Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/2313b8-de02-4228-900a-09be9db11f66/1/WDfs_3j5FZyjVUbsxFxSguM43Hk.roa
File: WDfs_3j5FZyjVUbsxFxSguM43Hk.roa (raw, json)
Hash identifier: XTnC+/CvX/4c3IvMVsU6v680WAvK6WB064t+3+1K5A0=
Subject key identifier: 58:37:EC:FF:78:F9:15:9C:A3:55:46:EC:C4:5C:52:82:E3:38:DC:79
Certificate issuer: /CN=e5bf3a72cad6f4b3dc305b4cbe31087051d983f6
Certificate serial: 018B8F1D7D97B0206EA7DCC7354D84B6F73F
Authority key identifier: E5:BF:3A:72:CA:D6:F4:B3:DC:30:5B:4C:BE:31:08:70:51:D9:83:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b86csrW9LPcMFtMvjEIcFHZg_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/2313b8-de02-4228-900a-09be9db11f66/1/WDfs_3j5FZyjVUbsxFxSguM43Hk.roa
Signing time: Thu 02 Nov 2023 08:19:16 +0000
ROA not before: Thu 02 Nov 2023 08:19:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41281
IP address blocks: 2a0e:1c80:9::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8f:1d:7d:97:b0:20:6e:a7:dc:c7:35:4d:84:b6:f7:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bf3a72cad6f4b3dc305b4cbe31087051d983f6
Validity
Not Before: Nov 2 08:19:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5837ecff78f9159ca35546ecc45c5282e338dc79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:34:01:c1:ce:90:76:a0:1b:94:85:24:c8:b1:
df:74:49:29:21:a7:58:18:b6:da:93:97:1f:74:7e:
ac:23:b1:41:a8:c9:43:98:e2:c2:c8:a2:32:25:98:
e4:d9:67:d7:a1:d0:f7:50:bb:50:18:ae:b2:ca:53:
2d:82:5c:a8:b1:b1:b0:b0:24:bf:6d:cf:e3:a0:17:
cb:f9:94:fb:f4:73:cc:7a:30:a9:77:60:f6:51:b4:
29:60:1e:4f:02:39:c7:e7:c0:f8:2c:e6:ac:11:a4:
0a:45:01:73:05:d8:02:04:49:e3:06:7b:78:60:82:
c2:15:d6:b8:56:05:62:9d:59:ed:97:69:e0:a0:c6:
80:b4:e0:3a:65:41:73:f1:7f:d1:3d:94:de:1f:ac:
82:c0:09:6f:79:30:6d:15:63:50:75:c4:50:1b:c1:
12:e4:ca:59:9a:e4:d6:2e:17:d2:b0:ec:69:7e:b2:
18:a6:96:c3:78:68:c8:37:b7:bf:69:36:31:45:05:
7f:ce:c1:99:71:cc:bb:e2:34:fe:52:e0:66:7c:fb:
76:b3:72:1c:43:ff:38:7f:4e:22:cc:3f:4d:86:c4:
07:e8:07:25:9d:62:41:64:87:32:2c:6a:2a:a0:50:
2f:e6:81:59:e5:b8:18:0f:66:0e:06:e4:8f:0e:ba:
d9:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:37:EC:FF:78:F9:15:9C:A3:55:46:EC:C4:5C:52:82:E3:38:DC:79
X509v3 Authority Key Identifier:
keyid:E5:BF:3A:72:CA:D6:F4:B3:DC:30:5B:4C:BE:31:08:70:51:D9:83:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b86csrW9LPcMFtMvjEIcFHZg_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/2313b8-de02-4228-900a-09be9db11f66/1/WDfs_3j5FZyjVUbsxFxSguM43Hk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/2313b8-de02-4228-900a-09be9db11f66/1/5b86csrW9LPcMFtMvjEIcFHZg_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:1c80:9::/48
Signature Algorithm: sha256WithRSAEncryption
23:f4:41:66:b7:34:ab:97:7e:b5:7b:5e:83:c1:5f:b1:32:e7:
84:e6:22:a6:04:ca:d4:16:cb:24:cb:8e:81:99:a9:5b:6d:5e:
11:21:e5:7f:34:a8:a7:a3:da:0f:59:f8:ad:57:78:c1:cd:f1:
76:e1:0e:75:be:9d:db:75:60:74:ad:51:c2:5d:4b:90:90:86:
35:c5:4f:25:b8:31:77:b6:a9:99:e1:c2:53:47:14:02:a4:88:
6c:27:17:e7:b2:3c:ec:43:5e:38:68:82:45:f2:68:28:14:e7:
78:cd:2f:17:c1:2b:fc:d6:9a:31:78:b0:89:75:20:98:cc:5e:
bb:4c:37:eb:7a:d9:8a:65:7f:50:f3:21:c7:41:7b:c4:2c:22:
a0:c0:b1:d7:f0:c6:3c:b5:5f:0a:99:81:25:0c:b2:03:5b:05:
82:d7:bb:b2:07:2c:c9:4d:5b:4c:31:e3:37:4e:d8:31:49:fa:
cd:dc:56:d9:2d:83:b4:b5:eb:a9:db:d9:22:e3:41:d8:e3:52:
77:b3:5e:dd:34:78:3a:62:e5:4f:f5:fd:55:b2:98:4b:63:46:
a0:be:ff:e6:58:46:8e:57:a7:ae:d0:a1:11:49:8e:05:c6:83:
03:0e:d8:51:83:47:96:a0:61:22:da:ee:58:a2:bc:c7:a1:7c:
24:e4:22:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:01 2024 by rpki-client on console-ams.rpki-client.org