:1b:18:59:d6:
a4:3a:50:7d:b4:65:b1:26:39:6e:68:a3:4e:09:50:
98:05:4d:e6:40:23:0f:16:05:66:7d:bd:06:10:e8:
a7:47:e4:9a:66:57:2d:a7:9b:44:11:ed:5e:ef:a8:
60:e8:1b:c7:e8:34:7f:8c:28:06:57:3a:31:59:c1:
b7:f4:2f:e1:53:46:68:b6:62:82:03:7c:56:37:d0:
0e:13:09:08:e5:1d:65:bc:db:89:a0:6c:96:37:4f:
4d:5c:11:65:1a:78:19:55:bf:1c:ea:72:4c:b4:8a:
31:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:1B:1C:3D:53:A8:FD:37:50:A8:B0:F9:85:7C:92:58:F4:7E:B0:0F
X509v3 Authority Key Identifier:
keyid:F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/wxscPVOo_TdQqLD5hXySWPR-sA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/9x1KQ3TfIirDI1uWAiBtlr8drII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:5901:8000::/40
Signature Algorithm: sha256WithRSAEncryption
5e:fb:4c:a0:3f:39:80:89:24:e8:e2:24:bf:2e:ce:c3:57:00:
e1:72:d9:a0:67:84:d8:23:ee:3c:b5:3c:19:2d:8b:31:ed:a1:
09:ce:cc:b3:3a:bc:a6:7a:4e:00:f3:aa:8e:2f:54:ad:7d:53:
2d:61:a3:77:de:ad:3d:71:65:e4:b4:15:67:ac:64:0e:47:fe:
23:ef:c9:1e:6f:de:dd:11:0c:59:8d:64:e7:f9:0a:fa:f3:ae:
87:90:0b:46:0a:41:d1:43:74:a6:91:86:52:a1:98:51:ed:cf:
ab:ba:84:8c:f2:c2:7c:87:83:0f:36:51:3b:04:fc:28:48:24:
99:d4:c0:89:46:34:92:dc:fd:6a:cf:0f:29:16:08:87:e2:57:
84:f5:88:99:0a:8a:aa:1b:b7:49:01:7f:d9:f0:1b:bc:97:b5:
f5:61:5e:24:bf:ca:a6:5b:14:b8:ee:9e:d1:32:42:d7:0a:a6:
c1:ad:44:ca:96:b8:fe:18:d7:ac:d6:cc:ed:1c:aa:31:bc:18:
21:3b:6f:ba:a1:d6:e7:a0:d4:15:48:89:ec:1c:b1:03:63:7c:
0e:58:7a:11:53:3f:0b:bb:50:01:36:ac:0c:14:86:ef:b0:31:
6c:86:3f:b9:31:f8:c7:93:f8:22:ed:63:40:c0:40:bc:8b:ab:
22:c2:56:39
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYglDvWiZSfWxgUGAQlHydy2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3MWQ0YTQzNzRkZjIyMmFjMzIzNWI5NjAyMjA2ZDk2YmYx
ZGFjODIwHhcNMjMwNTE2MTQ1NTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMzFiMWMzZDUzYThmZDM3NTBhOGIwZjk4NTdjOTI1OGY0N2ViMDBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwaEipO7DChPyp1rlGzKm5SqhIO2k
gsL7AzPNXEoDo0Gy5FFnNULq/jAnRtuYhiu4OIJSLoEHFQkmvWZtnW9PafhwhEGV
pnCabBbBWRqbr5UhQsCi0XsYLz8FUPilfgQT7Rl7wCeSF/NyyQ9SCVN6o0ANvVk3
aGnPqMl0uumPxJULm8L1iu9rDHIffblDxyZTFBsYWdakOlB9tGWxJjluaKNOCVCY
BU3mQCMPFgVmfb0GEOinR+SaZlctp5tEEe1e76hg6BvH6DR/jCgGVzoxWcG39C/h
U0ZotmKCA3xWN9AOEwkI5R1lvNuJoGyWN09NXBFlGngZVb8c6nJMtIoxWQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFMMbHD1TqP03UKiw+YV8klj0frAPMB8GA1UdIwQY
MBaAFPcdSkN03yIqwyNblgIgbZa/HayCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOXgxS1EzVGZJaXJESTF1V0FpQnRscjhkcklJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83NzM5ZGMtMTEzMi00ODM3LTliODUt
ZTlhYzJiMDAzMTZhLzEvd3hzY1BWT29fVGRRcUxENWhYeVNXUFItc0E4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83NzM5ZGMtMTEzMi00ODM3LTliODUtZTlhYzJiMDAzMTZh
LzEvOXgxS1EzVGZJaXJESTF1V0FpQnRscjhkcklJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgZZAYAw
DQYJKoZIhvcNAQELBQADggEBAF77TKA/OYCJJOjiJL8uzsNXAOFy2aBnhNgj7jy1
PBktizHtoQnOzLM6vKZ6TgDzqo4vVK19Uy1ho3ferT1xZeS0FWesZA5H/iPvyR5v
3t0RDFmNZOf5CvrzroeQC0YKQdFDdKaRhlKhmFHtz6u6hIzywnyHgw82UTsE/ChI
JJnUwIlGNJLc/WrPDykWCIfiV4T1iJkKiqobt0kBf9nwG7yXtfVhXiS/yqZbFLju
ntEyQtcKpsGtRMqWuP4Y16zWzO0cqjG8GCE7b7qh1ueg1BVIiewcsQNjfA5YehFT
Pwu7UAE2rAwUhu+wMWyGP7kx+MeT+CLtY0DAQLyLqyLCVjk=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:29 2023 by rpki-client on console-fra.rpki-client.org