Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/Wi-wJO6BdrFuPT3kyu_n2wvJy2Q.roa
File: Wi-wJO6BdrFuPT3kyu_n2wvJy2Q.roa (raw, json)
Hash identifier: EufMyVtRAdHJSV5NWn0ExsLP1v4KtpHTuwJuINI8zfk=
Subject key identifier: 5A:2F:B0:24:EE:81:76:B1:6E:3D:3D:E4:CA:EF:E7:DB:0B:C9:CB:64
Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071
Certificate serial: 0186502D0440B3BD5C931BDFF623A31D185D
Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/Wi-wJO6BdrFuPT3kyu_n2wvJy2Q.roa
Signing time: Tue 14 Feb 2023 13:46:12 +0000
ROA not before: Tue 14 Feb 2023 13:46:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34373
IP address blocks: 2a07:3500:1778::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:50:2d:04:40:b3:bd:5c:93:1b:df:f6:23:a3:1d:18:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071
Validity
Not Before: Feb 14 13:46:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a2fb024ee8176b16e3d3de4caefe7db0bc9cb64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f1:ef:8e:ce:1b:25:f5:f8:08:17:ec:57:b3:
8b:8e:1b:dd:8c:85:d3:ea:74:b8:69:ae:e4:78:00:
a5:88:32:5c:d5:c0:07:13:c8:75:ca:29:e3:32:04:
61:ca:3e:2c:ba:01:00:65:b5:7c:6e:86:74:cf:be:
c5:8b:45:24:7b:45:d3:cf:db:fe:37:37:04:58:6b:
95:62:9d:2b:73:3d:6f:6e:ca:da:e2:86:67:71:a6:
9d:70:17:b7:85:d1:81:9d:e6:bc:49:00:59:5f:03:
80:d8:7e:e1:ab:43:7d:52:8e:09:ab:3a:50:2c:fe:
44:72:44:e8:c9:30:3d:c4:f3:63:ea:0d:f3:a3:86:
43:41:81:54:e6:90:fa:76:4c:7c:6c:c7:34:2b:94:
9b:d0:1b:6a:31:76:cd:55:79:04:66:8b:f3:c2:e3:
32:82:74:fc:8f:80:d2:6b:b1:27:d4:c8:11:82:a8:
64:3f:31:be:29:66:aa:25:09:0b:3a:f0:9f:a8:25:
27:22:47:c9:de:a5:31:b0:84:cf:4c:41:73:d3:84:
ea:a8:82:f1:4d:31:87:a3:d4:3e:cb:98:72:58:e7:
ea:ee:70:4a:1b:ec:81:6c:34:91:36:31:27:5b:a1:
a5:45:bc:d7:d7:62:f3:7b:01:6f:55:b9:38:40:8f:
d3:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:2F:B0:24:EE:81:76:B1:6E:3D:3D:E4:CA:EF:E7:DB:0B:C9:CB:64
X509v3 Authority Key Identifier:
keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/Wi-wJO6BdrFuPT3kyu_n2wvJy2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:3500:1778::/48
Signature Algorithm: sha256WithRSAEncryption
7e:8f:17:45:d5:9c:31:26:1d:a7:ae:71:1f:54:4b:73:4e:22:
0d:c4:a8:a6:94:de:de:02:71:ed:39:e3:af:e5:32:df:04:22:
24:88:5d:42:77:69:90:4e:ae:8e:66:28:cf:60:6f:dd:0b:94:
a9:c7:91:5a:6e:c5:9b:2d:41:9c:17:8d:32:b4:f9:a9:84:e4:
04:8c:58:b7:17:18:56:4e:0b:55:66:d5:ee:fa:d6:c6:9a:2b:
22:5e:e6:26:14:6b:63:07:1c:3c:4e:21:b9:44:9d:17:1a:2d:
02:31:91:cc:ed:59:56:c8:6f:5a:ab:9c:0e:4f:8d:cb:00:2d:
8c:5c:5e:3c:ae:00:20:58:c7:a2:fe:24:5a:1f:c5:46:62:16:
ca:58:11:b1:15:fe:fe:04:94:d0:c5:0a:b8:9f:e4:33:7a:a3:
b4:3e:37:d5:d5:59:ad:53:13:e8:76:48:36:0f:e2:a9:09:3b:
84:9d:7e:69:96:04:0f:00:b8:df:8b:15:ae:25:04:bb:af:87:
cc:73:a6:24:31:8b:86:ef:6a:58:c2:76:9e:f9:13:d8:2d:e2:
9f:5d:ef:ab:38:7e:f8:d3:f2:ec:92:e5:e4:4c:28:2c:8b:b4:
ea:a0:b1:93:8d:10:7d:a5:eb:1e:f0:1d:e8:57:eb:e9:d1:f6:
9f:62:73:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:54 2024 by rpki-client on console-fra.rpki-client.org