Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/W1wGbS1d6Wx9JhUgvtX5dGm4vzY.roa
File: W1wGbS1d6Wx9JhUgvtX5dGm4vzY.roa (raw, json)
Hash identifier: 28ihy8kQvZ4fiess2myaZkT/Vh0clXYs5WWTx/S+KEs=
Subject key identifier: 5B:5C:06:6D:2D:5D:E9:6C:7D:26:15:20:BE:D5:F9:74:69:B8:BF:36
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 0186CB40E77AD2565FB7C6BC77FC8332141E
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/W1wGbS1d6Wx9JhUgvtX5dGm4vzY.roa
Signing time: Fri 10 Mar 2023 11:21:13 +0000
ROA not before: Fri 10 Mar 2023 11:21:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51032
IP address blocks: 2001:146a::/32 maxlen: 36
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cb:40:e7:7a:d2:56:5f:b7:c6:bc:77:fc:83:32:14:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Mar 10 11:21:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b5c066d2d5de96c7d261520bed5f97469b8bf36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:de:2f:5f:91:06:2d:50:10:8a:75:81:bc:a2:
7e:6c:aa:15:fd:45:40:6a:07:d6:dc:74:c8:d2:e2:
41:66:84:01:c6:4a:cf:a7:7c:24:40:91:2b:5a:cd:
62:fd:12:94:8d:0c:f7:e9:17:0b:37:4d:ea:72:3f:
c3:1c:71:22:18:25:ef:bf:81:bf:42:47:31:b1:aa:
2a:86:be:59:61:8f:7d:6f:a3:3c:7b:a5:6b:02:d7:
d7:22:cd:a5:1e:92:da:fd:72:a4:7a:aa:f6:b3:b7:
ef:8e:7d:e4:3b:a1:ce:43:90:28:ee:94:ac:74:37:
64:37:33:34:cf:5a:a2:dc:33:a8:6f:ec:14:83:86:
e3:be:1e:81:9d:b4:b6:8e:52:c0:63:01:f5:3c:37:
f1:98:6d:58:6e:6b:ad:c6:82:38:52:05:f2:91:e4:
4c:a3:b1:3d:e4:02:93:f9:de:14:0c:94:7c:64:12:
ad:9b:04:b4:b8:53:30:ff:d7:42:5b:bc:78:08:65:
2e:20:a9:9f:b3:15:18:40:92:15:4e:32:6b:df:67:
c6:c5:b8:fe:73:09:ef:68:45:a5:fc:fd:c4:49:67:
dc:26:d1:c4:99:e7:24:a4:59:03:81:77:cc:8b:f7:
75:30:13:f1:bf:01:d2:8f:8d:d0:e3:77:4e:70:3e:
31:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:5C:06:6D:2D:5D:E9:6C:7D:26:15:20:BE:D5:F9:74:69:B8:BF:36
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/W1wGbS1d6Wx9JhUgvtX5dGm4vzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:146a::/32
Signature Algorithm: sha256WithRSAEncryption
4b:9c:9c:9e:ec:fe:d1:dc:5f:40:dc:49:3c:86:5f:25:fd:71:
42:ac:5c:49:b6:60:77:9f:a0:2a:b3:34:66:5d:79:36:28:72:
9a:49:e8:b3:81:fd:4a:86:ae:c6:54:b8:5c:03:c3:ec:99:33:
9e:f6:10:66:21:20:76:8f:3d:6f:c9:e9:02:11:cb:26:71:5e:
81:9a:1e:db:c8:4a:33:43:95:dd:76:5f:bf:61:59:d8:44:2a:
aa:d5:7c:9d:08:fc:17:52:84:d8:bc:20:68:ec:a4:f5:4b:96:
ac:98:2b:bf:bc:db:c3:c2:18:18:1d:dc:37:b3:a3:47:ed:e8:
d8:43:9c:44:dc:f9:b9:da:9f:13:f8:2e:a5:f5:13:22:54:16:
55:e6:93:af:d0:19:e2:83:58:63:85:5e:07:92:03:44:b3:1c:
1f:21:32:0d:f4:79:52:c7:ff:49:10:6f:e6:83:4e:13:e2:a0:
28:bb:a4:54:d9:2c:bd:69:51:71:80:87:37:ad:27:55:a8:9a:
9a:52:4c:ec:83:c4:0c:db:1b:f1:bf:d8:36:22:59:c1:7c:26:
55:e8:da:6e:55:c6:a7:a2:c9:6b:63:62:6e:56:f2:4f:b7:de:
4d:dd:72:ee:37:6f:08:ed:5f:c7:2a:37:bd:b6:3a:a1:e2:dd:
e0:c5:12:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:45 2024 by rpki-client on console-fra.rpki-client.org