Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/b91d05-6a03-40ed-a983-bd809d9dedb9/1/wTbEoKrVVGy5MA1V4JLfs5CSJYc.roa
File: wTbEoKrVVGy5MA1V4JLfs5CSJYc.roa (raw, json)
Hash identifier: Or9MEmLi1PpLPt0Upj3D73vb3I/nKX8BmOlz2KTbZAU=
Subject key identifier: C1:36:C4:A0:AA:D5:54:6C:B9:30:0D:55:E0:92:DF:B3:90:92:25:87
Certificate issuer: /CN=5e399fba9aae9d2d6ffe52ae8c74ae38fc6c1af1
Certificate serial: 01856C1393CF28FCCFFBB5D552242618692C
Authority key identifier: 5E:39:9F:BA:9A:AE:9D:2D:6F:FE:52:AE:8C:74:AE:38:FC:6C:1A:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XjmfupqunS1v_lKujHSuOPxsGvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/b91d05-6a03-40ed-a983-bd809d9dedb9/1/wTbEoKrVVGy5MA1V4JLfs5CSJYc.roa
Signing time: Sun 01 Jan 2023 06:45:00 +0000
ROA not before: Sun 01 Jan 2023 06:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212895
IP address blocks: 2a11:6c7::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:13:93:cf:28:fc:cf:fb:b5:d5:52:24:26:18:69:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e399fba9aae9d2d6ffe52ae8c74ae38fc6c1af1
Validity
Not Before: Jan 1 06:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c136c4a0aad5546cb9300d55e092dfb390922587
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:56:0e:d5:9d:17:06:bf:96:d2:c9:6e:f3:a7:
7b:c8:73:f8:a3:39:2a:cd:de:34:24:41:7b:11:63:
2b:dd:e2:34:d6:85:13:d8:43:72:9c:b9:08:c9:e7:
72:04:5c:25:d3:2c:7e:fd:31:fe:24:a9:a4:41:9e:
fe:23:a9:86:01:53:8b:64:b6:b7:22:44:be:51:0a:
55:00:45:1f:56:3e:3e:7f:a1:73:59:f9:5c:89:b0:
d8:6c:db:a1:9a:a4:9d:35:7f:86:0b:50:5d:b2:55:
32:50:bc:f5:c9:ba:0a:bf:3e:19:5f:a0:d1:68:3c:
42:0e:bc:4f:8b:76:68:c1:8f:03:5c:4d:f3:40:42:
f0:6d:fb:59:f7:e6:1d:13:22:fa:6b:2d:c5:67:67:
7f:57:c9:f2:68:bf:3b:13:6d:a9:92:b3:c5:f9:91:
97:29:a1:2e:8b:e1:b2:de:e3:6e:5f:f8:0c:7e:84:
b3:1c:8b:9b:21:a6:94:1b:31:46:d7:e5:4e:a1:c8:
96:3f:06:ae:e7:d6:11:b1:78:d6:74:95:71:33:63:
bd:9c:93:0b:71:28:b8:4b:a5:2f:1b:84:fd:a6:2f:
57:82:f6:2e:1e:8b:8d:ce:9a:74:69:6d:3e:5c:ae:
1f:64:63:4e:a7:72:d9:32:60:e2:25:6d:83:bc:eb:
1b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:36:C4:A0:AA:D5:54:6C:B9:30:0D:55:E0:92:DF:B3:90:92:25:87
X509v3 Authority Key Identifier:
keyid:5E:39:9F:BA:9A:AE:9D:2D:6F:FE:52:AE:8C:74:AE:38:FC:6C:1A:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XjmfupqunS1v_lKujHSuOPxsGvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/b91d05-6a03-40ed-a983-bd809d9dedb9/1/wTbEoKrVVGy5MA1V4JLfs5CSJYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/b91d05-6a03-40ed-a983-bd809d9dedb9/1/XjmfupqunS1v_lKujHSuOPxsGvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:6c7::/32
Signature Algorithm: sha256WithRSAEncryption
5a:23:ca:ba:d3:9b:3b:7d:83:03:fa:fc:7e:63:56:5e:3a:bf:
81:bf:cd:de:03:3d:37:80:be:2a:4c:96:38:ab:a8:91:3f:f4:
30:c7:74:26:bf:20:b6:22:26:60:73:3d:04:11:6a:a3:b0:7d:
b6:04:bd:98:da:ae:ee:a2:99:73:4c:f7:87:ed:05:86:a7:83:
55:9b:37:a8:19:90:26:51:ef:c1:95:b0:20:ca:9b:82:ec:9b:
93:5a:67:bb:22:d2:9e:a0:91:c0:62:8e:f0:cd:e9:e1:09:f8:
1b:ba:c3:80:e1:0e:2a:3a:74:10:7e:b6:04:af:df:a1:88:c9:
00:a9:6d:d4:af:2c:45:17:37:a6:9a:ab:90:db:90:6a:ac:86:
c2:21:5c:b3:e5:5c:cc:e4:d9:a2:3e:6a:85:a9:84:9e:2e:41:
17:48:1e:fe:0e:3f:5f:81:5b:ab:19:ff:8c:cd:65:c2:1c:80:
c6:c2:9d:86:e1:53:e4:27:7d:a6:4e:97:b2:c4:ff:ac:53:0a:
96:db:23:e1:89:9c:90:29:61:55:04:cb:33:86:7e:37:ce:86:
65:37:ae:5f:03:53:f4:30:77:07:22:6e:c4:48:e5:df:08:5c:
65:e0:d6:fd:8d:bb:70:ea:ed:8f:49:fb:f2:b5:39:97:94:5e:
05:b9:cf:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:23 2024 by rpki-client on console-ams.rpki-client.org