Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/W79eI5NUQcRrsiq9-zBcFfPVGzg.roa
File: W79eI5NUQcRrsiq9-zBcFfPVGzg.roa (raw, json)
Hash identifier: 0njYwgLC6WxN7F7DhiB0RL5yv6scLmQ0+i8e/pb9CH8=
Subject key identifier: 5B:BF:5E:23:93:54:41:C4:6B:B2:2A:BD:FB:30:5C:15:F3:D5:1B:38
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01856F7980E4B24074B815CE0C76F5529B4E
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/W79eI5NUQcRrsiq9-zBcFfPVGzg.roa
Signing time: Sun 01 Jan 2023 22:35:11 +0000
ROA not before: Sun 01 Jan 2023 22:35:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 45671
IP address blocks: 2a0f:11c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:80:e4:b2:40:74:b8:15:ce:0c:76:f5:52:9b:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 22:35:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5bbf5e23935441c46bb22abdfb305c15f3d51b38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:19:fd:31:98:41:ec:45:b7:c4:43:66:5d:a8:
65:c8:99:c9:bd:ef:16:73:a8:33:f8:3b:58:f4:7b:
39:7e:f8:bb:fe:09:27:20:04:bf:7c:a2:70:83:f2:
a0:06:9f:96:3c:5a:20:18:55:c5:38:f3:0b:f8:4f:
12:66:3f:07:3c:ed:75:7c:90:21:47:15:2e:69:ec:
de:de:78:8f:f3:c3:ab:de:dd:08:e6:09:16:1b:2f:
a0:f2:41:eb:39:66:9a:3e:b0:10:54:75:6a:23:28:
1a:82:08:37:b5:c1:fd:ff:37:b9:ad:16:8f:37:41:
4c:41:37:13:67:e0:83:00:a9:02:47:9b:1c:02:0b:
e6:02:c5:cf:79:9e:ca:88:74:50:27:2c:76:9c:64:
da:e0:cf:f4:60:bc:7b:7c:11:82:50:7c:4f:a4:21:
5a:9c:a8:58:fb:3c:5f:b7:f4:19:99:f1:10:bc:66:
ac:04:c3:e1:bc:f5:0e:f1:2a:2f:bf:cd:f8:d9:28:
b7:58:21:f8:6b:50:16:3e:f5:14:12:ff:13:b9:b1:
89:67:85:0f:8c:df:7f:ba:dc:1d:e5:d8:e3:04:78:
39:87:c5:11:10:83:b1:9f:7b:75:a3:fe:0d:a4:6a:
5e:61:f4:03:4d:0d:b5:37:16:f8:55:9f:2b:e4:cb:
15:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:BF:5E:23:93:54:41:C4:6B:B2:2A:BD:FB:30:5C:15:F3:D5:1B:38
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/W79eI5NUQcRrsiq9-zBcFfPVGzg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:11c0::/29
Signature Algorithm: sha256WithRSAEncryption
2c:81:dc:9f:93:b8:22:33:a9:00:42:4f:8e:23:42:f7:4f:16:
e2:ed:61:ba:e4:42:3e:74:ac:9a:73:e0:c4:6d:75:09:1f:6f:
cc:3e:d1:cb:e0:8c:dc:86:95:92:af:79:b6:df:9b:c7:bc:65:
e0:c3:ea:d1:bb:df:32:c8:d9:a1:43:2a:d8:b3:6f:f9:69:e3:
7d:e8:75:1a:2e:12:fb:ad:06:f9:18:09:00:0e:d2:02:db:c5:
a8:9a:b2:5c:60:0a:e3:d8:7e:37:02:05:ef:89:92:7b:ee:5c:
3a:a7:c8:d2:61:c8:eb:52:9e:48:b3:d7:2f:8e:e5:4a:e4:73:
bc:ae:e6:70:63:ac:df:13:10:c4:94:6b:c7:73:2d:09:d2:c3:
7b:35:7c:33:84:2c:35:94:63:3e:4f:89:bf:02:8d:10:77:42:
30:43:a6:15:49:d1:5d:ca:93:2c:53:3f:dc:fa:fd:b9:83:d4:
b3:a0:6a:ce:89:c0:a6:d8:25:93:ea:50:1e:53:e7:57:91:44:
bc:f6:99:00:e5:c3:cd:7c:30:02:db:f4:f1:e8:b3:31:73:ac:
cf:02:12:66:8b:ac:46:51:c1:0d:e6:b0:f5:f7:7e:8e:95:2d:
0f:4e:bc:6d:d8:f9:9c:fc:2c:65:4a:34:bc:d1:87:27:53:5e:
94:2a:62:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:52 2024 by rpki-client on console-fra.rpki-client.org