Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/6bbf55-4d87-4e42-ba5e-e2f93533d6e4/1/w4lkoDlZDsbQEck2GHoHJC5jlBM.roa
File: w4lkoDlZDsbQEck2GHoHJC5jlBM.roa (raw, json)
Hash identifier: 0b44oAoyTbfyf/HE1GdjBP7z0XNxroJi8ju69uuahwc=
Subject key identifier: C3:89:64:A0:39:59:0E:C6:D0:11:C9:36:18:7A:07:24:2E:63:94:13
Certificate issuer: /CN=d4b39fc8a53be1dc674b6da755e86110952174e4
Certificate serial: 01856FDDC416E5BB622DA58160D60539C286
Authority key identifier: D4:B3:9F:C8:A5:3B:E1:DC:67:4B:6D:A7:55:E8:61:10:95:21:74:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1LOfyKU74dxnS22nVehhEJUhdOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/6bbf55-4d87-4e42-ba5e-e2f93533d6e4/1/w4lkoDlZDsbQEck2GHoHJC5jlBM.roa
Signing time: Mon 02 Jan 2023 00:24:42 +0000
ROA not before: Mon 02 Jan 2023 00:24:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64457
IP address blocks: 2a0f:a302:500::/40 maxlen: 40
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:dd:c4:16:e5:bb:62:2d:a5:81:60:d6:05:39:c2:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4b39fc8a53be1dc674b6da755e86110952174e4
Validity
Not Before: Jan 2 00:24:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c38964a039590ec6d011c936187a07242e639413
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8c:e5:8c:d2:65:36:b8:17:70:e8:ac:9e:9b:
00:1d:c6:c7:4e:7f:1c:61:99:a4:c2:31:f1:78:6a:
9c:00:99:96:ac:fa:25:69:02:95:2a:80:b4:78:3e:
d9:27:cb:04:01:2d:b3:2a:fd:7c:a4:d0:8d:02:b8:
ae:ff:97:c6:df:91:e2:36:3e:f0:d7:fb:5b:89:f7:
44:18:eb:64:f1:28:1d:52:37:33:63:8c:ab:26:84:
46:4f:83:cf:e6:6a:c9:e8:08:51:62:5c:31:2c:87:
0e:bc:0c:ce:20:0f:ad:2b:ae:ad:e5:1e:02:e6:d2:
3c:b1:38:eb:89:4f:ce:b3:14:d5:df:3a:15:5a:62:
6c:60:ef:d9:42:b7:1c:c1:b9:3e:67:49:a0:20:26:
4d:f3:49:9b:38:81:81:ba:a6:22:53:c1:9c:f9:26:
aa:68:09:23:1a:94:47:72:d2:5d:5b:c4:d7:8b:97:
a4:3a:f2:4a:31:95:e7:a0:79:a7:78:8d:58:77:2f:
fe:00:2b:3e:74:86:84:3f:1c:15:7e:0b:c2:1c:a0:
24:44:c2:1c:81:03:27:07:4d:81:0b:e0:ad:64:ba:
33:4b:7f:ca:6c:ea:fb:bc:f9:9b:fa:76:a8:17:bf:
6f:1c:68:ab:0e:d6:1d:3c:02:6d:e4:56:bd:c5:28:
23:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:89:64:A0:39:59:0E:C6:D0:11:C9:36:18:7A:07:24:2E:63:94:13
X509v3 Authority Key Identifier:
keyid:D4:B3:9F:C8:A5:3B:E1:DC:67:4B:6D:A7:55:E8:61:10:95:21:74:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1LOfyKU74dxnS22nVehhEJUhdOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/6bbf55-4d87-4e42-ba5e-e2f93533d6e4/1/w4lkoDlZDsbQEck2GHoHJC5jlBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/6bbf55-4d87-4e42-ba5e-e2f93533d6e4/1/1LOfyKU74dxnS22nVehhEJUhdOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:a302:500::/40
Signature Algorithm: sha256WithRSAEncryption
10:53:7e:de:a4:20:3a:4e:ea:7e:8e:18:33:d4:d8:08:21:fa:
80:ec:d5:d5:98:56:d7:57:f3:a8:e7:08:bd:d9:38:60:34:96:
1b:d7:15:d1:6b:81:f7:7b:23:29:42:eb:3b:28:9b:3d:89:9b:
3e:a3:b1:30:e7:91:79:70:42:6a:0c:3c:5d:4e:9d:f6:81:9b:
2a:eb:5c:90:22:77:61:27:3c:70:90:e5:6e:33:87:ea:ed:9a:
e8:c5:c5:00:36:50:cc:ac:c0:28:6d:b3:80:d6:41:54:55:66:
66:d9:ff:54:33:39:2d:01:61:61:90:e8:06:a6:06:d9:80:d4:
fa:36:38:76:df:4c:a7:29:b1:28:ac:7b:e4:3b:de:a3:f1:fc:
ce:d1:df:ee:e3:10:80:51:90:01:4b:f9:15:30:7c:30:3f:74:
f7:29:83:6b:85:b7:f9:39:ce:cd:26:3f:78:03:7d:86:da:dd:
ce:a2:63:b6:59:41:d8:63:59:25:da:c5:ac:11:0a:91:7d:81:
ce:47:94:10:bc:c7:a4:76:24:a1:93:9d:bb:00:60:ad:09:81:
50:ad:d1:61:46:5e:3c:23:68:62:46:42:bf:f2:fa:3b:e5:48:
c0:4e:f3:0a:ed:f8:4f:e1:33:3e:4f:d2:d6:c7:91:36:6c:4a:
f7:d8:b1:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:43 2024 by rpki-client on console-ams.rpki-client.org