Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/W5htrUGAoH7DFrh6EsgHFHDGscc.roa
File: W5htrUGAoH7DFrh6EsgHFHDGscc.roa (raw, json)
Hash identifier: i0ft2pfuJmKoP5L++OQaJpcdnnAA95MLkynpSgC86Dk=
Subject key identifier: 5B:98:6D:AD:41:80:A0:7E:C3:16:B8:7A:12:C8:07:14:70:C6:B1:C7
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E62078272BFD61E217589517F0E31
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/W5htrUGAoH7DFrh6EsgHFHDGscc.roa
Signing time: Mon 02 Jan 2023 06:14:54 +0000
ROA not before: Mon 02 Jan 2023 06:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207536
IP address blocks: 2a0c:b641:670::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:62:07:82:72:bf:d6:1e:21:75:89:51:7f:0e:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b986dad4180a07ec316b87a12c8071470c6b1c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:58:78:be:37:25:27:ae:67:95:0e:4e:9a:a4:
f1:25:49:59:bd:ab:52:d0:df:3c:c5:cd:03:d9:71:
c4:63:78:d4:eb:b3:fa:15:d4:0b:ad:e4:7f:a7:8a:
18:01:c9:a5:f7:ee:34:74:39:52:0c:64:fa:5e:d2:
10:42:90:2d:4e:3e:57:36:8e:66:db:51:b4:e9:0f:
1a:65:eb:ff:09:40:b2:0b:d7:6e:cf:cc:2b:43:a4:
eb:02:6e:5b:3b:1c:d0:f9:77:37:79:6f:2d:45:5c:
99:12:7f:0e:41:a3:e4:92:99:45:8a:1c:96:4e:53:
9f:ea:a2:88:e3:25:d8:74:06:ca:b9:6c:c1:6a:72:
e8:bf:41:f8:cd:3b:e9:37:19:68:1a:5c:8b:09:23:
3c:53:e6:23:a5:bb:01:3d:ab:bf:36:3a:4a:1c:cf:
a6:b7:4f:f6:ea:85:7b:10:b3:25:95:af:f9:3b:ed:
67:bc:c2:11:da:e8:95:42:28:91:00:74:3b:db:ae:
3f:5e:45:33:81:b2:7d:15:55:2f:34:c9:78:40:77:
fb:35:bd:f5:0b:78:94:46:6d:55:9b:31:c5:5a:1f:
ed:b7:46:14:7b:40:54:81:7b:29:f7:72:50:00:82:
aa:6f:75:b1:60:55:5d:84:a1:18:fd:03:9e:4e:c1:
b2:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:98:6D:AD:41:80:A0:7E:C3:16:B8:7A:12:C8:07:14:70:C6:B1:C7
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/W5htrUGAoH7DFrh6EsgHFHDGscc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:670::/44
Signature Algorithm: sha256WithRSAEncryption
3d:89:ea:3c:75:14:a1:b3:46:cc:df:1b:bc:e3:bc:e2:a9:65:
3e:d2:87:25:ac:72:e6:ea:6b:97:41:7e:eb:ce:70:e1:7a:47:
23:fd:c6:37:b9:b8:7d:0e:e0:3a:39:c7:61:de:69:19:dc:d3:
9e:6b:c8:56:a6:26:07:13:f2:da:e3:6d:9e:34:e8:ad:0d:6d:
72:36:92:e3:78:ca:a9:28:92:57:3e:be:ae:f0:a5:f7:db:37:
fa:4d:e9:a6:85:75:35:20:23:64:a2:4e:5e:63:03:f6:85:f0:
95:ab:11:01:c8:61:40:a0:fa:2f:79:78:13:1f:7a:b3:44:00:
e8:60:47:4c:8f:d3:74:3c:67:28:b4:da:1e:a7:4d:70:af:ac:
d7:be:bc:1f:cf:ba:45:67:64:37:68:77:c3:e5:ac:e9:26:56:
26:75:3d:27:fd:36:33:a6:05:fa:f0:aa:5a:9c:e4:2c:eb:f9:
4b:e1:70:60:f4:83:06:6d:9f:15:93:8a:ef:8e:4d:65:12:e9:
a4:b0:70:9f:0e:17:90:6e:f9:fc:0e:48:a3:43:d2:9a:e4:a2:
88:1e:ce:b9:66:bc:cb:f1:85:b7:14:e5:bc:a2:cc:4e:ec:e7:
a3:9f:40:a3:23:d8:0d:ea:0c:3e:39:ed:1b:d5:64:1f:a2:20:
aa:5b:4b:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:06 2024 by rpki-client on console-fra.rpki-client.org