Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/8f2093-0318-476c-9e9c-53fc4905629b/1/WT2t4pYI_WCdwK6cX0rY4PK78m4.roa
File: WT2t4pYI_WCdwK6cX0rY4PK78m4.roa (raw, json)
Hash identifier: aWTXIjgqtbFPvdwp7Sl/V15ozFTs+hIuUka2hMLRriY=
Subject key identifier: 59:3D:AD:E2:96:08:FD:60:9D:C0:AE:9C:5F:4A:D8:E0:F2:BB:F2:6E
Certificate issuer: /CN=bde75079618691bae1f47bcbed52314496963891
Certificate serial: 01856E5D538A572978C27F84DAADDF8D78DA
Authority key identifier: BD:E7:50:79:61:86:91:BA:E1:F4:7B:CB:ED:52:31:44:96:96:38:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vedQeWGGkbrh9HvL7VIxRJaWOJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/8f2093-0318-476c-9e9c-53fc4905629b/1/WT2t4pYI_WCdwK6cX0rY4PK78m4.roa
Signing time: Sun 01 Jan 2023 17:24:48 +0000
ROA not before: Sun 01 Jan 2023 17:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39334
IP address blocks: 2001:678:6d8::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:5d:53:8a:57:29:78:c2:7f:84:da:ad:df:8d:78:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bde75079618691bae1f47bcbed52314496963891
Validity
Not Before: Jan 1 17:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=593dade29608fd609dc0ae9c5f4ad8e0f2bbf26e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:77:73:b7:ab:ec:17:d4:a0:7f:80:67:01:0d:
1e:df:55:bb:ad:0e:68:09:df:4b:c7:f6:4c:d7:9e:
8a:4d:ac:ae:30:23:a2:5d:64:6d:28:9c:a3:7b:40:
01:ec:99:fc:75:27:65:2b:4a:dd:be:80:41:55:2a:
28:8d:0b:12:91:2c:26:ac:1e:63:47:2a:a3:c6:f4:
8d:f5:81:f1:91:3c:cb:60:2e:3f:96:49:fa:d6:6b:
76:c5:3b:73:fb:af:64:99:b1:03:29:48:73:2d:70:
b3:44:b0:f4:08:20:36:9b:43:98:01:e5:30:b1:7f:
11:8c:07:db:3c:88:2b:0e:2b:8b:4a:79:9a:b2:54:
9e:73:99:1b:5c:b2:22:42:93:6b:7f:62:bf:e9:28:
33:92:c9:0a:31:33:15:13:0e:97:df:e5:09:a7:4a:
ef:4e:eb:15:96:65:95:3e:bb:c0:96:e7:a4:bd:38:
b7:c2:ff:3e:34:10:6b:0c:be:8e:b0:3f:53:a1:96:
8a:52:09:57:29:1d:16:bc:9c:4d:42:97:ed:13:98:
11:21:cf:0a:5f:74:f6:d5:7f:9d:a5:65:07:96:18:
cb:b8:69:6d:0b:0e:c0:60:9d:3f:2a:36:05:e8:85:
cf:2d:39:f9:64:a1:9c:08:09:bf:47:38:fe:85:64:
ec:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:3D:AD:E2:96:08:FD:60:9D:C0:AE:9C:5F:4A:D8:E0:F2:BB:F2:6E
X509v3 Authority Key Identifier:
keyid:BD:E7:50:79:61:86:91:BA:E1:F4:7B:CB:ED:52:31:44:96:96:38:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vedQeWGGkbrh9HvL7VIxRJaWOJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/8f2093-0318-476c-9e9c-53fc4905629b/1/WT2t4pYI_WCdwK6cX0rY4PK78m4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/8f2093-0318-476c-9e9c-53fc4905629b/1/vedQeWGGkbrh9HvL7VIxRJaWOJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:6d8::/48
Signature Algorithm: sha256WithRSAEncryption
74:d8:33:86:56:32:a5:10:41:b3:80:7d:29:8b:36:0b:37:f4:
c8:0c:04:65:a3:70:8e:7f:dc:f1:5d:08:5c:40:a9:71:85:7e:
e0:26:29:e8:c6:a8:8f:70:4a:67:d7:1e:c9:5c:c3:00:9c:1d:
c2:d2:15:f7:6d:44:42:8e:dc:e8:5b:1f:6d:8f:27:ad:e0:3e:
6d:f2:71:b0:6d:3c:fb:76:11:04:eb:d1:e8:f3:67:68:b3:75:
d1:54:7f:5f:86:c4:d5:19:40:f9:64:6a:d9:90:89:21:01:03:
98:b8:e7:b3:f3:6d:c4:5b:54:0e:b0:71:df:9a:e1:a1:25:e3:
d1:26:e4:54:3f:5d:6e:02:03:c1:78:ff:46:69:27:0a:69:77:
0c:8d:b3:ce:92:57:f7:9d:1d:15:07:65:33:05:45:d3:fd:a1:
21:8e:9d:8b:bf:37:ba:bf:b0:58:fe:1f:a2:90:89:58:85:d6:
e3:1d:69:2b:52:49:35:42:98:ae:72:43:ae:35:4b:1c:2b:53:
fb:39:09:a2:ed:49:44:d4:3f:0c:09:67:86:31:c5:23:ab:f4:
a5:4a:4a:1b:36:e8:1a:f3:a1:21:8a:bf:5a:23:46:3d:8e:26:
33:0c:b2:96:48:f5:48:4f:89:45:bb:5b:e8:1c:69:60:30:04:
5e:cd:32:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:41:04 2024 by rpki-client on console-ams.rpki-client.org