Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/WL5TK8JVGRFXH3rN9m99kXdMpsU.roa
File: WL5TK8JVGRFXH3rN9m99kXdMpsU.roa (raw, json)
Hash identifier: 4lofqV68HvKIQVp1O3zbQTYI02Ve54JwmoHlaG2yvGg=
Subject key identifier: 58:BE:53:2B:C2:55:19:11:57:1F:7A:CD:F6:6F:7D:91:77:4C:A6:C5
Certificate issuer: /CN=a5a975239fdd443b7d3d82e392a9e4ae39218ef6
Certificate serial: 0186C06D675B919622B3A5CD64B2AC9B1B99
Authority key identifier: A5:A9:75:23:9F:DD:44:3B:7D:3D:82:E3:92:A9:E4:AE:39:21:8E:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/WL5TK8JVGRFXH3rN9m99kXdMpsU.roa
Signing time: Wed 08 Mar 2023 08:54:00 +0000
ROA not before: Wed 08 Mar 2023 08:54:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 193.36.66.0/24 maxlen: 24
193.36.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c0:6d:67:5b:91:96:22:b3:a5:cd:64:b2:ac:9b:1b:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a975239fdd443b7d3d82e392a9e4ae39218ef6
Validity
Not Before: Mar 8 08:54:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58be532bc2551911571f7acdf66f7d91774ca6c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:f1:43:43:1a:65:c6:69:b3:cc:ba:7c:4d:43:
de:37:a1:ec:ca:ba:d8:28:58:1a:3b:6f:08:eb:da:
c5:ad:e6:89:32:bb:ea:37:4c:b8:f5:6e:92:1d:08:
f3:4a:e6:60:48:7d:ce:5f:bf:96:4e:64:62:03:52:
ba:92:fa:80:6d:05:74:97:50:a9:b1:d8:7e:b0:59:
da:0b:0e:ee:d6:f7:45:e5:66:6b:84:ec:fa:1b:b0:
94:0c:c2:a2:2c:58:42:f5:49:56:9e:ce:d4:ad:66:
24:de:8a:c3:71:84:4e:35:73:36:98:ed:40:a2:33:
49:ef:8e:06:90:de:1e:97:4e:e2:df:5f:7e:ce:6c:
69:5c:ef:29:7f:17:37:3a:1f:25:4c:2c:42:2d:ad:
67:42:4b:07:fd:a3:67:32:14:98:25:27:72:5e:08:
73:f8:9b:14:a5:d4:0b:6d:53:82:76:1c:95:4e:3e:
19:0d:69:2b:ce:2d:05:7d:0b:5f:b2:c6:7b:b4:6d:
f4:26:b2:db:4f:95:27:ac:30:bb:d0:e9:d3:dd:dc:
a3:ca:7c:80:9b:f6:fc:8a:32:d6:97:d3:74:34:05:
d3:45:54:66:a3:d1:ff:96:d5:29:fe:97:52:29:31:
2c:f5:7a:bf:de:9b:9f:24:3c:f0:13:58:6f:d0:e3:
56:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:BE:53:2B:C2:55:19:11:57:1F:7A:CD:F6:6F:7D:91:77:4C:A6:C5
X509v3 Authority Key Identifier:
keyid:A5:A9:75:23:9F:DD:44:3B:7D:3D:82:E3:92:A9:E4:AE:39:21:8E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/WL5TK8JVGRFXH3rN9m99kXdMpsU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.66.0/23
Signature Algorithm: sha256WithRSAEncryption
a9:39:9d:97:b4:ca:f1:3b:d4:89:33:f6:0f:cc:0d:f3:c9:06:
c1:fb:9c:65:95:2e:6c:71:e7:6b:1d:f7:3a:35:69:e2:d0:27:
da:12:09:9d:1d:6b:8d:43:2c:a1:f7:29:4e:e9:ac:b5:50:4b:
ac:24:b4:30:05:31:81:bd:48:bc:ce:d6:a1:10:79:78:be:1d:
b5:88:46:df:95:e5:59:a7:0c:af:10:a7:21:39:4a:0d:be:f8:
80:29:90:68:82:ce:3c:97:1f:91:42:47:80:bf:20:07:42:7b:
ec:eb:ca:96:20:28:28:34:b2:c7:1b:fb:32:d5:fd:c2:1c:3e:
37:3c:ec:ad:fa:ce:12:6d:75:e6:64:dd:be:8c:c8:36:73:ab:
f4:c6:e8:f3:03:0d:5a:3d:e8:65:c9:ae:26:cd:b0:92:62:7d:
24:62:ac:ae:0c:6f:cc:0a:55:58:df:e2:65:66:90:fa:da:d1:
0d:91:ef:43:ed:b5:3c:e1:c9:bb:9b:a8:ad:13:9b:ad:b0:f7:
75:c2:3f:d1:6e:d1:38:23:d1:45:35:f4:df:69:7c:57:1b:f8:
bf:07:00:e8:11:9e:9d:7d:30:23:af:5a:97:f3:3d:1e:ee:f6:
24:2c:da:a4:87:fb:2d:fc:66:b5:62:6a:fb:06:c5:e0:b3:2f:
b7:90:00:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:49 2024 by rpki-client on console-fra.rpki-client.org