Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/f98014-f1c9-4a3a-af33-b03ef3f03228/1/WI227Mz8btZeWMhUxJcc7bT4L_Y.roa
File: WI227Mz8btZeWMhUxJcc7bT4L_Y.roa (raw, json)
Hash identifier: Y2UOxQD8G5zLesIGlo/DIgGFReSn7CqMbcu7M/18VJM=
Subject key identifier: 58:8D:B6:EC:CC:FC:6E:D6:5E:58:C8:54:C4:97:1C:ED:B4:F8:2F:F6
Certificate issuer: /CN=fe5d4cde098d1ca87f4e0a9eeb855928e83d293e
Certificate serial: 018C0B7848C34C6C15C3A4D16D8C32A725BE
Authority key identifier: FE:5D:4C:DE:09:8D:1C:A8:7F:4E:0A:9E:EB:85:59:28:E8:3D:29:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_l1M3gmNHKh_Tgqe64VZKOg9KT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/f98014-f1c9-4a3a-af33-b03ef3f03228/1/WI227Mz8btZeWMhUxJcc7bT4L_Y.roa
Signing time: Sun 26 Nov 2023 11:51:21 +0000
ROA not before: Sun 26 Nov 2023 11:51:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200149
IP address blocks: 2001:67c:2f08::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:0b:78:48:c3:4c:6c:15:c3:a4:d1:6d:8c:32:a7:25:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe5d4cde098d1ca87f4e0a9eeb855928e83d293e
Validity
Not Before: Nov 26 11:51:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=588db6ecccfc6ed65e58c854c4971cedb4f82ff6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e5:d9:a1:1b:f4:13:3f:7e:a6:04:01:bf:85:
81:5f:ce:b7:2c:e5:d9:32:bf:95:45:26:69:41:58:
2d:12:e7:ca:44:31:39:f7:4d:53:1c:e3:94:68:da:
9e:71:8e:68:99:e9:ba:b9:36:ae:e2:d4:bd:46:a9:
ae:59:a6:4e:06:a8:b0:d3:7c:20:87:4d:54:46:5e:
e5:0d:ed:1b:e2:e6:2b:e7:b0:ec:e2:df:36:f4:e1:
03:ab:2f:5b:2e:ee:d1:99:12:e8:24:9b:db:0c:35:
4a:d1:4e:1d:05:d8:4a:80:7e:8c:74:b9:8d:fc:c0:
74:4f:c5:b3:be:5d:25:83:98:95:1b:f1:85:a9:ec:
02:31:a6:a5:bf:48:cc:3b:ed:6c:eb:91:9f:2d:10:
9e:f4:15:c6:19:2a:70:f2:f3:89:0f:81:d9:22:27:
65:27:16:2e:11:2d:dd:18:ac:4d:af:31:9c:61:a9:
13:cb:01:4b:1c:ca:36:20:de:ef:75:53:2a:93:a6:
15:e9:70:96:b5:c6:cb:b7:37:4b:28:15:f0:63:92:
e5:f7:fd:f0:cc:88:f4:ff:47:d7:2f:1c:36:50:57:
d8:85:6a:6a:39:34:b1:79:da:5c:43:f1:b9:57:97:
7b:d8:83:a2:dc:9f:5d:84:f0:f6:e7:a1:fd:9d:9c:
de:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:8D:B6:EC:CC:FC:6E:D6:5E:58:C8:54:C4:97:1C:ED:B4:F8:2F:F6
X509v3 Authority Key Identifier:
keyid:FE:5D:4C:DE:09:8D:1C:A8:7F:4E:0A:9E:EB:85:59:28:E8:3D:29:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_l1M3gmNHKh_Tgqe64VZKOg9KT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/f98014-f1c9-4a3a-af33-b03ef3f03228/1/WI227Mz8btZeWMhUxJcc7bT4L_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/f98014-f1c9-4a3a-af33-b03ef3f03228/1/_l1M3gmNHKh_Tgqe64VZKOg9KT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2f08::/48
Signature Algorithm: sha256WithRSAEncryption
1c:3f:e7:66:e1:9f:48:e3:51:8b:d6:21:de:a3:25:fa:8e:4e:
81:53:08:16:ed:b3:27:82:78:a3:80:9a:10:cd:80:5a:bb:5c:
13:f8:51:a6:1e:f3:97:50:db:c6:a4:bd:58:c0:c3:c9:a9:1d:
86:5d:0a:34:a7:0e:d0:ee:08:51:0d:1f:3c:d7:2f:bf:3d:dc:
e7:66:ab:c7:f5:6e:53:bc:64:68:60:68:eb:29:92:6f:63:a5:
d9:19:a2:c7:4d:a8:19:e2:35:9d:c2:4f:34:44:17:81:07:f5:
47:04:68:64:53:51:35:61:4e:80:f9:07:75:c7:b0:4e:3a:ce:
9d:e4:33:0a:a5:5e:90:36:d3:1f:82:ee:76:95:b7:9a:4c:0a:
d4:42:11:c3:45:d0:45:fe:9b:15:54:bb:cc:5e:64:a5:cf:b0:
22:0b:b0:1a:79:03:2b:0e:b9:c7:e6:bf:0a:43:f5:09:99:ed:
80:b5:28:5e:ad:92:01:e4:33:c7:17:7f:76:e2:f0:fc:a0:73:
24:8a:f0:e5:1f:7c:0a:bc:4d:0b:8c:40:89:ac:45:97:9f:e9:
01:1a:83:e2:50:49:41:e8:fc:58:0e:5d:fb:ad:88:c8:31:6e:
1e:ea:bf:d1:8e:d1:33:b1:03:50:76:e9:80:bd:12:ee:d8:cf:
39:15:38:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:58 2024 by rpki-client on console-fra.rpki-client.org