Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/115961-b872-444d-beaa-be795250cb50/1/PWKLnPGjbxC4gXjGba0a3C4YyQQ.roa
File: PWKLnPGjbxC4gXjGba0a3C4YyQQ.roa (raw, json)
Hash identifier: 4mkwddJKS/BwECtcS5MCH+vFZx4/YD6gfHqFm7aL9vI=
Subject key identifier: 3D:62:8B:9C:F1:A3:6F:10:B8:81:78:C6:6D:AD:1A:DC:2E:18:C9:04
Certificate issuer: /CN=255ff2960129747c51bdab6e183c60ff787ac5e6
Certificate serial: 01856FE708680F9F8723CAC95070B10E99A1
Authority key identifier: 25:5F:F2:96:01:29:74:7C:51:BD:AB:6E:18:3C:60:FF:78:7A:C5:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JV_ylgEpdHxRvatuGDxg_3h6xeY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/115961-b872-444d-beaa-be795250cb50/1/PWKLnPGjbxC4gXjGba0a3C4YyQQ.roa
Signing time: Mon 02 Jan 2023 00:34:50 +0000
ROA not before: Mon 02 Jan 2023 00:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206506
IP address blocks: 2001:678:360::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e7:08:68:0f:9f:87:23:ca:c9:50:70:b1:0e:99:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=255ff2960129747c51bdab6e183c60ff787ac5e6
Validity
Not Before: Jan 2 00:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d628b9cf1a36f10b88178c66dad1adc2e18c904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:3e:9b:fa:50:43:33:e3:ea:1b:b6:c7:a5:26:
b7:eb:6c:0d:5a:e1:b6:a0:b4:b0:1c:18:50:e3:8e:
9e:9d:9c:03:f7:84:b8:92:24:03:ce:fa:41:18:fa:
25:1e:d4:71:d8:eb:7d:cc:e1:1d:4b:33:ac:4f:56:
04:14:6e:89:a6:1e:2f:5b:ba:e7:f7:87:b2:3a:fe:
81:51:58:b5:13:10:9d:07:10:e5:97:bc:52:0b:8c:
99:f7:72:03:f7:64:a3:8e:6f:02:31:dc:13:cd:c0:
cd:40:e4:b2:13:9f:22:de:a0:da:9a:60:4b:bf:8f:
d2:5d:cd:f0:f1:a9:cf:79:22:a8:12:17:b4:ec:43:
1a:5f:14:9b:9d:54:45:2b:93:19:99:19:8f:27:aa:
67:db:fb:db:cb:ee:92:6f:a2:bb:56:81:58:f2:9b:
38:0f:bb:2b:37:1d:92:c4:92:81:1e:63:a1:c4:a0:
a0:7a:02:ac:8b:bf:72:c3:5e:7c:71:0c:d6:64:ac:
f8:1c:94:83:f6:d3:ce:cf:8c:a1:55:ad:03:e9:fa:
29:0a:2c:bb:44:97:05:3d:7f:42:3a:6c:9c:b5:0a:
ce:6f:64:a3:d9:27:d2:6a:19:b4:e9:15:9e:74:5a:
7f:bc:10:d5:67:04:38:a8:c0:09:20:2c:93:4e:42:
43:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:62:8B:9C:F1:A3:6F:10:B8:81:78:C6:6D:AD:1A:DC:2E:18:C9:04
X509v3 Authority Key Identifier:
keyid:25:5F:F2:96:01:29:74:7C:51:BD:AB:6E:18:3C:60:FF:78:7A:C5:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JV_ylgEpdHxRvatuGDxg_3h6xeY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/115961-b872-444d-beaa-be795250cb50/1/PWKLnPGjbxC4gXjGba0a3C4YyQQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/115961-b872-444d-beaa-be795250cb50/1/JV_ylgEpdHxRvatuGDxg_3h6xeY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:360::/48
Signature Algorithm: sha256WithRSAEncryption
2c:85:51:2b:35:ff:a1:a5:ba:79:38:f0:81:ea:e4:f6:e8:80:
f8:82:bc:96:4a:cf:9f:e0:a6:a4:1e:26:ee:c8:ef:48:40:c7:
13:f9:a3:2d:a8:31:13:5e:d6:cf:51:4e:c5:d3:a1:51:7e:aa:
0e:71:1d:11:ba:44:53:72:a3:5a:f2:83:c3:f6:4b:3b:39:71:
42:2b:dd:8d:15:e1:d8:fe:5c:a2:a7:8c:75:73:4d:dc:d7:e4:
05:b4:ec:b1:97:0d:c2:4c:9b:a9:f2:84:0c:28:ad:0b:ce:ab:
c5:49:a2:80:61:06:6b:ac:5a:9d:65:ab:ac:53:d5:21:66:94:
71:0d:4f:ec:e9:71:a2:22:4a:a6:0b:c3:83:eb:63:46:cb:56:
11:c3:20:c6:bf:ba:ef:be:47:c4:bb:99:7e:ce:46:26:ff:37:
7d:af:fa:71:97:b7:ef:4e:ae:c5:cf:e8:0e:30:a7:10:0c:a8:
08:09:07:5b:63:73:c4:48:95:9e:56:e6:39:d7:96:3a:ca:80:
96:45:70:f6:59:f9:73:aa:e7:7c:b5:ff:98:6a:40:12:75:20:
76:99:02:08:78:79:44:fe:f1:b6:bf:5c:ab:e2:58:98:a7:bd:
41:96:e5:c7:88:c8:e2:94:90:77:df:9c:bf:33:5a:e6:dd:d0:
85:d5:67:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:26 2024 by rpki-client on console-ams.rpki-client.org