Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/W3W9LHdIfRqcvHtHlUkXte72C7w.roa
File: W3W9LHdIfRqcvHtHlUkXte72C7w.roa (raw, json)
Hash identifier: 4Fk+leCmAQrqOrrjkaRHUinGzgEj1KWVrhKVy3dr03I=
Subject key identifier: 5B:75:BD:2C:77:48:7D:1A:9C:BC:7B:47:95:49:17:B5:EE:F6:0B:BC
Certificate issuer: /CN=b4430ba11506741d676ea202e291ec7ec6191b17
Certificate serial: 018D1D8C5175B3EA62B0E0BD5FE1F596F872
Authority key identifier: B4:43:0B:A1:15:06:74:1D:67:6E:A2:02:E2:91:EC:7E:C6:19:1B:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tEMLoRUGdB1nbqIC4pHsfsYZGxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/W3W9LHdIfRqcvHtHlUkXte72C7w.roa
Signing time: Thu 18 Jan 2024 17:09:11 +0000
ROA not before: Thu 18 Jan 2024 17:09:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51225
IP address blocks: 2001:7f8:94::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 20 Jan 2024 19:19:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1d:8c:51:75:b3:ea:62:b0:e0:bd:5f:e1:f5:96:f8:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4430ba11506741d676ea202e291ec7ec6191b17
Validity
Not Before: Jan 18 17:09:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b75bd2c77487d1a9cbc7b47954917b5eef60bbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b0:74:ae:5f:b7:37:f1:85:41:42:e3:44:74:
de:1f:16:9d:a1:90:bf:59:bb:a8:ca:7b:e4:06:37:
ae:75:aa:a2:d7:c2:48:1a:13:99:d1:49:50:5d:a6:
cc:d5:d8:f6:e5:d3:5f:62:ea:54:f8:9f:27:aa:46:
4d:48:15:17:4b:4f:57:a5:cc:16:da:75:c3:62:43:
36:b3:57:7b:55:d5:fe:8c:06:6f:52:c9:64:ac:8d:
30:67:7b:24:11:c0:55:8e:31:b9:82:10:02:a2:39:
53:31:24:9d:0d:58:3a:90:48:46:c7:18:06:ab:81:
08:fa:94:b3:70:d7:10:3e:a1:f3:2c:7c:2d:61:12:
71:a4:7f:89:4e:9d:1e:56:14:4f:75:a2:9d:c1:20:
60:bc:af:95:c0:39:16:a6:c9:c1:e1:15:bd:cc:7f:
65:b1:de:ad:3d:cf:03:51:b5:5f:86:c5:9a:08:e7:
1c:09:34:47:70:23:4f:14:8e:51:89:2c:a9:f1:5c:
aa:e9:c1:93:a7:ab:c6:07:6f:97:de:e3:35:f7:b8:
3f:dd:bb:e0:29:d8:31:d4:32:7c:78:fd:f1:52:4c:
d7:8d:2e:31:a3:01:9b:b8:7a:c0:f7:af:b4:30:70:
90:c4:e8:6e:b9:08:b2:18:b6:06:ca:27:f2:10:74:
03:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:75:BD:2C:77:48:7D:1A:9C:BC:7B:47:95:49:17:B5:EE:F6:0B:BC
X509v3 Authority Key Identifier:
keyid:B4:43:0B:A1:15:06:74:1D:67:6E:A2:02:E2:91:EC:7E:C6:19:1B:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tEMLoRUGdB1nbqIC4pHsfsYZGxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/W3W9LHdIfRqcvHtHlUkXte72C7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:7f8:94::/48
Signature Algorithm: sha256WithRSAEncryption
6b:d3:67:c7:70:77:71:d1:92:68:55:0d:ab:e6:86:3b:45:85:
1d:61:39:1c:75:6c:00:d7:49:46:a6:58:d5:2d:39:42:25:7c:
80:03:5c:ec:5e:e7:44:63:41:c0:cb:a7:99:db:21:6f:d9:ad:
62:d0:6e:a0:d0:55:2f:25:bc:d2:55:b9:e6:a7:06:82:6e:31:
05:23:3b:88:fc:e3:b8:85:a2:30:c7:3e:7a:39:a8:71:7e:fd:
a2:d2:04:a5:10:9f:a6:bc:9f:f3:d3:f2:36:26:75:c8:b8:af:
0b:4e:8b:5a:18:d0:4e:ce:46:4d:88:f2:e6:34:0d:0d:70:7e:
e6:9b:3b:7e:84:dd:a4:c4:a1:6a:33:7a:fb:75:dc:a0:bc:8c:
a6:9b:68:88:6f:73:00:d4:2c:4f:7e:c9:37:20:05:b6:93:a3:
0b:dd:7f:6b:f0:ce:89:f8:5e:ff:5b:fb:ab:d6:d4:43:02:61:
67:31:c2:11:ac:b4:cd:19:40:73:41:3c:eb:9f:90:62:c2:5e:
c5:0f:89:b9:b8:e5:c0:6f:7b:83:cc:d1:0b:ce:a5:d5:8e:c5:
d2:63:d0:4b:82:65:58:84:31:1e:1b:95:b3:c6:59:34:78:17:
1c:a0:a4:44:51:e7:fd:49:20:73:75:0b:f7:bf:93:15:c9:6e:
a5:3e:ce:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:41 2024 by rpki-client on console-fra.rpki-client.org