Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/WdaSBHoQoF_DSRP2D1uyISFuJf0.roa
File: WdaSBHoQoF_DSRP2D1uyISFuJf0.roa (raw, json)
Hash identifier: TnptRV+/kn2aLbqtHgWavu0GhkZdtGw3x0Cu93cpytM=
Subject key identifier: 59:D6:92:04:7A:10:A0:5F:C3:49:13:F6:0F:5B:B2:21:21:6E:25:FD
Certificate issuer: /CN=aace6725a0a0ddd1680480a83785d2cd57bf6ab0
Certificate serial: 018F72D2C1DC53DD83D02B5E8CE673C56072
Authority key identifier: AA:CE:67:25:A0:A0:DD:D1:68:04:80:A8:37:85:D2:CD:57:BF:6A:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qs5nJaCg3dFoBICoN4XSzVe_arA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/WdaSBHoQoF_DSRP2D1uyISFuJf0.roa
Signing time: Mon 13 May 2024 16:39:25 +0000
ROA not before: Mon 13 May 2024 16:39:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200443
IP address blocks: 2a13:5f40::/39 maxlen: 39
Validation: Failed, certificate revoked on Tue 14 May 2024 09:52:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:72:d2:c1:dc:53:dd:83:d0:2b:5e:8c:e6:73:c5:60:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aace6725a0a0ddd1680480a83785d2cd57bf6ab0
Validity
Not Before: May 13 16:39:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59d692047a10a05fc34913f60f5bb221216e25fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ec:0b:80:5f:4c:20:b5:41:4c:92:8e:ed:40:
41:92:76:b7:48:5a:3d:65:98:71:33:24:3d:27:5d:
03:c6:75:c1:0d:b8:af:cf:74:a5:17:4d:cc:7f:96:
8a:33:3e:8f:75:b3:9c:27:9c:39:23:89:6c:96:45:
a6:7d:ee:da:9f:76:a6:b3:eb:da:0a:f8:c7:5c:3b:
b5:f3:7b:8c:c2:a7:0f:f4:1e:10:b7:5e:14:a0:c3:
6a:fe:b2:85:42:ac:a1:4d:b5:47:10:0a:9b:2b:3d:
f1:42:ba:9d:76:b1:42:90:a8:db:28:b9:9e:a4:83:
e9:dd:28:8d:1d:25:71:81:c6:00:51:67:ca:75:9e:
77:2c:c2:b5:a0:14:22:14:dc:90:79:e2:05:9e:92:
85:8e:00:92:f4:b0:85:3b:9a:bc:98:6c:20:14:b9:
55:19:77:ed:bc:a2:20:61:cb:ce:c0:3f:c1:4b:66:
7d:d0:d6:fc:59:e5:1b:d5:9b:f7:87:71:b9:ea:e5:
d0:03:55:1f:df:39:9e:67:0d:34:78:e8:9c:68:de:
ec:c7:9c:ec:c4:bb:aa:62:46:cf:97:c4:c6:06:9d:
95:c4:8e:d6:dd:02:e3:f3:31:bd:ca:8c:00:f6:e3:
82:fe:b4:b4:c7:5d:88:17:e9:60:8b:de:85:03:a7:
b6:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:D6:92:04:7A:10:A0:5F:C3:49:13:F6:0F:5B:B2:21:21:6E:25:FD
X509v3 Authority Key Identifier:
keyid:AA:CE:67:25:A0:A0:DD:D1:68:04:80:A8:37:85:D2:CD:57:BF:6A:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qs5nJaCg3dFoBICoN4XSzVe_arA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/WdaSBHoQoF_DSRP2D1uyISFuJf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/qs5nJaCg3dFoBICoN4XSzVe_arA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5f40::/39
Signature Algorithm: sha256WithRSAEncryption
60:df:ae:2d:e5:98:90:9b:24:6a:7f:f6:cd:a6:3c:ec:7c:da:
ef:d5:c7:80:ef:f0:97:f1:2a:d1:c8:f3:c2:b6:dd:ee:2b:ea:
08:92:22:b5:44:00:b0:e4:02:27:e4:6b:98:78:cb:98:be:64:
dc:21:fd:21:6b:b4:71:93:59:b8:8a:ec:1b:a4:4e:ca:43:c3:
1e:66:bf:69:1a:5a:0a:fc:ab:42:6b:1c:77:8e:00:68:34:d0:
81:2f:68:76:43:fc:a3:7e:2d:17:8c:1d:4b:b4:39:3f:a6:98:
b2:5e:a9:07:3d:be:6f:c3:17:5a:99:7b:70:ab:05:6d:1a:ee:
de:e7:3e:9d:ac:85:6a:fb:fc:b5:57:a3:0a:dd:85:5b:4f:d8:
d9:4f:9f:c3:26:a3:f4:d3:90:37:be:76:e6:e2:fb:bd:f5:7f:
8e:a2:71:81:8f:c9:7f:98:8d:33:de:f0:92:8b:ab:f4:33:1b:
33:79:4d:f3:86:32:be:10:8a:89:b1:70:b2:8b:15:4a:fe:b0:
3d:89:df:20:c0:3a:0c:49:fb:b6:36:25:03:67:58:85:d2:d1:
be:22:d7:73:4e:6b:9a:84:98:05:22:48:0e:d9:38:0c:ff:e9:
19:db:06:0b:26:18:60:b0:3d:4a:ba:49:7d:72:74:72:3b:89:
7a:93:26:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:40:28 2025 by rpki-client