Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/wycw5wvgQpsNVYP0V1GTPiwmpSE.roa
File: wycw5wvgQpsNVYP0V1GTPiwmpSE.roa (raw, json)
Hash identifier: dIQ99wCMCgOdUN3Z1aOoRS3vlDO7Nc7ZOmwRffENisw=
Subject key identifier: C3:27:30:E7:0B:E0:42:9B:0D:55:83:F4:57:51:93:3E:2C:26:A5:21
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185DE40B38E55C317B5FB663B620F454FF1
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/wycw5wvgQpsNVYP0V1GTPiwmpSE.roa
Signing time: Mon 23 Jan 2023 10:51:00 +0000
ROA not before: Mon 23 Jan 2023 10:51:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211972
IP address blocks: 2a0e:97c0:130::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:de:40:b3:8e:55:c3:17:b5:fb:66:3b:62:0f:45:4f:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 23 10:51:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c32730e70be0429b0d5583f45751933e2c26a521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:26:55:0d:2f:2a:05:82:df:49:fe:78:a6:21:
da:a2:8b:8f:5a:22:37:77:14:cb:c0:2f:27:b7:75:
36:d8:c7:22:13:dc:68:d2:7d:6d:8c:dc:2b:6f:12:
79:c1:a3:28:d9:7b:e1:cf:eb:a8:e5:1b:e6:12:53:
05:57:ac:cd:53:cb:b6:8b:8e:ba:c6:26:de:db:af:
95:50:71:64:1a:63:37:d8:74:be:95:aa:c4:55:88:
65:e3:43:da:5f:d6:c9:1c:39:d2:5a:c9:64:87:86:
d9:42:94:8a:6a:46:24:3c:c9:b6:0d:cd:a7:52:77:
6c:06:03:85:d6:82:0d:18:f1:72:1f:09:c6:62:e7:
3c:3d:f7:ec:92:67:21:96:2f:f4:46:e3:c3:68:09:
7d:94:ad:26:66:3c:bb:a0:04:03:9e:b6:71:6d:b5:
3f:ef:78:73:92:b7:57:8f:a2:b9:eb:c8:98:3b:25:
6b:ea:20:d0:75:52:6e:75:5d:92:e6:c9:8d:1b:6f:
ce:58:b5:7d:c0:7b:79:bc:7d:f0:d6:68:ef:5e:1b:
1d:75:66:e0:f9:0f:e7:bf:e1:7e:31:fc:67:10:97:
75:d6:21:57:c1:b7:42:e7:28:fa:49:b6:52:1e:6c:
e2:0e:01:44:3a:3f:df:f4:84:a1:8b:9a:3a:08:ff:
f5:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:27:30:E7:0B:E0:42:9B:0D:55:83:F4:57:51:93:3E:2C:26:A5:21
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/wycw5wvgQpsNVYP0V1GTPiwmpSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:130::/44
Signature Algorithm: sha256WithRSAEncryption
98:7c:ae:75:fb:50:8c:89:51:23:e6:7f:0d:3d:b9:3b:07:82:
f4:df:93:1c:07:3e:3b:ff:a3:96:84:b1:a7:b7:9e:1c:a9:b1:
15:d8:e8:09:be:6c:e4:3f:58:bd:28:fc:9b:09:e1:7c:ef:dc:
37:44:33:8f:45:f8:2f:e3:19:23:6d:ec:44:3b:38:cf:01:88:
df:3b:58:ff:e3:21:1b:47:df:e7:96:e9:d7:9d:b6:7a:25:f6:
70:e8:07:52:04:d7:e3:17:1b:1d:22:91:29:cb:8d:2e:2c:e8:
63:bd:98:cd:74:46:3f:81:bc:05:b8:d1:fe:d8:df:7f:81:1a:
6e:38:4d:77:fd:58:0e:d9:0c:2d:34:21:89:98:c2:44:20:3b:
d4:ff:1d:06:63:98:89:cd:ba:04:a9:bc:88:ff:ed:ea:0f:43:
ed:c5:63:64:b7:ce:b0:95:8c:06:1e:c3:e2:ae:f1:b3:db:78:
0e:96:21:fc:f1:4a:dc:ed:f6:b0:ec:93:e6:2b:dc:d9:4e:42:
31:8a:12:b0:f9:df:d5:b2:b8:38:b1:75:22:35:44:57:66:80:
4b:ad:e4:c9:61:a7:5b:96:7b:31:34:f5:44:e7:2e:77:fd:37:
37:3e:89:41:52:fe:5d:0a:40:3a:ff:e7:65:81:62:d9:26:91:
67:e4:3e:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:04 2023 by rpki-client on console-ams.rpki-client.org