Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/wokfMdJMH58EvGlQYz7q0JLKDGo.roa
File: wokfMdJMH58EvGlQYz7q0JLKDGo.roa (raw, json)
Hash identifier: 5YhCWGkEsf52EJPeroYd/AnQmo+ii8h+bXuI9CRCvEc=
Subject key identifier: C2:89:1F:31:D2:4C:1F:9F:04:BC:69:50:63:3E:EA:D0:92:CA:0C:6A
Certificate issuer: /CN=89bd54e7d69c147d6b56f8c6a209d3deaea277dd
Certificate serial: 01856CE63735850EAC80327D04564761D147
Authority key identifier: 89:BD:54:E7:D6:9C:14:7D:6B:56:F8:C6:A2:09:D3:DE:AE:A2:77:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ib1U59acFH1rVvjGognT3q6id90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/wokfMdJMH58EvGlQYz7q0JLKDGo.roa
Signing time: Sun 01 Jan 2023 10:35:04 +0000
ROA not before: Sun 01 Jan 2023 10:35:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2001:678:f64::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:37:35:85:0e:ac:80:32:7d:04:56:47:61:d1:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89bd54e7d69c147d6b56f8c6a209d3deaea277dd
Validity
Not Before: Jan 1 10:35:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2891f31d24c1f9f04bc6950633eead092ca0c6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:96:e5:5b:38:60:44:c1:30:e6:68:af:fe:db:
f4:6b:4c:58:d0:87:51:49:47:68:a5:95:76:0d:ac:
e6:f4:03:62:b2:51:9e:e5:72:90:bf:13:7e:1f:b8:
40:06:b3:f8:f7:1d:73:67:f3:1e:83:1f:a0:c9:11:
f1:4e:86:a7:87:e7:82:61:05:4b:63:c1:3c:fc:e2:
38:f7:8b:10:89:6b:bd:07:83:d0:0e:68:0c:ba:96:
83:14:66:9e:69:97:60:4d:4a:a2:49:02:c0:42:9c:
ac:cd:36:93:4f:bd:8e:35:b8:cd:70:b1:49:4e:13:
49:33:64:0c:0b:2f:b4:1f:33:9b:2c:c1:31:27:62:
ca:a9:89:78:e6:27:08:1d:2e:98:58:ff:04:a8:e7:
10:2b:c8:ba:5e:b5:bb:1d:83:af:90:73:f2:8a:b8:
03:98:8b:25:80:fc:b8:a7:b5:b6:4d:42:5f:b1:9c:
a0:c6:fd:8a:81:cb:46:6c:22:bd:2e:51:65:61:85:
d8:a1:98:64:ab:df:fe:b4:38:a3:7f:27:60:34:39:
ca:af:18:d0:56:98:4e:1e:fa:3f:79:fb:9d:00:0b:
8e:18:3f:bf:8e:0b:a9:65:89:90:8a:bf:65:0a:99:
1d:21:3a:44:fa:83:d8:ba:18:e9:25:a1:a3:a8:a9:
ec:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:89:1F:31:D2:4C:1F:9F:04:BC:69:50:63:3E:EA:D0:92:CA:0C:6A
X509v3 Authority Key Identifier:
keyid:89:BD:54:E7:D6:9C:14:7D:6B:56:F8:C6:A2:09:D3:DE:AE:A2:77:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ib1U59acFH1rVvjGognT3q6id90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/wokfMdJMH58EvGlQYz7q0JLKDGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f64::/48
Signature Algorithm: sha256WithRSAEncryption
a2:aa:55:b7:37:aa:55:6e:fd:9b:96:12:8f:b0:07:7d:4b:e5:
85:7d:16:57:51:17:75:fc:6e:31:d3:4a:77:18:09:04:b8:d7:
d3:b2:b6:5a:08:14:4e:e0:c4:b9:7d:c1:a7:78:cc:21:2e:d7:
b5:1b:76:95:9d:01:2a:24:b6:1d:1a:22:9c:d2:cc:62:e6:3d:
3a:19:bf:ca:ab:1d:74:0a:cb:8a:56:a3:c1:d6:67:2a:ee:3b:
66:08:7d:70:8f:05:3f:d8:97:44:d2:07:2c:16:ed:48:3e:fe:
6f:64:1d:d5:ce:98:b7:dc:a5:5b:07:b0:0a:65:9c:b0:64:f9:
af:65:64:27:3c:34:2e:e3:d1:41:c2:12:d9:f8:e0:ac:7f:35:
67:86:7e:e5:80:bd:b7:e5:64:d0:64:91:61:5a:35:cd:bd:34:
c6:ff:58:f2:59:72:62:6e:d7:62:2e:a1:08:01:b5:c6:c9:c9:
bf:04:dd:76:13:5b:fe:25:a5:34:f9:2b:17:c0:73:ff:71:e9:
83:8f:cd:ff:14:c5:bb:e1:3e:10:8a:bd:db:ea:8a:39:83:d9:
4c:d8:4d:7f:b1:1d:94:25:8d:2e:43:6c:7a:9b:e8:79:57:f1:
57:f1:54:bb:7e:d5:8b:4d:e9:f0:07:37:01:4f:2b:34:5d:3a:
50:94:37:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:05 2024 by rpki-client on console-ams.rpki-client.org