Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/WtbX_VNHO04e8RTYTd_IJkAwSXM.roa
File: WtbX_VNHO04e8RTYTd_IJkAwSXM.roa (raw, json)
Hash identifier: KglbfFJfqjEqAjT1byRRiTmVyWXZf/H4+dToVlWBVaY=
Subject key identifier: 5A:D6:D7:FD:53:47:3B:4E:1E:F1:14:D8:4D:DF:C8:26:40:30:49:73
Certificate issuer: /CN=3bd543d0465ea2f6feb828f18504b03f403ac669
Certificate serial: 01857227E2BD5799DD2310522DABAA26DCA6
Authority key identifier: 3B:D5:43:D0:46:5E:A2:F6:FE:B8:28:F1:85:04:B0:3F:40:3A:C6:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O9VD0EZeovb-uCjxhQSwP0A6xmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/WtbX_VNHO04e8RTYTd_IJkAwSXM.roa
Signing time: Mon 02 Jan 2023 11:04:54 +0000
ROA not before: Mon 02 Jan 2023 11:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57395
IP address blocks: 194.26.16.0/24 maxlen: 24
2a11:9400::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:27:e2:bd:57:99:dd:23:10:52:2d:ab:aa:26:dc:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bd543d0465ea2f6feb828f18504b03f403ac669
Validity
Not Before: Jan 2 11:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ad6d7fd53473b4e1ef114d84ddfc82640304973
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ba:b9:64:38:22:45:8e:fb:e2:9b:37:30:dd:
4f:d7:62:5c:ec:8d:28:0a:4d:23:82:bc:9b:6a:f5:
a8:16:67:09:94:6b:1c:a6:cd:d6:f5:5d:b3:ff:fa:
0c:15:3d:e6:f1:0e:61:83:3a:29:60:79:25:27:3e:
7d:bb:a4:ad:6e:29:43:ae:79:1c:d0:79:b6:a9:78:
b4:3e:62:d5:9a:8e:8b:1a:e8:ed:bc:ac:07:89:f7:
da:b8:cf:9e:f9:d7:12:4f:5b:5f:44:ff:79:a0:b2:
13:58:16:8c:1d:2e:1a:76:20:6a:f7:d5:c6:c1:08:
de:ef:af:d4:b6:1a:bc:f5:0b:1b:a5:53:a8:b7:ca:
8e:60:ef:39:e8:6b:b1:9c:84:99:0b:b2:7f:c3:eb:
f7:15:2b:83:14:83:2f:94:0d:60:ad:fa:5a:3f:f3:
00:53:36:19:c6:ff:21:97:65:e0:f5:7d:3c:f9:6f:
e3:60:52:8b:bd:12:f4:ab:02:3e:35:8e:f4:da:f7:
02:a3:fd:01:52:d6:30:ca:41:c4:be:b6:65:4c:03:
06:87:86:8b:f7:a6:44:42:b2:c6:2c:70:2e:6b:80:
42:30:39:7b:88:af:b7:21:3b:d4:cc:7b:d5:ba:6b:
9d:c2:c0:c8:8c:95:af:6b:ab:e1:4b:1a:36:92:6f:
47:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:D6:D7:FD:53:47:3B:4E:1E:F1:14:D8:4D:DF:C8:26:40:30:49:73
X509v3 Authority Key Identifier:
keyid:3B:D5:43:D0:46:5E:A2:F6:FE:B8:28:F1:85:04:B0:3F:40:3A:C6:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9VD0EZeovb-uCjxhQSwP0A6xmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/WtbX_VNHO04e8RTYTd_IJkAwSXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/78fea9-efac-4983-ac2b-df45054dd934/1/O9VD0EZeovb-uCjxhQSwP0A6xmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.16.0/24
IPv6:
2a11:9400::/32
Signature Algorithm: sha256WithRSAEncryption
37:e0:06:db:1b:1b:a4:1a:54:c0:a7:55:07:18:12:2c:30:57:
c7:45:b2:6d:74:de:69:12:03:e4:6e:ca:ef:bd:c4:a4:bb:80:
2e:e7:b8:1c:bb:c4:6c:1a:7e:ab:38:16:20:14:a4:39:ae:20:
b2:45:58:7a:e6:b0:79:ca:d1:a0:50:a1:a9:99:fd:5f:0f:2f:
3d:e6:a0:18:62:69:ed:af:87:ac:e2:93:24:62:2f:80:71:62:
b1:f6:de:5d:ca:66:9f:1f:04:4e:88:50:05:f2:17:d5:f2:9e:
07:fd:58:f4:70:ed:b1:56:de:9f:22:fe:63:90:11:aa:a9:79:
e2:92:d9:a5:dc:bc:db:c5:d6:93:70:06:0c:7f:13:9a:d8:8b:
f3:03:63:a6:bc:d0:2f:0f:66:3c:9e:e2:8b:f1:e2:ed:8e:65:
62:18:95:db:be:5e:ad:91:dd:4a:a5:56:69:86:73:91:bc:88:
56:ac:ec:bc:ae:f4:ac:54:53:bf:fd:d6:af:46:70:57:22:17:
45:84:33:0c:67:b7:9f:a2:9a:fb:d2:eb:a6:50:33:5d:62:ee:
4f:43:9f:00:98:91:30:17:78:ff:b3:19:d9:a9:85:b1:8e:57:
9e:b0:6d:31:c3:91:89:c2:9d:f2:48:b8:78:12:4e:bb:e8:d3:
9b:0e:34:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:13 2024 by rpki-client on console-ams.rpki-client.org