Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Wn_S1lvvGKataZRSEacatMr2Ors.roa
File: Wn_S1lvvGKataZRSEacatMr2Ors.roa (raw, json)
Hash identifier: mC6C6RnUfXsGStjp3jSCRSVgNlyIWg06jphmVm5Xo2U=
Subject key identifier: 5A:7F:D2:D6:5B:EF:18:A6:AD:69:94:52:11:A7:1A:B4:CA:F6:3A:BB
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01901AE50349BE0F02A164B980C1D364DC37
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Wn_S1lvvGKataZRSEacatMr2Ors.roa
Signing time: Sat 15 Jun 2024 07:55:34 +0000
ROA not before: Sat 15 Jun 2024 07:55:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214734
IP address blocks: 2a0f:9b00::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 03 Jul 2024 15:26:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1a:e5:03:49:be:0f:02:a1:64:b9:80:c1:d3:64:dc:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 15 07:55:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a7fd2d65bef18a6ad69945211a71ab4caf63abb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:df:08:fc:4c:34:5a:d2:34:1e:39:20:f1:62:
44:34:9d:b1:34:82:bf:f5:be:19:69:6e:c1:f4:26:
11:53:f2:89:23:82:3e:ac:dc:d5:d9:37:ce:e7:cf:
69:4a:43:1c:c2:37:3a:00:ab:4a:5a:40:a9:6a:25:
22:c4:93:1b:c9:ee:b3:b8:2e:6f:b6:c1:f5:b8:39:
70:17:ab:56:22:60:b1:e2:01:cb:c9:10:5c:23:9f:
29:8a:25:44:e8:a3:ca:12:14:47:61:8f:ab:32:fd:
ea:44:20:d7:13:b4:02:38:8f:eb:34:d3:0f:e3:98:
99:9e:a2:36:ec:74:e4:cd:71:8a:c5:95:97:84:fc:
9e:ea:2d:fa:6c:fe:1e:16:fc:21:cf:02:f9:97:dc:
f9:95:6e:6f:e9:bd:f1:9d:bd:d0:d5:5c:ad:c7:69:
be:dd:4d:f2:14:29:26:f2:0a:f4:9d:3a:4d:ee:e2:
65:73:cd:73:4b:85:ab:70:98:fd:71:5f:18:14:38:
25:e0:d6:3b:e7:fd:e1:a6:6e:f4:b9:1c:35:ae:d8:
01:db:c8:c1:d7:95:57:69:2c:53:bb:a7:52:f9:92:
26:bf:ec:6d:86:a3:74:38:9a:06:eb:0e:2d:0d:4f:
60:93:10:72:bf:28:dc:fd:f7:89:24:42:f3:72:eb:
a7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:7F:D2:D6:5B:EF:18:A6:AD:69:94:52:11:A7:1A:B4:CA:F6:3A:BB
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Wn_S1lvvGKataZRSEacatMr2Ors.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9b00::/29
Signature Algorithm: sha256WithRSAEncryption
42:89:e2:3a:ca:5a:4e:4d:8e:46:3b:67:f5:72:e5:62:af:eb:
1d:df:f6:31:5a:d3:e9:4d:32:b2:41:d9:6e:a1:89:69:f7:dd:
1e:ce:51:f6:b9:81:f8:78:c6:99:2c:50:b0:c8:66:77:d7:91:
1e:cf:f8:40:37:9e:e4:6b:6c:80:f8:7d:b0:ec:1a:ed:5e:95:
11:bf:a2:0f:ad:4a:58:f9:e0:9d:86:e7:b0:a6:ba:d0:0e:de:
b1:21:75:a9:87:01:31:fd:23:49:c5:da:9f:5f:08:98:a8:6d:
77:a7:71:e2:23:bf:b5:ae:34:f8:35:cd:56:15:6d:40:f9:3a:
c6:cf:3e:52:de:eb:d9:44:9e:24:a9:58:17:83:45:a2:c2:f2:
dd:e1:89:83:1e:91:bc:b5:9c:c7:c6:64:8d:49:38:b5:65:79:
d6:ac:5e:af:58:18:0c:d1:76:79:0f:04:6f:52:e7:4c:01:4d:
fa:c0:dc:ab:5d:4d:5d:e7:0b:e9:c0:1b:a7:18:a9:fb:bd:0f:
14:87:ef:22:a1:d3:a6:f2:5d:ff:b0:d8:9e:ca:95:77:c0:8a:
f5:a7:f0:a7:44:7e:53:46:ec:bb:1b:7f:b3:a6:18:9c:b7:ff:
70:77:cd:4a:00:f4:ef:37:60:42:c6:e0:24:30:53:3e:15:1c:
18:e5:0b:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:01:26 2025 by rpki-client