Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/WbYstWYvzGcek8_kDhTFbJgfexo.roa
File: WbYstWYvzGcek8_kDhTFbJgfexo.roa (raw, json)
Hash identifier: 8h5oNyAMg9fayJYhJyx8BO4P9yE/XmPWEQnP7pve2Lg=
Subject key identifier: 59:B6:2C:B5:66:2F:CC:67:1E:93:CF:E4:0E:14:C5:6C:98:1F:7B:1A
Certificate issuer: /CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Certificate serial: 01857246F110372B2648ACD14C906A67BFD8
Authority key identifier: 76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/WbYstWYvzGcek8_kDhTFbJgfexo.roa
Signing time: Mon 02 Jan 2023 11:38:49 +0000
ROA not before: Mon 02 Jan 2023 11:38:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200300
IP address blocks: 2001:678:7e8::/48 maxlen: 56
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:f1:10:37:2b:26:48:ac:d1:4c:90:6a:67:bf:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Validity
Not Before: Jan 2 11:38:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59b62cb5662fcc671e93cfe40e14c56c981f7b1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:02:16:82:3d:ce:60:41:7d:4c:06:32:f5:8a:
96:82:6a:27:16:03:42:c7:61:be:87:0d:59:56:39:
96:10:a6:a4:91:1b:e3:ff:1e:d5:e3:fa:2a:5c:65:
41:d5:99:24:0c:86:6f:22:80:bd:c8:3b:4c:6f:2d:
ae:32:c3:46:23:29:13:45:b4:91:ae:e2:32:a4:b5:
1a:b0:11:3a:61:f8:36:a1:88:c5:80:46:aa:36:7c:
60:55:79:64:80:2e:3b:5d:4e:db:76:e4:e4:15:bc:
06:bb:1a:10:8d:62:f0:9a:12:5e:68:8b:a8:db:c1:
27:71:36:19:b2:ad:09:e8:3d:45:19:07:06:62:7d:
65:f8:b9:c3:c7:8c:ab:85:09:2b:3d:58:f2:7f:45:
82:1f:93:12:f9:00:b1:21:31:88:2a:46:a4:41:1d:
d7:2e:12:31:51:64:3e:58:21:5b:85:ca:54:8b:83:
11:6f:01:fc:07:91:32:e7:6f:38:ee:92:23:81:70:
eb:67:f3:06:51:dc:fd:4a:76:b5:b5:d0:a2:e1:48:
b2:2b:ff:e7:db:09:1a:72:cc:6c:54:46:be:0c:f8:
0a:24:cc:3d:2f:64:20:8a:fc:bc:fe:5f:08:26:d2:
e9:34:30:e2:f2:40:3a:54:25:2c:bc:cb:c4:8a:46:
cc:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B6:2C:B5:66:2F:CC:67:1E:93:CF:E4:0E:14:C5:6C:98:1F:7B:1A
X509v3 Authority Key Identifier:
keyid:76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/WbYstWYvzGcek8_kDhTFbJgfexo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:7e8::/48
Signature Algorithm: sha256WithRSAEncryption
76:d4:04:dc:c4:04:1f:ea:ea:92:58:d6:95:9d:1b:43:d9:14:
89:38:72:cd:fc:12:54:11:ca:0c:c0:54:da:fa:7d:56:53:36:
eb:cb:8c:f1:01:d3:92:b2:9f:d7:9a:33:30:43:b3:02:00:99:
21:4e:08:ec:01:1f:aa:33:8c:a6:d3:9b:73:15:b0:37:18:e3:
d1:0c:90:28:01:75:1d:ef:1c:a0:20:92:4a:d3:27:71:d8:e8:
cc:23:cf:c6:85:aa:0e:29:fb:86:9e:46:39:f3:40:f3:ce:2e:
ec:dc:bb:c0:83:2b:e9:2e:0f:94:d5:b8:05:fd:86:6c:0a:fd:
9f:52:b3:d1:4d:dc:a6:a6:d7:13:02:24:1f:a3:b3:31:54:d1:
91:b0:5f:e0:79:6a:fa:15:3f:d5:92:b3:af:eb:2b:77:9f:d2:
4b:f5:28:57:c6:2e:88:7f:8f:7c:e0:b1:da:9c:e4:20:c9:9f:
c3:46:5b:49:80:5b:91:5a:2e:c0:5b:b2:30:16:c7:d8:d2:de:
97:47:6b:69:77:cc:51:ca:1f:77:31:41:a3:b7:c7:14:88:38:
1b:a9:4d:dc:66:cd:e8:b2:ea:b7:8d:6a:5e:b6:ee:80:f5:96:
77:9b:52:d5:66:ed:fa:be:21:ca:c4:ea:13:74:82:f1:02:aa:
ab:2f:c8:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:16:55 2024 by rpki-client on console.sobornost.net