Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/f0b960-86d8-4062-a597-9b4a2d5f3a76/1/wTP-pQEZMcSThLdfMLNnoUsIu-E.roa
File: wTP-pQEZMcSThLdfMLNnoUsIu-E.roa (raw, json)
Hash identifier: l3+mOOtbU95790Z8L4+3K/du889p3AsmLr7+ej9pt7Y=
Subject key identifier: C1:33:FE:A5:01:19:31:C4:93:84:B7:5F:30:B3:67:A1:4B:08:BB:E1
Certificate issuer: /CN=a52fc60d36e28bb8df145c84acab19cfa53b025a
Certificate serial: 0186742BDD6456B95712D940EE89030EFA87
Authority key identifier: A5:2F:C6:0D:36:E2:8B:B8:DF:14:5C:84:AC:AB:19:CF:A5:3B:02:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pS_GDTbii7jfFFyErKsZz6U7Alo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/f0b960-86d8-4062-a597-9b4a2d5f3a76/1/wTP-pQEZMcSThLdfMLNnoUsIu-E.roa
Signing time: Tue 21 Feb 2023 13:31:17 +0000
ROA not before: Tue 21 Feb 2023 13:31:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201612
IP address blocks: 2001:67c:10b8::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 Feb 2023 14:57:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:74:2b:dd:64:56:b9:57:12:d9:40:ee:89:03:0e:fa:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a52fc60d36e28bb8df145c84acab19cfa53b025a
Validity
Not Before: Feb 21 13:31:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c133fea5011931c49384b75f30b367a14b08bbe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:89:38:c2:6d:b8:ec:7c:f2:74:22:9e:7a:42:
34:0d:a7:4e:a0:9e:8f:2d:f5:d7:59:bd:77:3c:f1:
05:ac:68:c4:39:88:2f:52:3a:30:9b:3f:df:d3:4f:
fc:fb:4d:82:be:1a:e5:6d:2b:9d:e0:1c:c5:0c:e9:
cf:ff:c0:fe:d7:90:2a:50:d3:66:48:91:dc:f1:eb:
14:89:b4:a1:ba:98:8d:78:02:fd:4e:f2:62:b5:db:
f1:21:dc:78:47:d5:37:0d:90:3c:8f:9c:56:18:d0:
11:b8:1d:52:d4:b0:15:89:d6:d0:86:ac:be:7a:9d:
f0:23:db:a4:db:ab:1e:92:f6:39:d8:49:1e:bc:62:
5e:18:21:71:d9:a3:cc:ff:9c:14:ab:b5:d1:0a:59:
cf:e6:1e:ba:ac:67:4d:ad:7e:94:46:25:ea:db:56:
fb:15:06:c7:f3:f6:df:ab:2e:63:2f:a9:8e:75:c4:
4b:dd:93:db:2a:cf:0c:6a:d9:ea:0c:47:8e:6d:57:
3e:43:a3:1b:de:71:7d:a1:df:21:85:2f:d8:5d:e9:
72:c9:d1:b9:0e:a9:39:95:50:a2:f7:fd:15:9e:0b:
1d:30:fc:a2:11:fd:40:84:1b:12:01:d1:ee:93:af:
5c:df:0b:57:a6:0f:f1:dd:9b:85:8e:4b:ac:f6:61:
41:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:33:FE:A5:01:19:31:C4:93:84:B7:5F:30:B3:67:A1:4B:08:BB:E1
X509v3 Authority Key Identifier:
keyid:A5:2F:C6:0D:36:E2:8B:B8:DF:14:5C:84:AC:AB:19:CF:A5:3B:02:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pS_GDTbii7jfFFyErKsZz6U7Alo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/f0b960-86d8-4062-a597-9b4a2d5f3a76/1/wTP-pQEZMcSThLdfMLNnoUsIu-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/f0b960-86d8-4062-a597-9b4a2d5f3a76/1/pS_GDTbii7jfFFyErKsZz6U7Alo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:10b8::/48
Signature Algorithm: sha256WithRSAEncryption
3e:15:39:63:77:8a:00:ac:a0:51:03:38:75:45:94:e8:26:f5:
18:fe:e5:04:31:0b:2f:13:8f:ad:5e:1c:9d:ea:21:b0:3c:da:
65:b8:fd:54:30:10:57:1d:8a:cd:2c:19:a5:07:8e:00:80:18:
b5:b4:1d:f4:2a:23:ad:98:76:ec:9d:63:ae:9f:03:b6:b4:93:
f1:43:c7:60:e4:f9:d6:74:92:ef:e7:74:a9:9c:ec:50:6f:d6:
47:ae:84:c5:e3:66:b7:65:9b:5f:db:74:fb:b3:9c:56:4f:df:
b7:48:5f:c8:02:5c:1b:58:3c:dd:65:4a:22:35:5e:fa:7e:fc:
ba:56:4e:91:7e:14:c7:39:5e:29:27:a6:0d:83:91:07:01:0d:
45:ab:40:ab:ad:fd:d0:e7:9a:ae:07:b0:e8:22:fd:2e:5d:a1:
db:6d:e1:99:ff:f2:5d:e9:45:e9:f5:12:2b:2c:79:f5:22:53:
66:46:eb:54:70:ea:92:28:bf:1b:c8:03:1a:75:f2:58:53:4b:
81:44:9f:1c:95:9b:92:d1:ad:07:bd:4b:17:72:f3:18:de:e7:
9b:64:74:63:8e:cf:8f:c5:b2:da:db:47:7f:0e:1a:78:22:cd:
f6:49:e0:17:88:ca:e0:0b:a3:70:0f:11:f4:3c:46:fc:bc:0d:
5d:04:9d:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:42 2024 by rpki-client on console-fra.rpki-client.org