Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/WFNOidAb-RlzBEsKU1cGoKPLZYw.roa
File: WFNOidAb-RlzBEsKU1cGoKPLZYw.roa (raw, json)
Hash identifier: ga646LzDbTq+hHC4MfPGhkb/baNZHUXTopgdHD0WmRU=
Subject key identifier: 58:53:4E:89:D0:1B:F9:19:73:04:4B:0A:53:57:06:A0:A3:CB:65:8C
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 018A8F13BD9E546AB2EAF664D4921D79F9C8
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/WFNOidAb-RlzBEsKU1cGoKPLZYw.roa
Signing time: Wed 13 Sep 2023 15:05:50 +0000
ROA not before: Wed 13 Sep 2023 15:05:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206946
IP address blocks: 2a06:e881:260a::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8f:13:bd:9e:54:6a:b2:ea:f6:64:d4:92:1d:79:f9:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Sep 13 15:05:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58534e89d01bf91973044b0a535706a0a3cb658c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:bb:8f:60:6c:ef:61:6e:3d:8e:3a:ed:72:c6:
1d:33:60:ea:7d:e7:6a:7c:65:40:fd:02:9e:a2:6b:
f7:fc:d7:90:8e:c9:17:44:2b:00:3a:e0:ca:07:c3:
47:e5:32:f7:9e:09:e8:50:d1:e4:c5:cb:01:e8:23:
c2:de:09:21:4b:be:2b:52:13:17:3f:6a:65:08:b0:
3a:66:04:95:55:7a:0b:79:a2:1f:57:65:d6:f8:c4:
c2:ec:1c:82:9d:9d:af:c3:12:f7:f9:4e:63:8f:40:
d1:11:0c:70:8c:25:b4:48:1a:90:ab:13:19:8e:e8:
3e:cb:f1:da:85:0d:62:cf:aa:4b:21:15:02:17:21:
75:5b:b9:8c:e9:98:cc:da:c6:50:95:a1:70:09:d0:
13:23:75:51:70:6f:bd:28:13:c0:85:89:c0:52:52:
ee:f4:31:6d:2f:a0:cf:4f:e1:d1:18:64:06:5b:66:
38:94:9e:4c:52:2a:d0:70:f7:d1:84:57:70:8d:ae:
72:ff:75:86:d4:22:d5:07:34:92:6a:9b:b9:5d:d9:
20:96:50:6b:0b:a0:da:a4:5d:77:af:15:74:3f:42:
3f:3b:c3:84:5c:b5:1e:97:9a:83:0a:fb:f3:5f:6f:
3c:57:52:45:63:9c:b2:97:22:94:fe:5f:05:3e:7a:
51:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:53:4E:89:D0:1B:F9:19:73:04:4B:0A:53:57:06:A0:A3:CB:65:8C
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/WFNOidAb-RlzBEsKU1cGoKPLZYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:260a::/48
Signature Algorithm: sha256WithRSAEncryption
2a:c6:99:7d:bf:4e:6f:6f:fa:37:85:ff:eb:af:fd:46:b5:55:
7a:52:85:5c:09:d8:1f:25:81:d1:9b:b0:29:6b:87:1a:fc:3e:
65:c9:c9:49:40:e2:e8:d4:de:76:c1:32:61:ef:de:06:53:07:
17:33:a7:ed:e7:a5:34:fa:2b:46:3d:67:02:af:7e:b9:1c:1e:
31:f6:76:45:f3:e1:e8:fc:0b:2a:0d:e6:48:4a:56:e1:10:46:
28:27:b3:a6:c3:97:db:59:04:82:01:8b:67:79:3a:ed:7f:f5:
80:4c:8f:a2:a1:8c:16:a3:83:56:bb:1b:28:7c:57:48:ab:aa:
3b:0a:d7:cb:be:40:c0:44:20:2e:e6:72:1b:76:99:0b:26:8c:
aa:08:14:4c:95:fa:58:28:c4:c3:8f:40:67:42:38:53:be:4d:
7e:19:b3:61:f6:8a:b2:53:07:13:c6:ee:7d:bc:8e:09:f7:c6:
2a:e9:fc:46:b8:be:38:98:41:d0:53:4c:0c:e6:af:75:00:ea:
e2:f2:e4:de:3f:63:79:d3:91:67:4c:12:eb:47:65:28:13:08:
5b:bc:99:4b:84:55:b6:e5:5f:e4:b9:51:7a:45:3f:2a:17:b0:
a7:3f:96:2e:bf:de:a5:90:d4:63:9a:89:96:a9:94:8b:6a:12:
dc:e7:1a:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:04 2024 by rpki-client on console-ams.rpki-client.org