Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/wivCDutuyC_GS6HcEjpTmtmwiqw.roa
File: wivCDutuyC_GS6HcEjpTmtmwiqw.roa (raw, json)
Hash identifier: X0MfItKjBmA48lZPK/QAaRaTk8/GsCIK+IDsowW9Pms=
Subject key identifier: C2:2B:C2:0E:EB:6E:C8:2F:C6:4B:A1:DC:12:3A:53:9A:D9:B0:8A:AC
Certificate issuer: /CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Certificate serial: 018DEF8AD082CDA5DF8792F6D4F1503BCAC2
Authority key identifier: 26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/wivCDutuyC_GS6HcEjpTmtmwiqw.roa
Signing time: Wed 28 Feb 2024 11:47:48 +0000
ROA not before: Wed 28 Feb 2024 11:47:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213220
IP address blocks: 2a11:3c43::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 23 Mar 2024 16:10:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ef:8a:d0:82:cd:a5:df:87:92:f6:d4:f1:50:3b:ca:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Validity
Not Before: Feb 28 11:47:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c22bc20eeb6ec82fc64ba1dc123a539ad9b08aac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d3:1a:6a:bc:9e:81:49:6d:59:b3:1e:00:61:
5a:9e:c5:19:12:4e:c4:91:f1:f2:8f:e3:7b:d3:f0:
e7:34:78:e4:5f:bf:14:ca:74:96:fa:69:e1:1d:83:
e1:e7:83:9e:df:40:05:b9:8e:2f:a6:4e:55:73:78:
f1:25:19:cc:c4:dd:7d:e8:f0:9b:d7:79:04:fa:15:
52:35:39:7a:95:a9:d8:11:95:4a:4d:7b:01:cf:48:
82:6a:23:9b:e6:c1:6f:83:fd:85:71:f2:c4:0c:00:
66:58:80:20:d0:bd:28:4b:c4:d3:45:1f:46:6a:a2:
eb:47:b0:6f:08:9f:f2:44:ea:79:e1:40:15:d2:fe:
8f:d9:8c:3b:29:d2:6d:84:4e:2d:29:e4:77:be:e7:
2a:f7:05:32:98:cc:b9:46:20:ed:e0:d7:d4:f8:ec:
bc:13:85:70:90:e6:da:bc:c7:8f:3d:c7:96:38:fc:
e2:a0:e9:92:76:b3:d3:28:12:a8:fc:5b:a3:81:66:
c4:09:05:ec:c1:45:35:c0:48:b6:14:3d:ae:94:82:
0a:de:94:98:ad:79:e2:8c:a8:a4:2e:fa:2e:e1:5f:
a6:3b:d7:2e:7e:d6:94:57:49:86:ac:a7:67:35:47:
cd:ac:30:d7:30:11:0b:bc:62:9c:82:a6:44:5d:31:
7c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:2B:C2:0E:EB:6E:C8:2F:C6:4B:A1:DC:12:3A:53:9A:D9:B0:8A:AC
X509v3 Authority Key Identifier:
keyid:26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/wivCDutuyC_GS6HcEjpTmtmwiqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/JgsrxFR3yB13TaoMKKtEt3S6CSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:3c43::/32
Signature Algorithm: sha256WithRSAEncryption
2a:aa:cd:3a:7a:ab:83:f7:42:eb:05:28:07:1c:14:18:6f:d6:
0e:60:4d:27:3e:a1:6f:99:2c:8c:77:00:c4:53:a4:ca:b7:a1:
09:2e:0d:fc:0b:4a:8a:91:f0:40:ba:98:05:89:42:d9:e3:3d:
7e:6c:49:6a:b4:d1:9d:ce:e2:dd:74:6a:7a:3a:ee:22:d5:47:
30:c8:65:e0:9c:ab:30:33:2d:59:4d:81:09:4a:51:10:59:07:
be:4d:21:16:b3:e4:b3:44:d5:75:1a:90:79:33:ca:8f:b8:13:
cb:01:b4:65:23:1f:32:ed:6a:52:e6:9e:b9:14:90:cf:a3:78:
7c:ff:35:c6:32:10:7b:c0:81:fc:d6:3e:89:1b:10:00:f3:60:
d2:75:b4:13:b0:12:73:ec:b7:73:30:4b:77:a6:fb:b9:99:c7:
b8:ed:7f:16:d5:7b:58:68:08:d4:00:45:3e:18:ea:7e:ff:3a:
f0:dd:c9:2f:4d:18:d8:ef:03:17:72:f9:e3:28:2f:15:fd:36:
39:51:87:db:0c:ec:d6:a0:9c:f4:76:ba:d3:77:ee:d3:9f:65:
ff:ed:2e:1c:36:1c:06:90:2c:11:80:77:94:fc:09:1b:07:af:
bb:a0:00:f5:29:3d:6d:fe:52:4a:51:84:43:2d:b2:ec:7e:f3:
61:b7:a0:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:02 2024 by rpki-client on console-fra.rpki-client.org