Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/99ed06-e445-4ca2-b647-bd2b3abae121/1/Wh3xLH7jJF6ly3T5fNukWgNHAZY.roa
File: Wh3xLH7jJF6ly3T5fNukWgNHAZY.roa (raw, json)
Hash identifier: HebvdjolRqjnVIbTAnHnoAbmhAZZbZC9aorjwYvF0X0=
Subject key identifier: 5A:1D:F1:2C:7E:E3:24:5E:A5:CB:74:F9:7C:DB:A4:5A:03:47:01:96
Certificate issuer: /CN=f31ed7b1f63b51aa516a9ffcb035a3a0d69e65a1
Certificate serial: 018CC3B73826EE04408A346BA3545CA9FFCA
Authority key identifier: F3:1E:D7:B1:F6:3B:51:AA:51:6A:9F:FC:B0:35:A3:A0:D6:9E:65:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8x7XsfY7UapRap_8sDWjoNaeZaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/99ed06-e445-4ca2-b647-bd2b3abae121/1/Wh3xLH7jJF6ly3T5fNukWgNHAZY.roa
Signing time: Mon 01 Jan 2024 06:30:13 +0000
ROA not before: Mon 01 Jan 2024 06:30:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216245
IP address blocks: 2a13:edc0::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 12:57:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:38:26:ee:04:40:8a:34:6b:a3:54:5c:a9:ff:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f31ed7b1f63b51aa516a9ffcb035a3a0d69e65a1
Validity
Not Before: Jan 1 06:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a1df12c7ee3245ea5cb74f97cdba45a03470196
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c8:d3:5f:4c:f3:f3:e3:14:2d:5c:fd:dd:5a:
6a:ce:f6:2a:c8:c7:c4:21:7f:4b:8f:0b:a7:ee:2f:
a1:c5:35:74:25:5d:40:a2:11:c3:a6:43:aa:c8:54:
c1:74:e2:65:6e:67:49:39:4e:5a:e4:d6:11:d2:49:
5a:fc:eb:93:42:a3:34:fb:36:cf:24:73:d4:dc:f6:
1c:1c:64:31:a6:a5:b6:58:f5:4f:cf:9d:c0:f3:bc:
c3:de:40:e0:29:66:12:65:1e:23:76:71:d6:5a:b5:
01:c2:a7:b9:c6:25:6a:01:78:b7:f9:bd:ce:dd:db:
1f:4c:20:84:ed:17:4d:57:71:15:ce:84:06:2d:21:
65:58:d8:b1:8c:06:c1:71:43:e0:17:b3:77:ee:76:
1b:fb:93:b3:a5:32:f0:d2:12:b4:ac:a5:a7:17:b9:
aa:41:71:b7:ae:d4:49:bf:93:4f:7a:08:5f:52:96:
00:51:12:96:2d:a9:7a:62:f1:57:b5:a0:64:d5:dd:
54:28:58:53:be:05:e9:93:9c:99:1e:a8:b5:bd:99:
9c:a2:d6:99:36:5c:2b:51:97:12:bc:f8:17:df:19:
dc:14:f5:05:17:b8:e0:ef:62:f3:66:ad:f2:8b:8c:
e4:24:87:f5:c6:49:3e:6e:46:44:5d:df:56:7a:ee:
26:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:1D:F1:2C:7E:E3:24:5E:A5:CB:74:F9:7C:DB:A4:5A:03:47:01:96
X509v3 Authority Key Identifier:
keyid:F3:1E:D7:B1:F6:3B:51:AA:51:6A:9F:FC:B0:35:A3:A0:D6:9E:65:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8x7XsfY7UapRap_8sDWjoNaeZaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/99ed06-e445-4ca2-b647-bd2b3abae121/1/Wh3xLH7jJF6ly3T5fNukWgNHAZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/99ed06-e445-4ca2-b647-bd2b3abae121/1/8x7XsfY7UapRap_8sDWjoNaeZaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:edc0::/48
Signature Algorithm: sha256WithRSAEncryption
33:79:36:ac:af:23:4c:d0:0e:56:cf:f1:6a:9d:46:f1:cf:95:
d9:ab:d5:f3:b7:05:11:40:2b:1a:da:aa:50:1c:84:cc:88:c8:
b2:31:24:c5:5e:f9:5f:46:8a:c6:7e:82:93:86:9f:8c:dd:ed:
31:f2:b8:78:9c:d9:4b:8a:f6:df:4e:5e:ea:94:5c:8f:3e:a4:
6c:6f:b6:ad:87:4e:ef:12:4a:c6:ef:ba:2b:3a:3c:74:5b:92:
66:48:66:6c:a5:b2:be:7f:34:15:2e:b3:93:bb:d3:70:25:dd:
04:dd:5d:78:32:fb:e1:f5:5d:5c:63:2b:cb:25:d4:58:be:85:
ee:60:40:7b:1f:24:88:51:22:2f:03:34:5e:ea:05:01:15:0f:
13:e3:a9:14:1a:c9:40:ea:0c:50:4e:d4:31:54:03:85:05:96:
eb:93:8e:74:e7:af:b7:c6:51:6c:d9:f3:15:66:1e:69:0e:dd:
16:ec:5e:f7:e9:52:30:3c:9e:6b:82:30:46:d4:60:c8:32:6b:
9b:f0:bb:dc:c9:87:2b:e8:1e:98:05:98:0d:44:16:3c:38:15:
ea:30:50:13:ab:05:03:f9:c7:56:63:ff:6d:b0:97:0f:d9:c4:
b4:e2:ea:8f:e6:ff:56:11:ae:16:fd:71:dd:61:fd:ce:8c:17:
93:e6:41:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-fra.rpki-client.org