Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/80aceb-50e2-40c0-a852-e298b41b6c81/1/wnZsa31tC1YFZpnUGRL9qA5yUgo.roa
File: wnZsa31tC1YFZpnUGRL9qA5yUgo.roa (raw, json)
Hash identifier: M79YgtgiVB4EhnBrjlThyeiowPBcqQPi0rPNAVqUuGQ=
Subject key identifier: C2:76:6C:6B:7D:6D:0B:56:05:66:99:D4:19:12:FD:A8:0E:72:52:0A
Certificate issuer: /CN=52a165dc3aafbe2c62e265ff104327a3e675f89f
Certificate serial: 01856FDDE2DEEFE88C33B1413E17F9F732A2
Authority key identifier: 52:A1:65:DC:3A:AF:BE:2C:62:E2:65:FF:10:43:27:A3:E6:75:F8:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqFl3Dqvvixi4mX_EEMno-Z1-J8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/80aceb-50e2-40c0-a852-e298b41b6c81/1/wnZsa31tC1YFZpnUGRL9qA5yUgo.roa
Signing time: Mon 02 Jan 2023 00:24:50 +0000
ROA not before: Mon 02 Jan 2023 00:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49453
IP address blocks: 2a0c:de80::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:dd:e2:de:ef:e8:8c:33:b1:41:3e:17:f9:f7:32:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a165dc3aafbe2c62e265ff104327a3e675f89f
Validity
Not Before: Jan 2 00:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2766c6b7d6d0b56056699d41912fda80e72520a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:12:66:25:19:fb:4b:e7:67:a8:69:ed:a9:f2:
41:64:e9:44:c1:1e:78:a2:ab:80:5c:45:3e:78:48:
87:08:7f:9f:7a:18:40:09:50:ec:d8:4c:49:51:ff:
89:d0:8d:3b:34:68:7b:5f:52:b3:27:ca:61:60:db:
b6:f8:a4:5e:96:0a:0b:5c:11:20:33:d4:db:18:aa:
24:70:c9:88:d0:00:b4:71:6c:52:46:0e:28:d1:43:
77:62:af:2b:7d:70:7b:34:d1:4c:3b:35:f3:c8:5c:
1d:f2:d8:c2:b1:3a:86:8c:1c:91:22:69:07:45:11:
3b:f2:af:ac:38:6d:ba:84:97:8e:94:99:9f:8b:c1:
94:9d:0a:90:6e:a4:32:98:b5:37:a2:6e:11:76:d7:
17:32:81:f9:21:68:65:6e:d9:c2:60:8c:d7:ee:80:
3f:d0:58:21:67:7c:5d:be:61:d0:2e:39:89:22:64:
d8:4d:2d:01:86:49:c4:da:97:43:4a:43:5d:a1:a5:
ef:14:43:59:69:de:8c:b9:79:5a:2f:df:1a:40:13:
05:ed:b8:20:af:c6:66:05:02:f1:ef:51:5b:53:ea:
27:11:c1:ba:7c:85:1b:2d:b8:fe:77:e8:e0:70:96:
73:3a:03:d4:77:f7:40:bc:59:76:fb:3c:26:da:5f:
7c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:76:6C:6B:7D:6D:0B:56:05:66:99:D4:19:12:FD:A8:0E:72:52:0A
X509v3 Authority Key Identifier:
keyid:52:A1:65:DC:3A:AF:BE:2C:62:E2:65:FF:10:43:27:A3:E6:75:F8:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqFl3Dqvvixi4mX_EEMno-Z1-J8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/80aceb-50e2-40c0-a852-e298b41b6c81/1/wnZsa31tC1YFZpnUGRL9qA5yUgo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/80aceb-50e2-40c0-a852-e298b41b6c81/1/UqFl3Dqvvixi4mX_EEMno-Z1-J8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:de80::/48
Signature Algorithm: sha256WithRSAEncryption
33:8b:dd:ac:29:d1:32:65:51:4e:e4:97:8b:fd:de:d7:be:c7:
c5:d5:d7:78:23:f0:f2:17:55:9d:da:52:dd:d3:65:4a:92:7b:
88:b7:66:99:c4:eb:d2:c6:99:b9:e6:1c:f1:53:d2:b2:61:ac:
f5:e9:54:1a:1f:1f:ae:28:d8:16:75:8d:74:dd:5a:f1:9a:1c:
8b:4f:31:a3:2a:b6:c8:c1:eb:77:67:0a:83:c6:3f:ef:b9:a7:
b8:88:91:b2:cf:99:c3:18:fc:1b:5d:dc:e3:3b:60:8a:02:38:
5f:fb:a7:1d:38:73:19:86:de:a8:ed:67:3b:43:4e:56:3a:97:
60:37:a3:a3:53:12:90:81:48:13:a8:e8:4c:b1:46:e1:65:14:
aa:51:f1:80:ec:a8:65:cf:61:20:28:22:0b:04:23:32:09:df:
4c:73:d8:f5:46:f3:cc:45:da:52:8f:2b:0a:bf:26:7e:eb:84:
b7:f3:3f:8e:24:8b:d4:65:8a:63:76:10:da:f4:07:5d:d3:da:
95:cf:01:74:2f:67:19:c0:53:bd:40:3f:7b:18:f9:0b:2a:27:
55:4f:cf:33:8f:bd:87:9d:19:d5:61:d1:61:bd:65:7a:aa:e2:
44:59:a0:0d:2c:7e:df:13:29:21:f4:1f:cb:91:d2:40:68:4e:
81:c0:79:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:23 2024 by rpki-client on console-fra.rpki-client.org