Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/Wjkw5wEEAgYUh9LrDxwucgXk1F8.roa
File: Wjkw5wEEAgYUh9LrDxwucgXk1F8.roa (raw, json)
Hash identifier: 4YKrjfTDTeRifH6FqSBHqo68M6GCusHLKOWkMBZyA2o=
Subject key identifier: 5A:39:30:E7:01:04:02:06:14:87:D2:EB:0F:1C:2E:72:05:E4:D4:5F
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 018CC348F555AAA19ACDDC274BE9817A909E
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/Wjkw5wEEAgYUh9LrDxwucgXk1F8.roa
Signing time: Mon 01 Jan 2024 04:29:47 +0000
ROA not before: Mon 01 Jan 2024 04:29:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 26415
IP address blocks: 2a00:11c0:48:5::/64 maxlen: 64
Validation: Failed, certificate revoked on Wed 01 Jan 2025 07:47:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:f5:55:aa:a1:9a:cd:dc:27:4b:e9:81:7a:90:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jan 1 04:29:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a3930e7010402061487d2eb0f1c2e7205e4d45f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:1f:41:4f:64:0e:40:c6:0e:ec:8f:be:ad:0e:
6f:c9:c1:77:03:69:4b:f1:45:fa:2a:17:1a:c0:fb:
d7:12:0c:de:a6:20:44:50:d6:ab:60:da:10:50:43:
18:2e:fb:4d:47:20:b8:d4:72:7b:b7:9f:59:b8:c6:
ee:88:1f:a0:50:55:27:2c:2b:90:cb:9a:85:55:37:
4a:01:a0:a4:94:fc:14:ec:84:8e:01:8e:4b:8f:00:
40:4d:95:2b:2d:f8:da:79:c4:d6:b8:51:70:99:26:
39:56:f2:55:1b:57:e4:be:aa:96:b6:c9:c3:95:48:
e9:21:cf:2a:a8:8a:91:2c:5a:69:65:f5:06:43:82:
2d:f8:12:18:35:8b:c5:01:56:02:af:77:4b:db:a1:
3f:d9:f2:cd:c2:b6:c5:60:d9:66:b1:e6:a2:df:f5:
b5:e3:3b:c1:43:63:02:27:32:86:e6:2a:c1:06:9c:
50:63:a9:6d:5d:29:d8:d9:e5:c6:d2:d5:84:f9:06:
12:c7:a7:ad:d8:5f:a2:a4:0b:a0:50:21:68:ea:fd:
41:ba:8f:dd:ac:aa:f4:ac:03:db:d7:b5:ac:26:46:
14:60:bb:d8:e0:e5:01:00:08:cc:58:91:1c:1d:c6:
14:dc:d4:cc:c9:74:55:c5:be:df:52:a0:1d:ce:01:
ff:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:39:30:E7:01:04:02:06:14:87:D2:EB:0F:1C:2E:72:05:E4:D4:5F
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/Wjkw5wEEAgYUh9LrDxwucgXk1F8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:11c0:48:5::/64
Signature Algorithm: sha256WithRSAEncryption
21:34:70:26:bb:6c:1e:1a:9f:fa:bf:46:30:2c:db:36:7d:4c:
cc:4f:39:61:98:1d:a4:09:d6:39:e6:ba:98:b7:64:12:4f:46:
e5:1c:76:f8:30:72:b9:fe:4b:37:31:7c:60:0f:53:5d:15:bd:
