Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/8ccf07-1e8b-411f-b043-4641ab6e4bfb/1/whi4pSRy3yvn-Y8FCU6g2u7Nij4.roa
File: whi4pSRy3yvn-Y8FCU6g2u7Nij4.roa (raw, json)
Hash identifier: T0z1Bl2FFra9qy/zKdo78BJZeIO0fqmqGC2O4pylCCE=
Subject key identifier: C2:18:B8:A5:24:72:DF:2B:E7:F9:8F:05:09:4E:A0:DA:EE:CD:8A:3E
Certificate issuer: /CN=bd5c08323ac27ab6553a5a69a73a58f802423d68
Certificate serial: 018F0AAAACC41C36C908F81B6A1245F198CD
Authority key identifier: BD:5C:08:32:3A:C2:7A:B6:55:3A:5A:69:A7:3A:58:F8:02:42:3D:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vVwIMjrCerZVOlpppzpY-AJCPWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/8ccf07-1e8b-411f-b043-4641ab6e4bfb/1/whi4pSRy3yvn-Y8FCU6g2u7Nij4.roa
Signing time: Tue 23 Apr 2024 11:15:08 +0000
ROA not before: Tue 23 Apr 2024 11:15:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15659
IP address blocks: 2a03:96e0::/33 maxlen: 33
Validation: Failed, certificate revoked on Wed 24 Apr 2024 10:20:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:0a:aa:ac:c4:1c:36:c9:08:f8:1b:6a:12:45:f1:98:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd5c08323ac27ab6553a5a69a73a58f802423d68
Validity
Not Before: Apr 23 11:15:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c218b8a52472df2be7f98f05094ea0daeecd8a3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:04:02:7a:05:ed:38:07:ce:2b:3f:ba:6e:bb:
71:3b:16:b7:a4:16:68:27:0b:6d:09:15:a2:b5:71:
66:32:94:4d:09:7c:d5:c4:58:21:3c:36:0f:41:3d:
57:1d:95:0a:fa:a6:e5:de:c8:76:4e:fe:ea:3e:27:
71:53:c9:d5:36:46:29:31:13:d6:5a:25:3f:2f:9b:
6a:95:6e:cb:59:61:ad:40:26:ff:74:94:09:c8:90:
d0:a3:1d:e8:b4:cd:49:a3:14:51:75:10:cd:0a:66:
1f:8e:ec:09:7c:64:0b:69:16:e4:a3:a6:50:ef:e6:
a4:51:9f:91:d4:de:e2:bf:d7:dd:5b:17:a9:7e:02:
d4:26:91:5e:f8:22:7f:a7:7f:68:4c:4c:57:80:0a:
59:23:11:ea:d9:e5:56:2c:60:15:ad:59:0c:e9:67:
7a:94:e3:a6:d4:56:6e:42:46:98:26:c3:88:d8:c0:
27:96:c1:75:64:00:cb:58:02:46:49:96:02:86:ee:
0b:39:ca:52:f8:45:58:dd:1b:d5:11:83:c2:6b:89:
70:14:5e:5a:71:ce:78:ed:73:13:ee:06:69:9b:8c:
45:ab:45:32:dd:5e:eb:9c:9b:69:2b:08:c1:90:77:
3a:24:81:81:3a:8b:10:3e:f1:e0:ee:ef:14:37:57:
72:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:18:B8:A5:24:72:DF:2B:E7:F9:8F:05:09:4E:A0:DA:EE:CD:8A:3E
X509v3 Authority Key Identifier:
keyid:BD:5C:08:32:3A:C2:7A:B6:55:3A:5A:69:A7:3A:58:F8:02:42:3D:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vVwIMjrCerZVOlpppzpY-AJCPWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/8ccf07-1e8b-411f-b043-4641ab6e4bfb/1/whi4pSRy3yvn-Y8FCU6g2u7Nij4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/8ccf07-1e8b-411f-b043-4641ab6e4bfb/1/vVwIMjrCerZVOlpppzpY-AJCPWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:96e0::/33
Signature Algorithm: sha256WithRSAEncryption
00:93:fd:d2:59:bb:5f:5a:c9:82:d2:b2:1a:a9:95:87:51:d5:
e2:43:28:84:7d:c6:3a:2b:ac:c2:3d:9c:54:79:d6:34:12:e6:
79:69:57:0b:c3:ad:8a:cc:ca:36:ad:ef:da:ec:ae:a6:44:fa:
f3:ac:01:82:9f:14:ef:47:6e:db:74:70:c7:5c:2a:1f:97:ad:
1b:47:ce:0f:98:f2:2d:68:ac:92:51:67:0a:af:08:7f:99:c4:
bb:9a:69:7c:0c:86:ad:5c:f4:6a:99:c1:10:e6:ba:e0:a0:1f:
d7:69:af:ef:e4:dc:3d:7d:30:1c:7b:ea:8c:4a:e8:89:a7:7d:
8f:5e:47:4b:a0:6c:4a:4f:05:06:81:9f:bb:85:57:69:9f:ca:
3e:26:40:14:ea:43:f2:3f:74:33:81:7e:5b:96:ac:9e:fb:c5:
a0:43:b2:2d:27:5a:9a:e7:17:08:4f:65:56:ba:17:b6:1f:cb:
6b:3a:2a:9f:cc:4e:3b:24:f6:bf:a2:c4:98:dd:53:6b:37:a8:
50:66:13:c7:e7:cc:31:8e:ee:dd:22:01:ad:57:2a:f5:42:86:
d5:59:ca:1f:3d:b5:66:c2:97:60:01:f8:e6:d4:be:37:ad:49:
75:6c:06:9b:2c:e3:30:68:e9:09:f2:33:2a:cf:05:94:f8:13:
ff:4d:c3:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:50 2024 by rpki-client on console-ams.rpki-client.org