Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/wIMqURy76fZXJD0wimkn9CALKrw.roa
File: wIMqURy76fZXJD0wimkn9CALKrw.roa (raw, json)
Hash identifier: Vu8xYeads4SplaKipVmTKx/Sg+6NGinRylGzA9FvgGc=
Subject key identifier: C0:83:2A:51:1C:BB:E9:F6:57:24:3D:30:8A:69:27:F4:20:0B:2A:BC
Certificate issuer: /CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Certificate serial: 01856BDC75C1B6CA79C9FC55372E1A68D133
Authority key identifier: 0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/wIMqURy76fZXJD0wimkn9CALKrw.roa
Signing time: Sun 01 Jan 2023 05:44:48 +0000
ROA not before: Sun 01 Jan 2023 05:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212359
IP address blocks: 2a0f:607:1024::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:75:c1:b6:ca:79:c9:fc:55:37:2e:1a:68:d1:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Validity
Not Before: Jan 1 05:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c0832a511cbbe9f657243d308a6927f4200b2abc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:20:b1:4b:87:7e:65:b8:2a:ae:d0:48:52:3d:
b3:ee:4b:ea:4a:96:6e:7d:56:1e:9b:c9:30:3e:0e:
3d:25:b0:39:57:d0:f3:01:ce:46:06:84:cd:09:23:
0c:bb:74:8c:64:68:0c:84:e1:67:18:0e:d0:be:0b:
18:fb:74:51:08:79:d6:a9:dc:0a:dd:0b:f2:3c:bc:
c7:46:20:6f:7b:2e:d2:9e:46:5b:dc:06:58:f9:50:
25:3f:44:55:8a:cf:2d:34:96:b1:03:f9:83:11:c5:
21:08:c9:69:87:ce:ae:6a:b3:ca:5c:f8:88:3b:7d:
cb:48:cd:c0:94:fc:fa:ec:6a:98:f0:b0:f4:83:68:
cf:40:0f:7b:2b:3c:1b:70:b1:18:47:d1:f4:09:05:
66:35:08:0c:73:99:f2:64:b8:94:9e:92:2d:e4:62:
b6:70:fb:77:6f:46:fb:95:39:3a:46:40:95:5d:08:
6e:58:3f:7c:10:45:8f:af:0f:4e:c5:2d:28:ed:d8:
ec:d8:ee:76:c1:b3:c8:d8:43:c0:48:ed:ea:af:d0:
f4:c7:5e:97:a5:9e:ea:e8:9d:0e:4d:1e:ec:ff:c9:
dd:1a:47:d2:c6:e6:0f:34:6b:8e:3f:75:62:d0:c2:
2c:53:34:53:b1:69:2c:44:8e:98:84:2f:d7:08:75:
b8:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:83:2A:51:1C:BB:E9:F6:57:24:3D:30:8A:69:27:F4:20:0B:2A:BC
X509v3 Authority Key Identifier:
keyid:0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/wIMqURy76fZXJD0wimkn9CALKrw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:607:1024::/48
Signature Algorithm: sha256WithRSAEncryption
3f:a4:a8:56:41:34:e5:ba:7d:6a:86:84:d3:1c:c7:7c:5c:71:
4b:ec:a7:04:25:77:f7:13:a3:5d:6d:50:5f:96:08:47:d6:5e:
0a:fd:f5:f2:2b:aa:02:16:ae:47:44:d1:5f:6e:e8:24:19:b1:
95:be:4c:a7:16:aa:01:10:0e:41:22:a8:3f:6b:4c:34:bb:c9:
d3:3c:39:e4:69:20:63:f2:c4:79:71:bd:39:2c:f2:fe:84:83:
fa:fe:cd:33:72:85:09:34:07:48:83:81:2e:38:92:b6:91:01:
63:21:a0:61:a9:7a:fc:8e:c6:e6:53:77:25:ce:c7:99:fe:29:
94:89:f3:a4:6e:9c:99:89:be:f5:f4:4f:21:58:4c:41:02:0f:
14:16:6f:ab:b7:c4:26:4b:d7:c9:e8:86:13:1d:cb:80:00:1a:
6f:71:8b:0e:9b:26:3b:dd:89:db:8e:de:44:d4:5b:9d:ac:22:
c6:f8:ee:47:da:33:ac:99:fb:44:28:6d:11:61:a8:f3:fa:23:
10:00:a7:29:db:23:74:8a:a8:e0:db:3a:d8:21:cd:ea:21:ad:
5c:aa:f2:66:7a:9b:c5:d8:b4:af:29:a9:df:58:39:ae:f2:84:
a7:4e:e2:98:32:4a:2b:53:d6:b4:99:4e:cb:67:f9:8c:f8:1e:
1f:16:8b:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:17:01 2024 by rpki-client on console-ams.rpki-client.org