ab:6b:02:70:05:75:73:c9:bf:d1:02:ca:33:97:94:ec:86:cc:
c1:9c:9f:67:19:f5:76:1f:6f:4a:c5:c9:30:2d:10:1d:43:13:
3c:96:4f:65:44:96:f7:3e:36:3b:c9:7e:dd:43:f8:6e:a1:61:
38:66:ce:f8:58:c5:c5:16:0c:46:16:72:4c:44:0b:3e:94:05:
c2:ce:b0:02:37:2a:7c:23:93:ec:b1:73:29:65:ad:bb:fe:01:
c5:e7:10:91:e3:58:87:1b:91:6f:b5:44:88:59:44:15:7f:69:
8e:ca:d6:30:8c:c2:13:bd:7f:42:5c:15:7a:72:44:13:27:77:
e5:30:18:a7:02:00:52:1d:38:12:dd:79:2c:cb:c8:23:5e:97:
47:64:f8:fe:f7:72:6a:4b:af:01:ef:d4:6f:12:f9:4b:49:15:
4d:f9:67:b1:0c:1c:02:5a:35:93:41:25:64:4c:9b:08:fe:35:
58:07:66:d7:d9:25:e3:d4:1b:24:c1:b5:92:15:ae:49:bb:79:
f2:7a:8a:02
-----BEGIN CERTIFICATE-----
MIIFAjCCA+qgAwIBAgISAYzDSPVVqqGazdwnS+mBepCeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1MzlhZmViYWNlODk5YThlZTBiYjRmOGJiNDQ3NWZlMjQ3
YTE1MjgwHhcNMjQwMTAxMDQyOTQ3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YTM5MzBlNzAxMDQwMjA2MTQ4N2QyZWIwZjFjMmU3MjA1ZTRkNDVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsB9BT2QOQMYO7I++rQ5vycF3A2lL
8UX6KhcawPvXEgzepiBEUNarYNoQUEMYLvtNRyC41HJ7t59ZuMbuiB+gUFUnLCuQ
y5qFVTdKAaCklPwU7ISOAY5LjwBATZUrLfjaecTWuFFwmSY5VvJVG1fkvqqWtsnD
lUjpIc8qqIqRLFppZfUGQ4It+BIYNYvFAVYCr3dL26E/2fLNwrbFYNlmseai3/W1
4zvBQ2MCJzKG5irBBpxQY6ltXSnY2eXG0tWE+QYSx6et2F+ipAugUCFo6v1Buo/d
rKr0rAPb17WsJkYUYLvY4OUBAAjMWJEcHcYU3NTMyXRVxb7fUqAdzgH/8wIDAQAB
o4ICDjCCAgowHQYDVR0OBBYEFFo5MOcBBAIGFIfS6w8cLnIF5NRfMB8GA1UdIwQY
MBaAFKU5r+us6Jmo7gu0+LtEdf4kehUoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFRtdjY2em9tYWp1QzdUNHUwUjFfaVI2RlNnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS85OGM0ZWUtMmY1OS00NWE3LWFkYjYt
NzQxMzk1OTEzMTJlLzEvV2prdzV3RUVBZ1lVaDlMckR4d3VjZ1hrMUY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS85OGM0ZWUtMmY1OS00NWE3LWFkYjYtNzQxMzk1OTEzMTJl
LzEvcFRtdjY2em9tYWp1QzdUNHUwUjFfaVI2RlNnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAAjALAwkAKgARwABI
AAUwDQYJKoZIhvcNAQELBQADggEBACE0cCa7bB4an/q/RjAs2zZ9TMxPOWGYHaQJ
1jnmupi3ZBJPRuUcdvgwcrn+SzcxfGAPU10VvatrAnAFdXPJv9ECyjOXlOyGzMGc
n2cZ9XYfb0rFyTAtEB1DEzyWT2VElvc+NjvJft1D+G6hYThmzvhYxcUWDEYWckxE
Cz6UBcLOsAI3Knwjk+yxcyllrbv+AcXnEJHjWIcbkW+1RIhZRBV/aY7K1jCMwhO9
f0JcFXpyRBMnd+UwGKcCAFIdOBLdeSzLyCNel0dk+P73cmpLrwHv1G8S+UtJFU35
Z7EMHAJaNZNBJWRMmwj+NVgHZtfZJePUGyTBtZIVrkm7efJ6igI=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:50:46 2025 by rpki-client