Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/wF8ftO84pa_8wQ39zHBj6eMymso.roa
File: wF8ftO84pa_8wQ39zHBj6eMymso.roa (raw, json)
Hash identifier: f814v9Uw1Auuwq9SntIYq9RpJFaWFrxnYKRVImvbp6Q=
Subject key identifier: C0:5F:1F:B4:EF:38:A5:AF:FC:C1:0D:FD:CC:70:63:E9:E3:32:9A:CA
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 018B9525FACB071BB04BD0295F308DF1E01B
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/wF8ftO84pa_8wQ39zHBj6eMymso.roa
Signing time: Fri 03 Nov 2023 12:26:16 +0000
ROA not before: Fri 03 Nov 2023 12:26:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3175
IP address blocks: 2a11:4b42::/32 maxlen: 32
2a11:4b41::/32 maxlen: 32
2a11:4b43::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 03 Dec 2023 04:41:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:95:25:fa:cb:07:1b:b0:4b:d0:29:5f:30:8d:f1:e0:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Nov 3 12:26:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c05f1fb4ef38a5affcc10dfdcc7063e9e3329aca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:8c:f7:b1:1f:8a:a0:d3:a8:a1:6b:5f:bd:c7:
05:bc:60:ff:39:9d:78:b4:09:83:66:80:34:ae:3a:
8d:18:38:8a:8d:4c:42:fd:6d:08:9a:02:b7:56:76:
e9:d7:a5:96:73:26:6a:1b:be:40:71:1e:77:33:21:
69:c6:66:aa:4a:1e:1a:40:da:7a:f8:b2:aa:bf:22:
5e:70:a2:e5:5a:52:cc:1f:d5:ad:cf:c7:14:20:57:
a8:3d:ed:43:b0:d0:d8:6a:e7:d2:b5:02:d6:51:1c:
d6:05:31:fc:5c:9e:d0:06:6c:5b:27:40:86:2d:0a:
f8:2b:72:8a:34:f6:3d:6f:aa:16:58:b4:6c:41:99:
c0:13:75:54:44:6d:a6:58:6c:a4:54:37:f9:16:5b:
e8:d6:13:d2:93:3f:1b:bd:7e:6f:75:92:1a:1f:be:
56:d7:cd:e9:cc:11:57:ea:ed:13:72:27:6d:fb:12:
60:02:c9:e5:1c:68:9d:e7:44:93:80:0d:b3:66:59:
ac:9b:25:66:01:10:a7:c3:b5:89:9a:c5:ad:d7:5c:
8a:4d:ed:32:9b:5c:7e:1f:f3:64:93:30:f4:0e:a8:
b4:c4:5a:71:5d:c8:c5:2a:19:6a:19:db:83:55:31:
dd:9a:02:22:f0:b0:47:58:a1:21:b5:8e:4d:94:9d:
8d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:5F:1F:B4:EF:38:A5:AF:FC:C1:0D:FD:CC:70:63:E9:E3:32:9A:CA
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/wF8ftO84pa_8wQ39zHBj6eMymso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:4b41::-2a11:4b43:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
d4:78:ff:79:31:6a:91:eb:80:e2:e4:86:23:6a:13:b7:91:06:
c2:c1:94:79:cb:e6:2a:6a:93:a5:1b:27:b6:cf:6e:1b:6d:66:
09:a1:79:9e:83:25:3c:40:bd:4c:6d:39:7b:05:c9:1d:15:48:
5d:56:c4:82:80:da:7e:61:72:5d:0d:e9:a0:83:dd:ac:38:fe:
a6:5f:2c:ad:cf:97:d3:2c:3a:07:23:10:20:b3:61:1f:a4:8d:
09:bf:f9:60:5f:84:47:39:96:ee:74:22:ce:d4:13:15:85:29:
da:7b:60:37:f4:6e:81:02:b8:fd:92:84:3e:63:80:e6:b3:dc:
ae:02:99:9e:bb:5c:81:09:88:d3:d4:ab:49:ef:45:12:fc:5e:
5e:68:04:b9:28:d0:5d:c6:fa:93:da:65:1f:53:22:38:f3:84:
45:0b:81:a1:9c:17:bc:41:59:7f:2e:31:15:42:5d:51:b1:50:
68:d5:66:f3:52:68:71:37:a2:63:2e:95:1c:54:a6:47:eb:c8:
37:01:a2:d0:10:22:73:58:94:b7:41:2c:bb:cb:87:a4:2e:78:
87:46:fd:98:b2:9f:6c:e7:60:40:ae:6a:4b:fe:c6:23:b9:d3:
c4:77:2c:21:c9:0e:b3:61:56:12:c6:9a:b9:d3:e4:40:0e:19:
52:83:a2:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:01 2024 by rpki-client on console-fra.rpki-client.org