Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/WxHVpBXIy0RJN8XSOH66d8VLPjU.roa
File: WxHVpBXIy0RJN8XSOH66d8VLPjU.roa (raw, json)
Hash identifier: 98Fo3zvlI99mBan5ElDMeKNPePsVYuw5qaNzubJClBk=
Subject key identifier: 5B:11:D5:A4:15:C8:CB:44:49:37:C5:D2:38:7E:BA:77:C5:4B:3E:35
Certificate issuer: /CN=3e28d6f13e359dd0bb4534a24655974c57d2b0fe
Certificate serial: 018BC955FD98B8F294A2489C6BA4998348E3
Authority key identifier: 3E:28:D6:F1:3E:35:9D:D0:BB:45:34:A2:46:55:97:4C:57:D2:B0:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PijW8T41ndC7RTSiRlWXTFfSsP4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/WxHVpBXIy0RJN8XSOH66d8VLPjU.roa
Signing time: Mon 13 Nov 2023 15:38:57 +0000
ROA not before: Mon 13 Nov 2023 15:38:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 2a07:db86::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c9:55:fd:98:b8:f2:94:a2:48:9c:6b:a4:99:83:48:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e28d6f13e359dd0bb4534a24655974c57d2b0fe
Validity
Not Before: Nov 13 15:38:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b11d5a415c8cb444937c5d2387eba77c54b3e35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:09:7d:19:50:69:34:13:0b:2f:5b:50:e7:f1:
46:3d:cb:36:13:11:b6:80:7c:c6:96:e1:ac:c9:c2:
d7:8e:81:28:4c:15:93:be:73:9f:3a:44:62:ff:aa:
34:e8:b1:a6:c6:c7:e3:1e:f4:c3:f0:69:10:53:e9:
41:66:53:0a:0f:27:f8:e5:c3:6e:72:fd:2f:67:fa:
ce:44:33:b5:89:6f:99:8c:0f:47:8c:fe:21:9f:bf:
a7:da:30:fa:52:55:11:81:b4:bd:6a:21:62:aa:50:
55:71:17:e2:22:33:8c:a3:f9:15:8c:24:9d:8e:b1:
90:e5:a5:a4:b0:47:65:35:7b:61:ca:69:51:eb:03:
a4:1b:cb:12:5a:0b:2c:a7:5d:04:91:5c:de:b5:23:
af:dc:da:fe:bd:a9:fb:a6:0e:99:8b:9d:93:ee:87:
d0:ad:f2:5c:22:67:d4:2a:c3:28:7b:85:e1:1e:cf:
46:c2:01:0d:ee:06:67:90:22:1d:dc:ab:a4:ae:4e:
86:74:c2:c5:e1:06:cf:50:0b:26:3d:99:61:20:c5:
2b:ce:dd:7b:34:a6:0a:c0:a2:19:84:a0:e7:1e:10:
c7:d7:ff:03:8c:e0:d6:79:7a:fe:6a:bf:5b:d2:9c:
68:65:87:ed:1a:58:21:26:ed:ce:08:fa:c9:12:7b:
96:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:11:D5:A4:15:C8:CB:44:49:37:C5:D2:38:7E:BA:77:C5:4B:3E:35
X509v3 Authority Key Identifier:
keyid:3E:28:D6:F1:3E:35:9D:D0:BB:45:34:A2:46:55:97:4C:57:D2:B0:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PijW8T41ndC7RTSiRlWXTFfSsP4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/WxHVpBXIy0RJN8XSOH66d8VLPjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/PijW8T41ndC7RTSiRlWXTFfSsP4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:db86::/32
Signature Algorithm: sha256WithRSAEncryption
25:3d:c9:1e:00:9c:2e:01:71:63:e4:1c:bd:b0:40:a4:50:41:
29:a6:6d:05:83:5a:81:04:99:87:2a:63:2a:fe:a8:3e:5f:a5:
e6:6c:08:8b:10:ca:f0:b3:84:63:da:a1:7a:da:fb:4c:30:1e:
21:c6:b4:7d:8d:7f:51:a0:92:01:6f:fd:d6:90:1c:9a:db:1f:
2a:55:82:3b:35:fe:97:9d:66:d8:e4:8c:59:a3:13:ec:f2:1f:
76:48:99:50:f6:de:8a:ca:82:aa:86:24:b4:17:f2:cd:d9:7c:
56:37:93:31:69:ce:dd:2d:66:7c:5b:e8:19:f5:1c:ba:ce:80:
de:4e:ed:0f:00:37:ac:59:5e:a7:7b:44:36:0f:63:26:6b:fc:
37:ee:b3:f4:bf:48:03:e0:74:5d:08:e8:e6:f8:db:34:f4:9b:
af:f2:e7:18:1f:63:bb:5a:88:b6:56:4f:63:3e:df:72:d2:08:
17:9a:b0:e6:97:62:28:cb:f2:83:41:9a:3a:56:6e:3f:98:4e:
a7:09:95:42:43:e9:e0:42:e0:f6:d7:45:0f:16:cf:0e:1c:6b:
6e:af:7b:b5:ba:a7:70:e6:2e:6d:7c:c1:43:4d:81:84:e9:c0:
91:43:70:45:7b:57:5f:a9:0b:09:73:d4:b4:03:16:38:27:b2:
5f:67:8c:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:11 2024 by rpki-client on console-ams.rpki-client.org