Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/wS5ux1M_R3ACCzbV2K7A0b4cS7E.roa
File: wS5ux1M_R3ACCzbV2K7A0b4cS7E.roa (raw, json)
Hash identifier: FgPJmWRN1D6dJq/gJIBpron+j/9zz8L8ZLfbjZD9e/g=
Subject key identifier: C1:2E:6E:C7:53:3F:47:70:02:0B:36:D5:D8:AE:C0:D1:BE:1C:4B:B1
Certificate issuer: /CN=8f2824c61357dc344bbdf35b83577459b9d3fc44
Certificate serial: 0188F7856F920DBC41124404072B2F958BB7
Authority key identifier: 8F:28:24:C6:13:57:DC:34:4B:BD:F3:5B:83:57:74:59:B9:D3:FC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jygkxhNX3DRLvfNbg1d0WbnT_EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/wS5ux1M_R3ACCzbV2K7A0b4cS7E.roa
Signing time: Mon 26 Jun 2023 11:44:57 +0000
ROA not before: Mon 26 Jun 2023 11:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2a00:4bc0:2400::/40 maxlen: 48
2a00:4bc0:2100::/40 maxlen: 48
2a00:4bc0:2300::/40 maxlen: 48
2a00:4bc0:2000::/44 maxlen: 56
Validation: Failed, certificate revoked on Fri 17 Nov 2023 08:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f7:85:6f:92:0d:bc:41:12:44:04:07:2b:2f:95:8b:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f2824c61357dc344bbdf35b83577459b9d3fc44
Validity
Not Before: Jun 26 11:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c12e6ec7533f4770020b36d5d8aec0d1be1c4bb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:54:95:68:eb:77:4e:6e:f0:90:b5:62:1b:af:
58:7b:b5:ad:2d:e6:f6:93:ad:4a:8e:18:71:9b:e7:
89:a4:03:e2:ed:f1:88:6e:61:d9:3f:62:d3:bc:d4:
e4:1c:32:02:fc:c9:f3:26:45:90:97:bf:82:67:a0:
a3:b4:6c:88:5e:69:62:b9:11:4b:f9:75:05:71:eb:
91:ae:b9:55:bd:89:a0:84:c3:b8:77:16:b2:fa:f1:
fc:b3:61:2e:66:92:37:d9:01:b6:14:43:ee:a9:68:
fa:c2:02:01:e8:9e:ea:ed:36:9e:1e:5a:6c:20:01:
5d:c2:43:00:ec:4f:d7:33:7a:a3:2a:d3:fe:a1:08:
54:89:87:d8:5a:cf:29:eb:37:7e:52:fb:0f:fe:22:
82:d6:df:62:05:7a:99:62:18:a7:77:3d:12:e4:a2:
4c:ef:4c:c4:22:f3:99:43:2e:77:2f:b9:87:da:b2:
9c:80:dc:28:52:6b:59:23:2d:21:75:61:a4:44:bb:
ee:79:8d:39:86:fc:e6:77:fc:6f:85:52:45:20:55:
9d:a7:7b:9a:44:89:a1:87:24:50:44:d4:84:b3:64:
19:60:4e:81:06:f8:a5:d7:ab:62:72:a8:62:0b:07:
0f:23:10:45:db:1c:61:41:6c:54:00:83:86:a0:d8:
08:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:2E:6E:C7:53:3F:47:70:02:0B:36:D5:D8:AE:C0:D1:BE:1C:4B:B1
X509v3 Authority Key Identifier:
keyid:8F:28:24:C6:13:57:DC:34:4B:BD:F3:5B:83:57:74:59:B9:D3:FC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jygkxhNX3DRLvfNbg1d0WbnT_EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/wS5ux1M_R3ACCzbV2K7A0b4cS7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/jygkxhNX3DRLvfNbg1d0WbnT_EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:4bc0:2000::/44
2a00:4bc0:2100::/40
2a00:4bc0:2300::-2a00:4bc0:24ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
64:ad:b3:17:b4:92:a3:87:2f:fd:54:d0:8d:9f:e3:cd:b4:c6:
2f:f1:6b:dc:64:a9:6b:11:d5:7f:73:ba:7e:d4:80:74:f5:92:
97:e1:db:ae:1c:80:77:88:c5:ec:ea:38:68:88:8e:23:f7:1f:
ff:a8:87:03:ab:87:4d:6c:e4:f0:f3:13:e6:37:44:a5:40:ea:
ed:dc:f9:dc:7d:11:a0:c9:62:ed:9d:67:8c:aa:09:bc:ce:31:
f0:df:10:c2:60:92:5f:3f:d4:ae:82:e6:be:32:90:0d:45:4a:
54:5d:f8:f1:6f:0a:4f:44:56:79:1c:30:98:9f:37:2e:97:9e:
62:f6:99:de:7c:58:c7:de:b7:d3:64:e6:a3:54:ce:42:70:17:
f4:e4:a4:89:33:6a:32:df:6c:ef:1e:83:e5:2b:d0:27:97:50:
1d:10:ac:43:e7:bc:53:5c:db:07:83:d0:5e:fd:14:46:94:86:
af:c5:3a:c5:ff:22:93:dd:94:65:ab:8d:9e:b1:6e:ee:74:85:
da:98:45:7e:ee:9d:36:5e:ed:88:c6:cd:78:45:55:88:8d:a1:
f6:a0:62:c2:5a:99:07:d5:e1:bd:62:c3:ff:29:ef:42:f7:5e:
2f:f5:71:f6:c1:9d:22:f1:36:89:39:8f:95:54:95:56:a7:65:
c6:84:6f:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:20 2024 by rpki-client on console-ams.rpki-client.org