Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/525224-78ea-49e4-9749-169431296c59/1/wWiqCKS8WRb1umnadL84OItWLqc.roa
File: wWiqCKS8WRb1umnadL84OItWLqc.roa (raw, json)
Hash identifier: n4VDwHb3yeuvCKHAjFY/fA/1xYFqWjaHAWZympJdS5w=
Subject key identifier: C1:68:AA:08:A4:BC:59:16:F5:BA:69:DA:74:BF:38:38:8B:56:2E:A7
Certificate issuer: /CN=76f311ef1581a00e437cd704b6281ac8621afc56
Certificate serial: 01878008518B5A48D0F747A8C951EB13CEA5
Authority key identifier: 76:F3:11:EF:15:81:A0:0E:43:7C:D7:04:B6:28:1A:C8:62:1A:FC:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dvMR7xWBoA5DfNcEtigayGIa_FY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/525224-78ea-49e4-9749-169431296c59/1/wWiqCKS8WRb1umnadL84OItWLqc.roa
Signing time: Fri 14 Apr 2023 13:50:41 +0000
ROA not before: Fri 14 Apr 2023 13:50:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49544
IP address blocks: 2a04:7141::/36 maxlen: 36
Validation: Failed, certificate revoked on Tue 09 May 2023 14:09:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:80:08:51:8b:5a:48:d0:f7:47:a8:c9:51:eb:13:ce:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76f311ef1581a00e437cd704b6281ac8621afc56
Validity
Not Before: Apr 14 13:50:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c168aa08a4bc5916f5ba69da74bf38388b562ea7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:70:cb:fc:40:49:6b:5d:2f:f8:04:fe:4d:80:
72:ad:eb:e7:fc:15:dd:f5:98:df:41:8c:82:76:c4:
6f:64:be:03:58:81:8d:4e:12:de:c3:6f:ec:52:9e:
04:54:e1:09:2b:f2:83:2f:75:32:87:39:ef:8e:a0:
0c:60:ef:05:92:6c:f3:b2:54:2a:14:95:55:73:6f:
d0:53:7f:c1:c3:97:a7:83:54:6f:ff:f1:4a:af:6c:
41:09:12:f6:f6:0f:b4:a7:fa:d4:65:08:00:2d:e4:
81:40:33:ac:3e:ad:31:a4:f4:52:44:cd:e9:cc:ca:
f5:77:e8:ea:07:db:66:61:3a:ff:bc:c5:72:d4:a1:
b4:36:c1:22:0a:0e:ab:1e:ad:4c:a7:ef:5e:c9:4d:
53:8b:bf:30:5c:0c:1f:86:bc:6a:22:c5:5d:7c:6b:
f1:54:93:89:9d:29:3d:ba:43:f1:57:13:ce:21:78:
2a:97:7f:d1:26:2f:5d:8d:6b:03:ea:a7:5b:94:ec:
ec:7f:ec:73:e0:ef:3c:35:8e:82:ff:35:00:99:d7:
eb:43:6f:ac:8c:15:75:79:20:43:5c:cc:6c:59:a7:
f6:66:30:ff:51:92:54:2b:a0:84:01:89:47:1f:17:
16:08:9d:69:15:03:d8:05:9d:ac:3a:24:79:7e:05:
ba:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:68:AA:08:A4:BC:59:16:F5:BA:69:DA:74:BF:38:38:8B:56:2E:A7
X509v3 Authority Key Identifier:
keyid:76:F3:11:EF:15:81:A0:0E:43:7C:D7:04:B6:28:1A:C8:62:1A:FC:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dvMR7xWBoA5DfNcEtigayGIa_FY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/525224-78ea-49e4-9749-169431296c59/1/wWiqCKS8WRb1umnadL84OItWLqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/525224-78ea-49e4-9749-169431296c59/1/dvMR7xWBoA5DfNcEtigayGIa_FY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:7141::/36
Signature Algorithm: sha256WithRSAEncryption
35:bd:93:91:21:38:23:79:64:b5:b3:0f:52:91:00:bf:38:9e:
70:f1:71:50:f4:22:91:2e:b3:fa:a7:ce:46:1f:bb:34:4d:0d:
56:f8:5a:8e:c4:71:9f:f9:0b:51:5c:3c:16:b7:fb:9d:0a:0b:
b2:50:75:ba:c7:ec:3a:9c:75:2a:08:9e:07:19:68:a2:8d:bc:
92:5c:4b:6b:a7:97:d4:86:24:b3:07:82:61:82:75:dc:36:96:
2d:18:9a:04:18:64:91:6a:34:c2:9d:5f:cc:88:db:4d:47:4c:
46:6b:5a:4b:2b:7f:7b:41:8d:8d:16:b5:1a:60:91:17:1c:70:
b9:5e:5d:12:19:20:91:bf:91:f3:8b:18:5c:a7:35:64:75:70:
10:45:0d:3a:4f:3c:eb:cd:9b:69:22:0c:63:af:93:6c:d4:a0:
67:54:ad:b2:ce:c9:20:76:5c:8c:ac:e4:f9:4e:2f:a6:f1:67:
45:eb:89:5e:26:7d:0c:b2:7d:30:f2:dc:f9:38:f1:ee:cf:4b:
0e:2b:3a:52:45:cd:af:59:d3:a1:b0:bf:df:66:38:aa:38:c2:
52:95:d4:46:4c:9e:e9:d2:23:59:a4:67:4b:5e:33:06:24:79:
7d:de:3f:10:8b:2a:c6:df:3f:1b:94:24:0a:bf:39:4e:8c:cd:
5a:db:4f:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:19 2024 by rpki-client on console-fra.rpki-client.org