Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/MWir46o8YMp9ROlZmTtGr4At6wk.roa
File: MWir46o8YMp9ROlZmTtGr4At6wk.roa (raw, json)
Hash identifier: znhGplqWeNkJZyX6IBEtcGE4Q7UFo6GG2MCfCWXoXH4=
Subject key identifier: 31:68:AB:E3:AA:3C:60:CA:7D:44:E9:59:99:3B:46:AF:80:2D:EB:09
Certificate issuer: /CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Certificate serial: 01856BDC6EDD70723C9E73774D5EABBB4B0F
Authority key identifier: 0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/MWir46o8YMp9ROlZmTtGr4At6wk.roa
Signing time: Sun 01 Jan 2023 05:44:46 +0000
ROA not before: Sun 01 Jan 2023 05:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207469
IP address blocks: 2a0f:607:1053::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:6e:dd:70:72:3c:9e:73:77:4d:5e:ab:bb:4b:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Validity
Not Before: Jan 1 05:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3168abe3aa3c60ca7d44e959993b46af802deb09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c2:50:2d:f3:aa:5e:a9:04:1b:bf:d5:49:03:
26:67:10:04:74:91:d2:8f:fa:7a:28:11:98:97:00:
0b:74:0b:53:02:52:1d:e6:93:c1:77:79:65:43:c1:
fe:76:6b:15:29:88:f4:32:8e:8e:99:47:fc:92:0d:
7e:4a:8d:f6:71:0b:6a:83:5a:65:bc:be:66:c5:8e:
dc:3e:15:0c:60:78:97:1b:06:d4:5d:2f:3e:44:95:
36:69:f3:3e:6e:c4:db:e0:8d:cf:f1:41:f3:ef:3c:
53:49:4f:f0:9b:3f:52:1b:6d:44:5d:cd:11:1a:eb:
dd:e7:2c:11:00:fb:66:ac:9a:f1:12:fd:0f:28:78:
ff:f4:1d:ee:6f:f1:15:12:7d:6c:dc:91:c6:d2:c6:
3f:d1:2f:39:98:51:5f:f2:c2:57:f4:cf:af:8a:45:
65:54:9a:2c:0e:aa:3a:c6:46:0b:41:de:fd:d0:a4:
de:11:25:54:8c:f7:db:1d:0b:43:cc:81:61:8c:fa:
7a:1e:ee:3c:03:79:d2:ad:71:0e:63:1b:0d:1a:c1:
4d:6d:da:ce:7a:c6:7a:c3:72:6f:c1:97:c9:17:7b:
8d:3d:1f:11:78:45:17:e7:70:ef:57:56:2a:66:c4:
6b:4f:53:54:1d:ba:8a:84:f9:1f:44:5c:65:c8:4b:
4a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:68:AB:E3:AA:3C:60:CA:7D:44:E9:59:99:3B:46:AF:80:2D:EB:09
X509v3 Authority Key Identifier:
keyid:0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/MWir46o8YMp9ROlZmTtGr4At6wk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:607:1053::/48
Signature Algorithm: sha256WithRSAEncryption
34:bc:5b:79:d3:a2:55:fb:97:6a:f9:37:06:b4:f0:ea:1b:46:
b9:eb:2b:6f:26:13:d3:b3:b9:a3:44:6f:f9:87:ae:18:f7:25:
fe:fc:24:27:fa:09:b1:20:ca:b7:14:15:f6:d2:df:be:8d:e7:
f1:37:26:cc:a6:2a:16:96:de:ce:2f:b3:47:8f:ec:49:e5:e4:
93:bc:62:2a:0b:d8:15:f3:90:23:5e:87:5f:82:51:7a:33:ab:
50:06:82:bc:3d:89:68:be:8a:d6:a9:6f:05:fd:56:e9:dc:65:
24:d2:bb:d4:79:62:d3:39:56:c4:60:b1:bd:ad:92:c8:80:50:
e0:f1:f3:eb:59:92:54:cd:cc:7e:60:e6:5e:57:08:d2:48:f9:
7c:dd:6e:7c:99:56:01:a3:5f:25:47:6d:c3:2b:75:10:c7:69:
2e:fc:02:2c:76:37:26:6b:e8:fe:a5:db:93:6a:ed:46:36:2a:
d6:fb:64:28:e6:b5:30:c3:de:3c:bc:25:09:6a:cc:5a:bf:b3:
84:c0:3f:01:ab:83:7a:ae:49:ad:89:4c:d0:43:ed:2d:a5:31:
17:bc:9f:01:45:0b:7a:af:90:b2:c4:ca:fa:7c:cb:d8:12:83:
b9:f1:1e:34:63:65:e0:ba:c1:77:46:cc:b6:0a:89:68:20:83:
23:1c:99:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:14 2024 by rpki-client on console-fra.rpki-client.org