Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/wdhnLusnnFGenOpJQhuzudZ68UA.roa
File: wdhnLusnnFGenOpJQhuzudZ68UA.roa (raw, json)
Hash identifier: Y/aETfXbNKku8FD92NBquG6d/WwZOxSJmoaVUIN86HI=
Subject key identifier: C1:D8:67:2E:EB:27:9C:51:9E:9C:EA:49:42:1B:B3:B9:D6:7A:F1:40
Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Certificate serial: 01856C6EFC84316579218ED1E51A755D5887
Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/wdhnLusnnFGenOpJQhuzudZ68UA.roa
Signing time: Sun 01 Jan 2023 08:24:50 +0000
ROA not before: Sun 01 Jan 2023 08:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57050
IP address blocks: 2a03:9c00:c::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6e:fc:84:31:65:79:21:8e:d1:e5:1a:75:5d:58:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Validity
Not Before: Jan 1 08:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c1d8672eeb279c519e9cea49421bb3b9d67af140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:54:e9:a8:2b:7a:df:b3:83:f7:5b:36:6e:a1:
e6:56:a5:32:92:13:89:bb:bd:7a:d9:6f:f2:50:b2:
3f:65:58:6a:31:78:b5:13:a7:8a:b9:59:14:31:27:
ad:d6:0b:bd:02:2b:ca:38:27:e1:90:58:92:dd:1d:
36:ef:6d:14:6a:12:c0:38:22:3e:8b:93:78:7f:08:
13:09:83:a3:86:80:00:50:e6:db:cc:a5:06:2b:b3:
31:7d:4d:3a:13:ef:e8:ea:88:f9:c8:c7:10:4b:e3:
af:a0:08:d4:66:53:7f:45:da:d3:cb:aa:3f:2b:9b:
6a:85:cf:24:f0:da:a4:0e:cf:26:6b:36:1b:20:6a:
be:b5:b8:48:46:1f:3a:8a:88:ce:ac:55:6e:14:18:
04:5f:14:14:55:fb:27:e4:70:11:5e:65:7d:7c:4d:
4f:7f:fb:bb:da:cd:60:4d:7d:ac:c9:e9:ec:0b:3e:
cd:5e:ad:13:3f:e5:18:c9:23:9e:d0:3d:b5:12:07:
46:33:2b:d4:2c:d5:2f:f3:0f:0a:e4:10:09:13:67:
f9:6b:ea:ea:7f:62:ad:18:37:01:57:37:80:f2:66:
db:cb:d8:7d:6b:fc:40:c0:81:54:d0:9a:14:ee:81:
2e:48:b5:46:a1:77:11:ff:53:6b:3e:8c:8b:78:3b:
43:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:D8:67:2E:EB:27:9C:51:9E:9C:EA:49:42:1B:B3:B9:D6:7A:F1:40
X509v3 Authority Key Identifier:
keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/wdhnLusnnFGenOpJQhuzudZ68UA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:9c00:c::/48
Signature Algorithm: sha256WithRSAEncryption
bc:8f:e3:b0:03:d2:60:0d:07:f6:b8:84:6f:e2:59:e1:78:28:
14:1a:c8:fe:8a:8a:30:67:63:f3:50:3d:68:5e:45:0d:5a:e4:
c7:fa:f0:1e:6e:c4:f8:17:e5:91:0a:6d:e6:80:88:f5:71:50:
c3:0a:58:47:3f:cd:fa:fd:c2:ca:b8:20:44:3c:66:49:28:ed:
8c:76:c9:c5:91:8b:e5:f2:8a:93:34:6d:7f:5e:06:cd:1b:2a:
83:bc:4a:1e:0a:2a:00:07:18:57:60:6e:aa:9f:ab:d1:0d:03:
c9:b2:47:a3:f8:92:3a:bc:8a:32:35:36:fa:51:7b:23:ea:43:
15:5a:76:05:47:e7:e7:be:1b:e8:a6:f2:32:69:7e:1b:1e:df:
e7:8e:4a:38:04:2f:3f:26:5e:b9:12:39:3b:b3:ef:8a:0e:a0:
08:fa:b9:03:0d:1e:73:fc:fd:7e:99:27:99:7f:bd:98:b3:b9:
e0:39:7a:39:7c:2d:74:08:f4:eb:a8:79:b1:c9:d9:cc:23:17:
1f:fa:b7:f3:08:0f:d9:30:15:0b:4b:57:a2:2a:b6:5d:cf:1e:
14:d2:43:02:9d:74:a6:f3:51:3e:4d:9b:d7:d1:15:a9:a1:77:
95:98:bd:c6:2a:8d:59:1a:ca:33:a4:a2:7a:da:31:e2:a0:90:
97:cc:8a:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:43 2024 by rpki-client on console-ams.rpki-client.org