Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/1b9185-40b5-490b-9af8-55c140c9f54f/1/wpbvWf66IKE4yaG6yPGEDX4XDyE.roa
File: wpbvWf66IKE4yaG6yPGEDX4XDyE.roa (raw, json)
Hash identifier: 1lFcc60Wxlb6WcPsz8kLzJUymRKleUcSqSGiuR5Gzp8=
Subject key identifier: C2:96:EF:59:FE:BA:20:A1:38:C9:A1:BA:C8:F1:84:0D:7E:17:0F:21
Certificate issuer: /CN=a82c9bc2d2dacfd6f130d85a84fedeabf179a567
Certificate serial: 01856DDD464D460459E883101A6852D466CE
Authority key identifier: A8:2C:9B:C2:D2:DA:CF:D6:F1:30:D8:5A:84:FE:DE:AB:F1:79:A5:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qCybwtLaz9bxMNhahP7eq_F5pWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/1b9185-40b5-490b-9af8-55c140c9f54f/1/wpbvWf66IKE4yaG6yPGEDX4XDyE.roa
Signing time: Sun 01 Jan 2023 15:04:56 +0000
ROA not before: Sun 01 Jan 2023 15:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2119
IP address blocks: 2001:1400:ffef::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:46:4d:46:04:59:e8:83:10:1a:68:52:d4:66:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a82c9bc2d2dacfd6f130d85a84fedeabf179a567
Validity
Not Before: Jan 1 15:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c296ef59feba20a138c9a1bac8f1840d7e170f21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:3f:dc:5e:44:6e:a1:d4:35:9e:13:da:6c:d6:
e1:85:6c:3f:a7:d2:4f:48:cd:51:c9:d9:7a:c0:5a:
8c:71:48:a5:9b:f0:fe:bf:69:80:0b:eb:b7:83:28:
f9:fd:79:89:a8:ae:92:69:ec:f0:48:7c:51:4f:e0:
ae:ce:da:b5:34:1e:a3:a2:b1:56:75:11:7d:5b:54:
7d:f4:8a:84:3a:97:23:e8:1d:c4:44:36:6f:83:cc:
0f:46:fb:61:4d:4b:41:4b:f2:8c:9d:03:3d:fd:d9:
b9:3e:3a:40:ae:9b:f7:11:db:28:f4:84:c5:63:74:
44:99:f3:31:76:26:24:e0:cc:68:9b:26:f9:91:93:
eb:f3:79:40:ac:ea:28:e3:d4:57:88:ca:58:72:40:
75:c1:8c:06:5c:3b:ff:cd:3a:a7:b3:57:b8:c7:66:
e5:38:2d:64:07:7b:77:96:e1:ae:cb:e4:d2:1f:02:
06:70:89:d6:2b:c9:e8:0a:fa:43:c8:a3:d3:c9:fb:
e8:13:4e:a9:4f:1a:6a:b4:f4:bb:b3:33:a9:cd:56:
60:45:1a:30:c1:f7:22:78:e3:83:c0:cf:db:d2:b9:
ef:a7:4d:45:16:77:3e:ca:7e:2a:de:1f:58:77:ef:
ce:d6:98:36:b7:96:67:c9:49:42:e6:b3:dc:d0:4c:
86:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:96:EF:59:FE:BA:20:A1:38:C9:A1:BA:C8:F1:84:0D:7E:17:0F:21
X509v3 Authority Key Identifier:
keyid:A8:2C:9B:C2:D2:DA:CF:D6:F1:30:D8:5A:84:FE:DE:AB:F1:79:A5:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qCybwtLaz9bxMNhahP7eq_F5pWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/1b9185-40b5-490b-9af8-55c140c9f54f/1/wpbvWf66IKE4yaG6yPGEDX4XDyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/1b9185-40b5-490b-9af8-55c140c9f54f/1/qCybwtLaz9bxMNhahP7eq_F5pWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:1400:ffef::/48
Signature Algorithm: sha256WithRSAEncryption
10:f3:b8:91:24:e7:06:18:9d:c6:3e:09:9a:a6:58:cc:85:34:
75:52:3e:53:60:fc:05:90:73:ef:89:fe:fc:c6:cc:e8:36:c9:
fb:92:86:2b:17:d0:d9:90:6d:7a:2d:6f:21:52:69:dc:fb:7e:
c7:a2:b7:b0:0e:88:00:31:3c:c2:bc:d0:62:2c:54:2d:00:cb:
79:20:cd:eb:3b:84:c7:38:4b:70:ec:c8:5e:c0:89:b9:65:ca:
ac:7a:d0:11:d1:f3:3a:8a:4e:78:35:a1:e7:a1:3d:bb:5d:9d:
17:59:0d:1d:e9:67:d2:82:bc:99:d9:97:66:26:b4:c6:8d:a5:
0a:67:3f:9b:cb:08:d4:89:72:94:06:27:55:20:6d:10:8b:0e:
8f:24:97:2a:fa:0f:5e:3d:2f:b3:79:8c:7d:2c:8f:21:95:0c:
37:76:16:0e:4d:01:65:e4:14:dc:ce:ce:d9:f8:5a:d4:f5:06:
f5:91:53:c5:b7:38:97:58:c2:d2:e4:8a:8f:e2:4e:40:e2:c4:
41:d9:e1:13:fd:54:13:30:66:be:de:db:2d:af:35:83:a8:77:
db:a2:4b:56:32:80:63:a8:71:6e:25:65:f3:ad:2b:75:7b:12:
50:30:41:76:52:f9:c8:52:e4:16:92:47:8f:43:78:43:21:8e:
de:dc:03:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:01 2024 by rpki-client on console-fra.rpki-client.org