Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/WjYXTIxrYIVcsnZyOkXDo642Az0.roa
File: WjYXTIxrYIVcsnZyOkXDo642Az0.roa (raw, json)
Hash identifier: 01JTWBYsVEFi2gabNtoJnreyyzQZugucIhuyb0lsD58=
Subject key identifier: 5A:36:17:4C:8C:6B:60:85:5C:B2:76:72:3A:45:C3:A3:AE:36:03:3D
Certificate issuer: /CN=1e45cc69b4d1ee151b5027442fbba944c274df97
Certificate serial: 01856DD3EE955B91E2651F4F4DDCA48FFBD9
Authority key identifier: 1E:45:CC:69:B4:D1:EE:15:1B:50:27:44:2F:BB:A9:44:C2:74:DF:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HkXMabTR7hUbUCdEL7upRMJ035c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/WjYXTIxrYIVcsnZyOkXDo642Az0.roa
Signing time: Sun 01 Jan 2023 14:54:43 +0000
ROA not before: Sun 01 Jan 2023 14:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213376
IP address blocks: 2001:678:d08::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d3:ee:95:5b:91:e2:65:1f:4f:4d:dc:a4:8f:fb:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e45cc69b4d1ee151b5027442fbba944c274df97
Validity
Not Before: Jan 1 14:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a36174c8c6b60855cb276723a45c3a3ae36033d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:3e:6d:cf:2c:06:48:9f:ef:7a:58:3b:70:b8:
73:58:46:6f:06:e5:f6:62:48:8b:41:6a:7a:33:cf:
12:c7:5a:4c:0c:5b:0d:bd:32:dc:3d:e4:17:2f:98:
37:04:4e:62:fa:70:94:1d:68:34:48:76:2e:2c:48:
32:f4:b5:58:0a:ea:84:8a:7e:b3:1c:25:64:e0:0c:
45:3a:f7:ad:58:ec:01:20:29:7c:09:cf:5d:cb:47:
ce:ff:30:cb:11:0d:28:fb:02:f7:77:53:36:25:6b:
52:5e:7b:0c:1e:cd:d6:bb:39:a7:3f:d4:b8:21:35:
30:37:5f:b1:9c:90:f6:26:da:00:f6:0b:ed:f2:df:
45:5b:4c:50:a4:b4:ec:15:0c:26:53:71:02:25:19:
6d:13:d9:5f:f7:46:52:bc:a0:cc:51:e9:17:82:8c:
c7:a7:e9:cd:1b:9d:ed:6e:82:5b:98:22:13:4b:b1:
0b:c3:57:42:75:d8:4d:39:da:44:eb:8f:c8:10:22:
4a:3d:b8:e3:f8:74:28:8a:8c:8a:84:02:d4:a0:3c:
38:40:0a:04:fb:fe:6f:9e:68:42:a7:63:84:3f:de:
ca:97:34:83:54:a1:95:d4:5d:8b:cf:c7:9d:81:4c:
f9:38:47:e8:dc:fe:ef:69:4c:3f:a7:8e:7e:7b:60:
2d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:36:17:4C:8C:6B:60:85:5C:B2:76:72:3A:45:C3:A3:AE:36:03:3D
X509v3 Authority Key Identifier:
keyid:1E:45:CC:69:B4:D1:EE:15:1B:50:27:44:2F:BB:A9:44:C2:74:DF:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HkXMabTR7hUbUCdEL7upRMJ035c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/WjYXTIxrYIVcsnZyOkXDo642Az0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:d08::/48
Signature Algorithm: sha256WithRSAEncryption
9a:19:9a:65:39:b3:87:9d:97:cf:ee:f6:56:a7:9f:9d:ff:51:
40:33:20:c3:31:ef:49:01:4d:5e:d1:33:e1:be:ae:fb:44:d6:
fb:dc:d0:0f:ca:73:93:20:c1:86:6f:3c:4a:3c:0d:24:3e:47:
43:a8:5d:f1:bb:c7:47:84:0f:d7:4c:9c:c5:6d:45:4d:60:80:
92:49:22:6d:d3:e4:f6:5e:a5:78:d9:1d:f8:f3:15:6c:d2:5a:
2e:5a:71:d5:02:97:7f:95:69:0f:e3:8a:38:61:68:14:6b:75:
d5:f7:48:60:23:55:12:8c:1a:c6:7d:91:b2:ef:1c:6e:c6:69:
82:0c:55:20:d0:82:46:80:a2:fa:b7:a9:2e:d4:82:21:49:fe:
97:e4:c6:62:e5:2f:fe:02:38:ef:7d:9f:ff:b8:a9:c2:21:0d:
37:e0:84:e1:e5:30:b0:ba:02:e6:94:d1:44:aa:e6:6c:65:2b:
d9:fd:c1:88:8d:40:18:21:2a:31:a7:34:64:68:a9:7b:21:c4:
f3:dd:43:ab:ff:fe:c2:76:36:69:7b:6e:19:42:83:e6:2e:4f:
38:5b:df:ae:d1:54:5c:f7:b2:8a:23:95:da:7a:0f:53:80:3c:
31:43:d5:da:bc:40:24:d1:94:6e:5f:14:91:ff:2c:2d:23:eb:
ea:a3:f2:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:11:06 2024 by rpki-client on console-ams.rpki-client.org