Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/77d6ee-a8e1-4b01-83cb-2f6769e75f24/1/tWpCUNiAkEVYn2MkYeAWAZqSxbQ.roa
File: tWpCUNiAkEVYn2MkYeAWAZqSxbQ.roa (raw, json)
Hash identifier: LupAto6FbIpLLy/qZg77ERpF574hiH/n7+jyB5UeDbE=
Subject key identifier: B5:6A:42:50:D8:80:90:45:58:9F:63:24:61:E0:16:01:9A:92:C5:B4
Certificate issuer: /CN=d7301f772753d80a7b62c2d213d347a3b9ebe885
Certificate serial: 018871C6C4E3C6D45B55D89E038D8E9B2F65
Authority key identifier: D7:30:1F:77:27:53:D8:0A:7B:62:C2:D2:13:D3:47:A3:B9:EB:E8:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1zAfdydT2Ap7YsLSE9NHo7nr6IU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/77d6ee-a8e1-4b01-83cb-2f6769e75f24/1/tWpCUNiAkEVYn2MkYeAWAZqSxbQ.roa
Signing time: Wed 31 May 2023 12:27:11 +0000
ROA not before: Wed 31 May 2023 12:27:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34658
IP address blocks: 2a13:fd80::/32 maxlen: 32
2a0f:45c7::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:71:c6:c4:e3:c6:d4:5b:55:d8:9e:03:8d:8e:9b:2f:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7301f772753d80a7b62c2d213d347a3b9ebe885
Validity
Not Before: May 31 12:27:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b56a4250d8809045589f632461e016019a92c5b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:50:9a:22:83:5b:b9:3c:e1:39:9d:91:ee:59:
c9:7b:9e:42:2c:64:e9:24:96:c7:29:31:c7:66:d0:
22:57:9e:a1:4d:dc:d3:29:4f:24:2f:28:7c:25:62:
33:f8:fb:45:ef:53:ff:75:0e:2c:fa:67:95:07:a8:
a9:b7:bd:e1:a8:14:e4:21:dd:c5:fe:3c:36:23:0d:
a5:e9:2e:c4:46:77:b7:f3:80:89:97:05:1d:0b:d4:
ed:95:f2:eb:b4:13:a0:d1:f8:00:52:31:e2:7a:2a:
ed:87:9c:b1:95:c5:d5:d3:40:48:c7:1f:ea:44:27:
f7:79:f4:ec:5a:d5:a6:a7:20:97:7d:aa:bc:61:db:
95:57:6f:78:ef:98:65:e9:69:7a:92:6f:7f:f2:6b:
d5:68:15:ef:99:d9:27:6e:5b:ef:34:54:77:c8:84:
3a:48:dc:58:15:07:67:59:25:bf:00:bf:4c:6b:de:
bf:53:51:19:dc:24:52:4a:80:6f:0d:aa:82:b6:77:
f1:21:13:40:59:5b:a0:cf:ef:48:8e:56:ba:3a:01:
b4:1a:84:dd:5c:42:6d:e0:cd:cc:32:47:cc:5d:8a:
30:6f:ee:6f:24:4c:99:01:bf:d5:d4:9f:8c:1a:57:
f0:4b:0e:74:f6:53:e6:eb:aa:0d:4f:a8:d2:44:48:
5e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:6A:42:50:D8:80:90:45:58:9F:63:24:61:E0:16:01:9A:92:C5:B4
X509v3 Authority Key Identifier:
keyid:D7:30:1F:77:27:53:D8:0A:7B:62:C2:D2:13:D3:47:A3:B9:EB:E8:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1zAfdydT2Ap7YsLSE9NHo7nr6IU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/77d6ee-a8e1-4b01-83cb-2f6769e75f24/1/tWpCUNiAkEVYn2MkYeAWAZqSxbQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/77d6ee-a8e1-4b01-83cb-2f6769e75f24/1/1zAfdydT2Ap7YsLSE9NHo7nr6IU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:45c7::/32
2a13:fd80::/32
Signature Algorithm: sha256WithRSAEncryption
30:c8:d8:46:70:6d:3f:40:e8:5b:ad:12:1a:19:85:1e:ae:2a:
8a:a6:06:4c:88:c7:07:90:de:7c:1d:98:e0:d4:e3:b6:f4:35:
a1:01:9e:bd:27:75:f4:19:30:07:ad:67:2b:08:2d:05:0a:a1:
de:bf:22:6c:85:3d:cd:a6:1e:bf:16:62:32:ee:b2:f6:38:e2:
59:30:7f:d0:74:27:88:14:c4:9c:fd:9b:5e:99:4a:7e:c5:61:
ab:df:17:c4:a5:70:98:d7:0d:6f:e0:86:94:31:04:36:70:76:
6b:67:b3:5e:dc:6a:da:95:87:9d:2d:b6:f0:a9:7c:65:32:9d:
70:db:70:2b:8a:bd:3f:80:ea:09:c9:9e:db:f6:67:4c:90:43:
36:49:22:21:03:b7:8f:f1:b3:95:35:41:97:14:3c:a8:ad:2a:
6a:6c:1c:a2:49:fe:f8:51:b8:58:66:aa:65:4e:fd:36:bf:82:
6b:aa:fc:47:2d:cb:89:1b:61:0d:5c:3e:00:72:0f:26:96:6c:
d1:8c:1f:f3:40:1a:e3:40:ca:79:31:64:b9:38:0e:7b:fc:6e:
6f:93:66:e5:4c:71:01:c5:28:ea:09:52:23:91:c4:87:28:3a:
9b:7d:cf:a1:6a:6e:37:7d:4d:29:f6:c1:7f:21:3d:6b:78:53:
48:4f:d6:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:24 2024 by rpki-client on console-fra.rpki-client.org