Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/3c0269-c194-4e6d-abce-72735e118d51/1/wLJQyZ3-t38YI67veonbZLvQgSM.roa
File: wLJQyZ3-t38YI67veonbZLvQgSM.roa (raw, json)
Hash identifier: 6eqzZRiORvmtuYqdgzF8KKkgl9ORhTb9MDXr2x2ebUc=
Subject key identifier: C0:B2:50:C9:9D:FE:B7:7F:18:23:AE:EF:7A:89:DB:64:BB:D0:81:23
Certificate issuer: /CN=88b213bf1627548efdfb1b2e2645baaf1d983aa0
Certificate serial: 0186EA3A36B5D382AD7EADE942541E74F943
Authority key identifier: 88:B2:13:BF:16:27:54:8E:FD:FB:1B:2E:26:45:BA:AF:1D:98:3A:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iLITvxYnVI79-xsuJkW6rx2YOqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/3c0269-c194-4e6d-abce-72735e118d51/1/wLJQyZ3-t38YI67veonbZLvQgSM.roa
Signing time: Thu 16 Mar 2023 11:42:08 +0000
ROA not before: Thu 16 Mar 2023 11:42:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60939
IP address blocks: 2a12:4b40::/29 maxlen: 48
Validation: Failed, certificate revoked on Fri 18 Aug 2023 09:04:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ea:3a:36:b5:d3:82:ad:7e:ad:e9:42:54:1e:74:f9:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88b213bf1627548efdfb1b2e2645baaf1d983aa0
Validity
Not Before: Mar 16 11:42:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c0b250c99dfeb77f1823aeef7a89db64bbd08123
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:77:f3:d9:54:b0:cb:50:01:c0:0d:fc:ed:4c:
94:b4:26:7c:96:8b:c6:29:e6:fc:b3:85:16:d1:cd:
ff:66:e4:c7:b3:5f:59:7c:39:fc:b9:7f:60:4e:bd:
4e:01:cb:39:f2:ec:f8:50:d3:a8:3d:49:4d:7d:e7:
c7:f9:c3:93:70:bf:c3:b5:a1:ae:5c:d0:0a:55:6d:
81:d5:c6:9d:eb:44:68:a8:4e:b3:77:14:c7:90:13:
6f:c8:36:36:e8:ff:14:d0:04:64:2b:9f:cd:35:41:
b9:6c:2a:98:01:22:4f:0e:d3:b0:5a:d7:86:cf:0c:
3f:11:d9:df:78:c5:62:c4:e2:45:2c:7c:b1:53:bf:
32:93:29:48:21:ad:3c:62:64:94:7d:bb:56:27:51:
d0:e5:b0:9d:21:19:56:db:c1:da:33:26:5f:51:f9:
15:44:06:55:0c:6f:93:f3:10:80:0d:4a:84:9d:ee:
9a:d2:44:92:49:85:1d:5b:20:60:63:f0:24:e6:66:
8b:1c:a4:59:56:10:18:b0:78:19:b6:5a:5b:5c:02:
16:94:5a:55:5b:e9:37:6b:a1:94:53:7c:d4:1a:5f:
b3:0b:e9:ab:3b:20:49:69:f0:2c:68:7a:e6:d4:03:
ec:d1:92:b5:54:4c:ce:62:10:50:6a:68:6e:7d:4b:
d9:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:B2:50:C9:9D:FE:B7:7F:18:23:AE:EF:7A:89:DB:64:BB:D0:81:23
X509v3 Authority Key Identifier:
keyid:88:B2:13:BF:16:27:54:8E:FD:FB:1B:2E:26:45:BA:AF:1D:98:3A:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iLITvxYnVI79-xsuJkW6rx2YOqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/3c0269-c194-4e6d-abce-72735e118d51/1/wLJQyZ3-t38YI67veonbZLvQgSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/3c0269-c194-4e6d-abce-72735e118d51/1/iLITvxYnVI79-xsuJkW6rx2YOqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:4b40::/29
Signature Algorithm: sha256WithRSAEncryption
24:53:9d:03:dc:86:0e:cd:70:31:dc:2f:9e:28:27:e8:21:f6:
c2:f7:d8:48:d7:4f:94:93:59:1c:b8:38:5d:b4:36:35:16:8f:
b2:71:dd:12:5c:22:d9:77:18:a1:bb:83:24:1a:03:2e:48:cf:
5f:4b:7a:20:8d:9f:a1:44:dc:81:f2:45:f3:f3:d8:8b:db:84:
9a:a9:7d:62:c0:c8:81:9c:6f:35:b9:35:b9:c9:8d:ea:b7:b6:
e1:bb:73:21:27:29:22:17:ce:93:9e:03:26:b3:42:47:90:ae:
a8:c5:b2:5f:cc:35:3d:db:a0:77:8b:73:8c:b6:5b:5c:d1:8c:
a9:7e:ef:88:22:61:de:b3:ec:e8:04:d5:d0:05:bd:f6:2e:ea:
70:a6:28:36:b6:3f:cd:8f:cd:f4:5c:5f:0d:a7:ca:ff:98:9a:
6a:95:c5:3b:77:b9:ce:e2:4f:23:62:39:4a:b7:64:3c:ec:5d:
25:ff:e8:bc:76:99:a3:cb:74:3a:09:9a:a3:25:c9:b3:bc:77:
fa:6c:43:28:c0:ab:54:08:f6:3f:58:bf:e3:0f:d4:cc:b7:73:
1d:e2:a1:c6:0c:e3:b9:41:ee:e5:b0:6d:2c:d0:d3:3b:31:31:
31:49:b0:c1:42:5f:a2:56:91:64:42:79:29:41:57:3c:d0:e6:
48:85:90:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:59 2024 by rpki-client on console-ams.rpki-client.org