Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/71a400-4ede-45f1-b55b-8109d4089828/1/W5pGJnCbozXgkkN5dDacbOn9DUI.roa
File: W5pGJnCbozXgkkN5dDacbOn9DUI.roa (raw, json)
Hash identifier: ONp8uhid4talrWmPle91dlGchHSrMJfF0JTDxBP+pSw=
Subject key identifier: 5B:9A:46:26:70:9B:A3:35:E0:92:43:79:74:36:9C:6C:E9:FD:0D:42
Certificate issuer: /CN=b090d40bfcd5a4a30875160ecc6f9fe53c05a6e6
Certificate serial: 01929BC9A7CCD794D70625535CB1B169D2CE
Authority key identifier: B0:90:D4:0B:FC:D5:A4:A3:08:75:16:0E:CC:6F:9F:E5:3C:05:A6:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sJDUC_zVpKMIdRYOzG-f5TwFpuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/71a400-4ede-45f1-b55b-8109d4089828/1/W5pGJnCbozXgkkN5dDacbOn9DUI.roa
Signing time: Thu 17 Oct 2024 18:42:17 +0000
ROA not before: Thu 17 Oct 2024 18:42:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206835
IP address blocks: 2001:67c:868::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 01:48:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9b:c9:a7:cc:d7:94:d7:06:25:53:5c:b1:b1:69:d2:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b090d40bfcd5a4a30875160ecc6f9fe53c05a6e6
Validity
Not Before: Oct 17 18:42:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b9a4626709ba335e092437974369c6ce9fd0d42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f5:fb:76:80:8c:19:70:25:a2:8f:ed:79:9e:
63:e4:bb:8c:96:5d:cf:b3:d6:5f:19:be:eb:08:cc:
34:b7:8a:1a:d2:f7:a8:e6:19:0f:47:73:2f:fe:e7:
79:47:c1:96:bd:66:d0:e6:c4:91:32:5f:55:b6:82:
d6:62:29:f7:f5:f0:1e:56:7f:2e:57:d4:77:7a:b0:
f4:21:b3:a6:3c:b7:37:54:db:46:b4:0e:f7:16:58:
c7:20:10:dd:e6:e7:b2:ed:1d:65:b5:39:28:c2:d5:
df:16:df:5e:a9:a8:de:07:64:6c:0c:08:97:c5:07:
0e:44:2b:c5:89:82:65:0b:a9:73:52:10:fc:ae:b0:
20:67:fb:64:31:e7:26:f0:f4:69:3f:73:91:e5:81:
6e:e2:d4:30:35:84:36:f3:54:dc:a0:6f:2f:5c:cd:
93:5b:fc:82:f2:63:96:30:6c:ba:ea:58:90:8c:2e:
bc:f6:bb:8e:cf:80:98:92:7b:72:c2:58:60:8c:7c:
11:fd:c7:d4:74:b3:46:a3:28:01:b8:52:b7:1c:4e:
10:09:bf:94:48:2c:c1:d0:34:d3:f5:8d:4a:03:a9:
32:09:7c:53:4c:c1:46:87:04:4d:35:60:54:64:8c:
b5:75:c6:27:20:11:d4:ee:ee:bd:be:30:cd:af:1f:
e7:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:9A:46:26:70:9B:A3:35:E0:92:43:79:74:36:9C:6C:E9:FD:0D:42
X509v3 Authority Key Identifier:
keyid:B0:90:D4:0B:FC:D5:A4:A3:08:75:16:0E:CC:6F:9F:E5:3C:05:A6:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sJDUC_zVpKMIdRYOzG-f5TwFpuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/71a400-4ede-45f1-b55b-8109d4089828/1/W5pGJnCbozXgkkN5dDacbOn9DUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/71a400-4ede-45f1-b55b-8109d4089828/1/sJDUC_zVpKMIdRYOzG-f5TwFpuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:868::/48
Signature Algorithm: sha256WithRSAEncryption
11:c9:08:15:97:c6:19:60:ea:b3:01:c2:5d:10:11:18:6f:5c:
c6:60:3d:4b:b0:d0:17:b2:fa:40:1b:87:c6:71:51:dc:73:9b:
98:8a:13:c4:4e:b5:9e:45:b3:cf:ef:6f:56:9c:0a:26:6e:b5:
cc:c2:0c:54:c2:3f:69:fc:ed:5c:09:e1:18:fe:fb:87:be:36:
2b:d9:e7:0e:76:0d:ce:75:55:b2:91:2b:fc:9f:13:86:d2:3f:
41:7b:bd:6b:eb:32:df:e0:77:db:92:0a:a1:22:cd:b6:71:3e:
e0:8f:e9:58:75:7d:6d:44:7f:6b:68:00:78:bc:12:1f:a0:f7:
7d:c9:c9:8b:bf:b8:73:8d:cd:d0:57:17:10:1d:32:73:42:d5:
4d:8a:86:55:6b:fe:3e:8a:27:74:96:d8:a9:66:7f:b5:4f:4b:
19:90:d0:ae:09:4e:fd:a7:02:91:dd:f9:6d:62:be:5e:c3:61:
0a:8a:6a:c4:16:40:d9:0f:8f:5f:b4:36:b1:f7:b9:a7:de:0c:
d8:50:37:04:ee:6d:41:f3:14:c8:23:08:04:b9:9d:d6:27:3a:
5e:3b:da:ca:21:6e:95:7d:30:77:b6:28:d7:c2:b0:7c:6f:a3:
60:79:d7:45:41:ea:31:b7:5f:d1:dd:eb:9a:22:df:dd:32:17:
5d:3b:90:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:40:00 2025 by rpki-client