Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/WOtBfgiPE1nMlUQ9IyV80Qd3qZ4.roa
File: WOtBfgiPE1nMlUQ9IyV80Qd3qZ4.roa (raw, json)
Hash identifier: nInvy/C15m9AsAkhVjopQj1EvQVSQVL9d9xpPeqSGI8=
Subject key identifier: 58:EB:41:7E:08:8F:13:59:CC:95:44:3D:23:25:7C:D1:07:77:A9:9E
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 018B065A7379EBB316DF0C7359C02D759806
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/WOtBfgiPE1nMlUQ9IyV80Qd3qZ4.roa
Signing time: Fri 06 Oct 2023 18:57:52 +0000
ROA not before: Fri 06 Oct 2023 18:57:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198558
IP address blocks: 2a0e:8f02:f05c::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:06:5a:73:79:eb:b3:16:df:0c:73:59:c0:2d:75:98:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Oct 6 18:57:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58eb417e088f1359cc95443d23257cd10777a99e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3c:44:b2:15:e2:35:2f:f1:8d:7e:8a:dd:91:
f5:11:14:95:f4:f6:98:c5:3a:7f:44:da:65:3c:b2:
de:41:64:54:00:75:38:6b:78:92:4c:af:8b:97:03:
38:7a:58:26:c8:f5:86:8f:5a:eb:a8:43:7d:ad:ef:
ee:e4:bb:bd:37:af:ef:74:c5:ba:db:50:eb:ab:ee:
74:63:77:99:43:a1:4c:1c:41:5b:45:da:a6:a5:3f:
c9:20:53:dd:3f:80:32:d8:39:47:f6:a1:22:9c:3f:
e3:cd:9a:98:e0:3d:ba:6e:ca:64:dd:81:68:79:b2:
50:1c:c7:e6:a1:f7:6d:c1:21:88:3c:98:14:b2:16:
9b:d9:66:da:fc:dc:c1:f9:50:d6:15:b6:5b:b4:f4:
c2:a6:1d:ea:e6:eb:4c:81:98:f0:e9:76:1a:30:5a:
26:f8:5f:c8:b2:4b:88:21:87:0a:3c:c3:cd:0b:c2:
7f:36:d8:f7:98:41:24:e9:b7:02:da:e3:0d:d4:f4:
b0:1b:c7:9a:76:f5:88:c2:f7:e7:43:92:99:22:5c:
7e:29:df:b4:37:53:db:44:08:fb:d9:cb:7b:5e:94:
19:7b:19:6e:51:05:9a:c3:72:43:6d:d8:1a:f9:15:
a5:17:12:d7:fd:80:d1:1c:61:7c:30:0a:db:d1:f8:
38:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:EB:41:7E:08:8F:13:59:CC:95:44:3D:23:25:7C:D1:07:77:A9:9E
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/WOtBfgiPE1nMlUQ9IyV80Qd3qZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f05c::/48
Signature Algorithm: sha256WithRSAEncryption
16:74:c0:37:d5:d0:39:0c:26:a2:44:4c:88:34:57:2d:5e:7e:
fe:72:c1:1a:03:7c:ec:7a:61:da:1a:54:7b:96:d3:18:8c:7c:
27:af:6a:d0:0e:65:e4:f3:8c:fd:bd:43:fe:a1:4d:5e:35:a4:
62:5f:85:ba:4b:43:63:7a:50:42:3b:49:94:d9:b8:dd:37:6b:
6f:06:3a:34:c6:26:09:fe:62:94:d9:af:a2:42:9e:8e:e7:eb:
83:ac:29:13:5c:5c:11:97:0b:99:06:ba:a8:e4:29:9d:ac:6a:
97:65:49:ca:31:00:c2:d5:ab:4d:08:11:d5:0b:64:9b:0f:de:
5f:f0:01:68:53:39:3b:01:ab:61:00:21:8d:63:90:11:31:49:
f8:d6:03:5c:03:15:98:84:2c:c9:41:d5:a1:5c:3e:42:63:84:
56:0a:b9:ad:f0:4b:0a:29:ec:a9:34:a2:ea:5d:3c:1f:c4:6e:
6b:ab:5c:d4:f8:2f:85:4e:f3:93:e5:cf:0e:f2:dc:41:8b:b7:
67:49:72:d3:f1:80:f4:ba:56:70:1d:02:c1:b6:70:1c:1b:ec:
96:59:b2:2f:db:77:12:00:8b:1e:48:5f:a4:72:ce:eb:6f:4f:
8c:27:cb:66:0a:02:a5:58:2a:32:77:78:9a:35:98:a6:de:df:
90:2f:a8:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:33:52 2024 by rpki-client on console-fra.rpki-client.org