Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/WlDMpa6tnWdqlfnl31DpmYOH0Jo.roa
File: WlDMpa6tnWdqlfnl31DpmYOH0Jo.roa (raw, json)
Hash identifier: jpNJUloQJGAcyvBGqPFJc0WSVhMwotbmqu2qCUreylU=
Subject key identifier: 5A:50:CC:A5:AE:AD:9D:67:6A:95:F9:E5:DF:50:E9:99:83:87:D0:9A
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 01856C41721C886F37E5F70EFF9B895E5033
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/WlDMpa6tnWdqlfnl31DpmYOH0Jo.roa
Signing time: Sun 01 Jan 2023 07:35:06 +0000
ROA not before: Sun 01 Jan 2023 07:35:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210842
IP address blocks: 2a0d:2684::/32 maxlen: 48
2a0d:2681::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:72:1c:88:6f:37:e5:f7:0e:ff:9b:89:5e:50:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 07:35:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a50cca5aead9d676a95f9e5df50e9998387d09a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:0d:e4:58:f5:d5:b8:f2:5d:a3:2e:a9:3d:30:
32:ca:78:93:28:9c:7f:31:7a:18:0e:79:4c:cb:58:
cc:7f:29:46:f8:ad:de:66:d6:18:3f:36:44:4d:89:
3c:d1:9b:82:cd:6f:e4:fd:25:01:fe:fb:2c:71:2d:
f3:44:39:e3:68:6b:9d:61:3b:51:8b:a1:dd:af:d8:
07:9a:14:cc:2b:45:55:3d:e1:47:fd:ac:36:dc:70:
58:f7:58:02:ba:c4:2c:57:da:be:74:37:8b:c4:ac:
9d:95:24:3e:95:62:13:29:e1:d1:24:02:bb:0f:db:
fc:8a:cd:1e:26:84:ba:d4:9c:bd:df:9e:b9:dd:fa:
a7:77:29:0b:75:de:57:03:17:40:d8:0e:e1:61:23:
75:33:78:c0:a9:ad:8d:ad:d7:59:2e:e5:9c:b9:45:
33:c8:ee:4e:76:18:50:6c:9e:3d:79:f2:bf:19:16:
fc:37:0c:66:85:96:24:e6:ea:69:9b:31:6f:f7:56:
7d:3b:cc:cd:4a:eb:b0:dd:36:3b:90:c8:5b:41:29:
6d:43:d3:be:88:4a:a1:d6:e7:67:22:c5:ea:87:92:
fe:f2:b9:12:c9:b1:d7:7a:60:45:70:eb:fb:a9:84:
ef:5a:62:7e:15:4f:0c:f6:ad:1d:7b:ae:80:34:2f:
54:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:50:CC:A5:AE:AD:9D:67:6A:95:F9:E5:DF:50:E9:99:83:87:D0:9A
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/WlDMpa6tnWdqlfnl31DpmYOH0Jo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2681::/32
2a0d:2684::/32
Signature Algorithm: sha256WithRSAEncryption
c7:da:ff:6e:f8:48:35:87:30:72:22:b9:6a:ef:75:cc:89:4e:
43:ef:d7:e5:71:9f:36:b8:e4:03:75:8f:7f:e7:a7:5c:6b:f5:
02:e8:67:ae:28:a5:4b:9f:37:64:96:70:f5:a1:be:38:5f:68:
3f:b7:20:32:b9:b8:72:40:16:ce:b3:b7:ba:3f:c0:9c:47:c0:
78:59:8f:bf:df:e0:b4:c5:e0:85:2e:07:7f:fb:83:cc:74:47:
e1:32:65:e7:dd:9a:d2:d9:9e:be:34:6d:13:49:49:b4:9e:3c:
37:48:e9:a3:b3:52:43:48:44:e9:ce:33:d3:1d:93:0f:c6:71:
1b:7c:c7:c9:ff:58:a3:4a:aa:94:1e:47:f3:31:9a:57:bd:c7:
de:e3:dc:21:a6:93:f9:70:82:32:d9:84:72:56:90:9d:0d:0f:
07:7e:ef:5a:44:7a:ea:c5:66:d2:6b:9d:30:8c:4a:b9:d2:27:
c7:a5:f5:71:d3:d5:a7:1f:bd:6c:df:56:27:fa:52:86:22:ce:
1c:e8:08:93:f2:84:38:64:b6:62:b1:20:61:f5:bd:b5:69:f0:
91:b6:c6:fe:1c:62:36:7a:24:a7:1e:49:01:95:8e:51:a0:10:
40:90:b7:d3:d0:c7:c4:76:62:c4:f9:7d:0c:04:eb:b7:32:28:
46:5d:00:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:39 2024 by rpki-client on console-fra.rpki-client.org