Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/pWo_VNKMCsbCHmU8Ws7IujfOIbc.roa
File: pWo_VNKMCsbCHmU8Ws7IujfOIbc.roa (raw, json)
Hash identifier: KhuuCaB3HRTdbs+moH7NWZ+4fUDw/bK1MxTq58S/f8s=
Subject key identifier: A5:6A:3F:54:D2:8C:0A:C6:C2:1E:65:3C:5A:CE:C8:BA:37:CE:21:B7
Certificate issuer: /CN=3e28d6f13e359dd0bb4534a24655974c57d2b0fe
Certificate serial: 018A565374BEAD5A95905FCA5450469CD105
Authority key identifier: 3E:28:D6:F1:3E:35:9D:D0:BB:45:34:A2:46:55:97:4C:57:D2:B0:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PijW8T41ndC7RTSiRlWXTFfSsP4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/pWo_VNKMCsbCHmU8Ws7IujfOIbc.roa
Signing time: Sat 02 Sep 2023 14:37:04 +0000
ROA not before: Sat 02 Sep 2023 14:37:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198571
IP address blocks: 2a07:db83::/32 maxlen: 32
2a07:db82::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 03 Sep 2023 09:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:56:53:74:be:ad:5a:95:90:5f:ca:54:50:46:9c:d1:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e28d6f13e359dd0bb4534a24655974c57d2b0fe
Validity
Not Before: Sep 2 14:37:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a56a3f54d28c0ac6c21e653c5acec8ba37ce21b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e8:18:4d:f6:99:d0:66:c1:e0:a6:5b:aa:dc:
d0:83:83:12:3b:54:34:e5:87:77:8f:8d:59:05:bc:
48:80:aa:73:e4:eb:ff:3d:53:c4:d9:47:18:8d:7c:
75:30:fa:5a:25:36:00:d3:ba:37:bb:59:42:18:54:
bc:3b:a3:89:ec:90:f3:a0:9e:a8:45:22:bc:8b:9b:
03:41:84:98:01:f3:2f:18:10:6c:d3:43:44:43:8a:
1d:33:bc:3c:62:72:41:69:62:fa:82:9e:c4:27:c0:
57:cd:60:e9:6a:bc:ee:8d:84:3d:bf:34:e3:c6:06:
f6:96:3c:01:06:ef:77:9c:f3:b5:80:38:f7:39:71:
ef:59:0d:c8:b4:f4:5d:af:a4:40:e1:0f:de:e1:40:
e4:a9:a7:f1:6c:14:f8:47:12:70:5a:19:0a:2a:88:
42:5f:89:29:d1:fc:ea:92:d4:60:35:39:78:05:3f:
e7:53:2e:a6:c0:39:5e:99:1d:6d:2f:b6:81:3c:96:
90:30:2c:f0:2a:2d:e2:35:65:4e:d7:68:44:89:5f:
f3:eb:12:70:66:11:8d:1d:49:06:86:ae:96:94:5a:
c4:63:4e:05:1f:ad:e7:7b:2b:69:bd:c1:17:ce:53:
50:36:ea:ed:e9:95:ac:f0:6b:98:3a:1e:1d:37:45:
1c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:6A:3F:54:D2:8C:0A:C6:C2:1E:65:3C:5A:CE:C8:BA:37:CE:21:B7
X509v3 Authority Key Identifier:
keyid:3E:28:D6:F1:3E:35:9D:D0:BB:45:34:A2:46:55:97:4C:57:D2:B0:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PijW8T41ndC7RTSiRlWXTFfSsP4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/pWo_VNKMCsbCHmU8Ws7IujfOIbc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/645038-255b-44df-ae8a-5488169119e8/1/PijW8T41ndC7RTSiRlWXTFfSsP4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:db82::/31
Signature Algorithm: sha256WithRSAEncryption
5a:36:3a:0f:36:11:1d:6e:a6:eb:cc:95:8b:8b:58:55:d5:b9:
e2:6d:bc:5a:e7:92:c3:50:df:64:ff:dc:0b:3c:ea:aa:e5:75:
b7:be:7a:ba:25:e0:5a:86:f2:0c:a8:cd:9d:c1:f4:86:cb:af:
da:b6:cc:61:3e:e2:db:8f:bf:45:21:a5:92:95:eb:80:16:d1:
cd:58:9d:46:cd:22:5c:22:5a:85:15:b5:0b:07:47:06:5a:00:
e1:93:a4:4e:26:ac:00:fa:58:f9:fe:b9:7c:fd:87:48:1a:9e:
39:c2:1e:c6:44:b7:bb:df:03:25:88:f6:60:c5:d3:94:64:8c:
45:81:10:f2:f8:01:53:1c:81:80:71:0e:e7:0e:01:11:7c:90:
84:6d:d6:d5:80:70:06:5c:32:4f:06:ca:42:49:d4:1d:b0:76:
ac:ae:3b:97:d2:12:98:a7:43:c0:15:b9:e8:11:03:45:ee:85:
1f:83:2b:28:fa:fa:67:ef:bd:2f:2d:36:d7:8c:cf:ee:7c:62:
92:fd:e0:eb:3b:a7:a3:ef:71:45:39:8c:d8:80:5b:42:56:fb:
87:87:5b:db:ca:90:1c:71:eb:19:64:e6:88:85:4a:90:92:07:
a0:38:27:0c:e8:eb:93:ed:8c:ab:43:6a:bd:eb:aa:f7:c6:4e:
b4:a9:57:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:14 2024 by rpki-client on console-fra.rpki-client.org