Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7a3009-8f2e-420c-9bdf-be74908186f0/1/W4lm5etvHtSPNmz-lUZUO2UNEAI.roa
File: W4lm5etvHtSPNmz-lUZUO2UNEAI.roa (raw, json)
Hash identifier: g9Wk0HkyfMos/0Mlj43DTFePTPULR2tvqTqWXcyrqpk=
Subject key identifier: 5B:89:66:E5:EB:6F:1E:D4:8F:36:6C:FE:95:46:54:3B:65:0D:10:02
Certificate issuer: /CN=1db93b83bafad7bfd94f676c021baab5187007f0
Certificate serial: 0185718C19EABC6F8C4CBDA1CE07AC0594EC
Authority key identifier: 1D:B9:3B:83:BA:FA:D7:BF:D9:4F:67:6C:02:1B:AA:B5:18:70:07:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hbk7g7r617_ZT2dsAhuqtRhwB_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a3009-8f2e-420c-9bdf-be74908186f0/1/W4lm5etvHtSPNmz-lUZUO2UNEAI.roa
Signing time: Mon 02 Jan 2023 08:14:45 +0000
ROA not before: Mon 02 Jan 2023 08:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29014
IP address blocks: 2001:678:df0::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:8c:19:ea:bc:6f:8c:4c:bd:a1:ce:07:ac:05:94:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1db93b83bafad7bfd94f676c021baab5187007f0
Validity
Not Before: Jan 2 08:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b8966e5eb6f1ed48f366cfe9546543b650d1002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:80:24:1b:b6:91:40:c1:07:90:c7:7e:49:8b:
84:3f:a1:09:eb:eb:b9:4e:2d:2b:1f:15:3c:53:45:
18:06:06:36:2b:14:3d:70:a9:ad:ae:aa:dd:09:05:
ad:59:18:66:05:fb:2e:09:58:52:2d:60:44:ff:0d:
d0:b2:c4:d7:56:68:79:79:fa:12:12:73:80:f0:62:
6b:19:27:65:50:16:59:ee:3c:87:11:71:48:d6:bd:
a4:48:a9:d0:c9:9e:6f:ba:e1:43:2c:29:0a:72:23:
9c:42:1d:5d:97:fe:6d:16:98:f1:ac:c3:4e:4a:ca:
62:78:d8:61:f9:83:1e:bf:d6:41:a5:b9:6e:c6:26:
cd:9f:34:6e:0f:91:4b:2c:b1:84:68:1d:19:7f:2a:
07:e9:f9:5a:d2:4a:b2:18:60:12:90:15:1d:f8:5f:
26:cc:5a:81:fe:0c:d3:e4:12:ea:ea:9e:d1:e1:de:
e9:fd:e2:b9:75:c0:cf:e9:bc:23:97:0e:8d:a4:b9:
8d:43:0c:71:25:27:38:54:22:2c:41:4c:b7:cb:88:
35:96:e9:52:2a:c4:fa:8d:68:aa:f5:d2:56:93:2a:
eb:bb:7b:26:db:cf:a2:6b:cd:33:8a:87:05:20:e6:
fa:61:47:b9:34:09:cb:26:9c:be:96:37:2d:60:79:
e3:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:89:66:E5:EB:6F:1E:D4:8F:36:6C:FE:95:46:54:3B:65:0D:10:02
X509v3 Authority Key Identifier:
keyid:1D:B9:3B:83:BA:FA:D7:BF:D9:4F:67:6C:02:1B:AA:B5:18:70:07:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hbk7g7r617_ZT2dsAhuqtRhwB_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a3009-8f2e-420c-9bdf-be74908186f0/1/W4lm5etvHtSPNmz-lUZUO2UNEAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a3009-8f2e-420c-9bdf-be74908186f0/1/Hbk7g7r617_ZT2dsAhuqtRhwB_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:df0::/48
Signature Algorithm: sha256WithRSAEncryption
69:b0:89:01:eb:51:5f:0f:11:f9:5a:40:cd:c6:78:83:e8:78:
00:4e:e1:c0:62:a5:bb:76:7f:0e:be:a9:13:ec:57:50:6c:bf:
11:40:62:a5:59:90:e9:ce:fa:30:a3:92:db:93:e9:95:bb:63:
9b:94:97:9c:1f:dc:4a:30:7c:91:2b:f2:d4:d0:0a:bd:63:c9:
46:d2:92:97:ac:b1:09:a4:94:ed:30:a8:26:cc:dd:36:bd:28:
3a:07:7b:d6:3e:c4:c8:45:2e:96:4c:02:52:29:14:6a:ba:16:
1a:a4:a4:41:e6:4b:be:d7:98:6e:e7:f2:74:5b:fd:da:44:74:
9a:25:f9:9d:5f:60:58:e2:29:93:4b:1d:69:e9:39:5f:83:8c:
e8:6d:07:e6:3d:a7:b0:bf:cc:f4:15:ee:5b:4a:9c:9d:ff:5d:
75:3f:c0:1c:be:76:db:6a:ad:6e:66:7a:b4:c4:d3:c8:6f:95:
65:b5:3b:cb:95:4e:41:f5:42:15:b4:6b:dc:3e:0e:bf:d7:27:
e6:a7:37:b9:87:7e:ac:85:15:de:9d:67:72:43:fe:cf:03:90:
5a:3f:44:6b:30:b4:79:37:b6:5a:57:02:1b:ae:f9:ab:bb:1f:
a2:b6:08:16:3a:1a:23:56:f5:c4:d6:c9:85:5e:33:66:03:ab:
0b:db:58:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:29:54 2024 by rpki-client on console-ams.rpki-client.org