Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/WkPS18Ev9oxahM1hFIrVEL9EldQ.roa
File: WkPS18Ev9oxahM1hFIrVEL9EldQ.roa (raw, json)
Hash identifier: lFd8JCGR8b4/IJV0PI1XGFt0ZYaysjFNL/py3jRVng8=
Subject key identifier: 5A:43:D2:D7:C1:2F:F6:8C:5A:84:CD:61:14:8A:D5:10:BF:44:95:D4
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 018C3E405E49AA06A02BC8D56D0C2C9E7BDD
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/WkPS18Ev9oxahM1hFIrVEL9EldQ.roa
Signing time: Wed 06 Dec 2023 08:30:54 +0000
ROA not before: Wed 06 Dec 2023 08:30:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60446
IP address blocks: 2a0c:b641:6d1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3e:40:5e:49:aa:06:a0:2b:c8:d5:6d:0c:2c:9e:7b:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Dec 6 08:30:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a43d2d7c12ff68c5a84cd61148ad510bf4495d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:19:7b:ea:80:27:9c:cc:48:3a:68:91:94:3f:
4b:54:54:2e:5b:5a:90:ac:6f:d7:ae:aa:cb:b1:bd:
d4:88:03:45:c4:13:99:26:28:a5:1f:21:3a:c6:cc:
4e:4e:83:ea:31:49:2f:f7:ca:2a:51:52:bb:f1:67:
8e:d7:e7:48:8f:a2:59:3d:a2:1f:11:59:0c:6d:98:
c6:36:30:18:79:c5:7a:08:dc:77:49:bd:ad:5a:93:
d7:35:1a:43:64:13:2e:ac:31:24:ef:92:5d:a5:11:
95:fa:7a:80:a2:c1:a8:2d:fe:90:2b:22:1b:fb:7a:
4a:b5:f4:1e:a9:bf:c6:d8:9e:8e:21:15:01:de:3e:
b7:20:02:ff:43:2b:01:32:4c:a2:e3:71:8a:22:5a:
2c:cf:bf:bc:c3:89:8b:90:a4:84:d3:57:f0:e0:8f:
aa:65:1e:bd:6b:27:a6:ec:20:2f:4f:68:91:5b:47:
89:15:dc:81:3b:f4:90:f3:52:07:80:fb:a3:f7:7b:
77:51:01:57:a6:f7:8c:36:ac:9a:1e:b2:59:b9:f7:
e2:7b:85:af:48:f4:42:62:c2:08:54:ff:e2:71:90:
b1:cf:cc:34:da:af:db:d1:72:30:8b:75:ce:13:41:
28:b8:c9:7c:1c:ee:d4:e6:dd:97:a1:ec:ae:50:3f:
39:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:43:D2:D7:C1:2F:F6:8C:5A:84:CD:61:14:8A:D5:10:BF:44:95:D4
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/WkPS18Ev9oxahM1hFIrVEL9EldQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:6d1::/48
Signature Algorithm: sha256WithRSAEncryption
36:2d:99:bb:be:86:67:b2:7c:87:54:1f:4a:00:f4:cf:97:97:
1b:65:f9:68:9e:09:e7:bd:c2:fb:ab:24:d1:95:73:a0:48:00:
9d:70:f7:8e:56:c8:84:85:af:be:b3:21:04:40:17:c2:e0:07:
55:8d:79:82:ad:42:a5:0a:dc:8a:d0:70:6e:d4:c1:6f:71:ad:
da:44:66:3b:b3:07:61:97:ef:c7:8a:4e:a1:02:3b:78:98:25:
b9:48:a9:81:60:a3:77:72:de:d1:6d:65:1e:8a:a9:4a:18:90:
ca:af:96:a6:89:da:4a:8c:d0:da:1d:6b:b8:e7:34:5b:a7:31:
78:a7:2d:e4:10:cc:93:c6:f5:04:d4:95:ae:f7:6c:90:f7:89:
89:fb:59:a1:85:af:1a:23:99:3c:3d:e0:0a:05:dd:ba:28:0e:
2a:5f:ca:61:85:94:4e:8c:ff:c2:c0:80:19:97:cc:c0:d2:80:
4e:32:eb:62:8a:7d:c0:88:44:60:c4:f6:25:aa:32:c8:5c:7e:
6b:dc:d9:08:35:b7:63:59:c3:39:89:83:c4:cf:a1:17:2e:7f:
5f:13:b2:6a:2b:e9:ae:b5:a7:f1:70:53:d7:21:d2:03:34:36:
91:36:6d:4f:12:86:d4:56:28:23:d4:6c:9a:05:09:f5:2d:49:
21:b6:d0:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:06 2024 by rpki-client on console-fra.rpki-client.org