Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6401f3-6df0-4038-b0bc-574713845dbc/1/wd1fVXHX4VxpITpvWI4QDje-4Qw.roa
File: wd1fVXHX4VxpITpvWI4QDje-4Qw.roa (raw, json)
Hash identifier: IuD9/tx2KPliWWYx0JybsKYvWDdj+vVXareFd+dGv3E=
Subject key identifier: C1:DD:5F:55:71:D7:E1:5C:69:21:3A:6F:58:8E:10:0E:37:BE:E1:0C
Certificate issuer: /CN=53f47a725c768d4de78fb31bb40fe16eba19f20d
Certificate serial: 0189B57C6F3AD7256FF4B3E2F3DAC880ABDA
Authority key identifier: 53:F4:7A:72:5C:76:8D:4D:E7:8F:B3:1B:B4:0F:E1:6E:BA:19:F2:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U_R6clx2jU3nj7MbtA_hbroZ8g0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6401f3-6df0-4038-b0bc-574713845dbc/1/wd1fVXHX4VxpITpvWI4QDje-4Qw.roa
Signing time: Wed 02 Aug 2023 09:02:58 +0000
ROA not before: Wed 02 Aug 2023 09:02:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48605
IP address blocks: 2a06:8181::/32 maxlen: 32
2a06:8184::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b5:7c:6f:3a:d7:25:6f:f4:b3:e2:f3:da:c8:80:ab:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53f47a725c768d4de78fb31bb40fe16eba19f20d
Validity
Not Before: Aug 2 09:02:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c1dd5f5571d7e15c69213a6f588e100e37bee10c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4b:f1:86:d0:45:c8:c3:d7:18:56:46:37:82:
b8:22:c9:bd:07:d0:42:02:e0:e1:21:fe:02:6b:7b:
79:9e:53:08:6b:8e:1c:f0:84:38:3d:75:37:a9:25:
4f:9c:c9:4f:6d:c8:21:47:49:ae:f8:1f:a1:8c:97:
04:37:2c:fd:a5:42:a6:cb:82:26:fc:1e:1d:1b:86:
ac:d0:22:c9:55:09:eb:2e:17:6b:2d:7c:6d:29:02:
ed:bc:1c:a1:bc:2b:c2:9d:9d:55:68:c8:30:c7:b1:
db:8b:94:80:df:b7:5a:d9:83:bd:89:48:d4:fd:f8:
67:3d:52:06:1b:60:20:0a:93:f6:c6:15:56:65:ec:
8f:a3:36:cc:a2:91:78:58:e3:85:23:fa:2d:08:11:
5b:29:b6:3a:0a:ea:fc:f4:78:6f:8b:87:dc:ed:1e:
e9:d4:5c:d8:ae:2f:a7:9d:79:e6:a5:c4:ad:16:bd:
a3:fd:cd:0f:84:9f:65:26:4c:46:e6:bc:be:51:a3:
85:ea:6e:d1:96:ab:2b:b3:94:64:94:a9:a8:62:56:
dc:94:e1:ff:2e:5f:96:c1:95:47:3a:3c:7b:e8:b8:
a5:00:69:ec:05:37:3b:90:ff:6b:49:e8:fb:04:19:
a0:6c:c6:6f:ab:9a:b5:73:c6:55:04:f9:d3:0e:8a:
c9:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:DD:5F:55:71:D7:E1:5C:69:21:3A:6F:58:8E:10:0E:37:BE:E1:0C
X509v3 Authority Key Identifier:
keyid:53:F4:7A:72:5C:76:8D:4D:E7:8F:B3:1B:B4:0F:E1:6E:BA:19:F2:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U_R6clx2jU3nj7MbtA_hbroZ8g0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6401f3-6df0-4038-b0bc-574713845dbc/1/wd1fVXHX4VxpITpvWI4QDje-4Qw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6401f3-6df0-4038-b0bc-574713845dbc/1/U_R6clx2jU3nj7MbtA_hbroZ8g0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:8181::/32
2a06:8184::/32
Signature Algorithm: sha256WithRSAEncryption
42:2d:44:cf:c8:32:42:58:e0:20:3f:93:6c:13:5b:28:ba:81:
88:79:0b:fc:ff:be:32:d1:7b:8b:04:c9:47:7b:52:8b:eb:42:
c6:80:35:ea:ce:7d:1a:5d:90:f2:e1:f4:c1:ec:de:e2:d9:ce:
ea:a0:7c:8c:f4:88:88:6e:9b:55:af:8b:48:27:a1:ee:f9:db:
2a:aa:bc:88:0a:5a:fd:06:f1:8b:e4:f9:2d:a9:eb:22:58:aa:
9a:4d:50:75:e8:3d:b6:fd:8a:63:5f:c7:88:1a:3c:68:31:6a:
c7:d2:00:0c:2f:20:2f:97:da:c0:67:c5:af:73:15:c5:2b:04:
fa:f9:5d:ad:d8:01:68:99:a3:4c:ec:07:89:f3:e2:77:94:f5:
70:37:74:69:9d:96:36:a1:3d:18:9c:cd:cb:bc:b1:cc:97:9a:
63:27:81:24:a3:89:be:de:21:e0:24:b8:38:ca:a6:bc:7f:7f:
25:e9:7b:51:7f:18:95:72:5f:e6:a6:9d:6c:85:d7:89:11:3e:
b6:31:f9:02:2e:79:44:b2:49:8d:ef:b8:8a:e3:05:f6:91:0a:
62:26:f3:af:d8:b3:db:1e:ad:e5:37:48:13:ff:38:ad:d0:12:
05:42:91:65:11:76:93:25:b4:01:23:1a:72:28:03:4d:cc:be:
50:fe:ae:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:48 2024 by rpki-client on console-ams.rpki-client.org