Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/WPRxnbDbHWVQ8NJsPr6HdqXmEc0.roa
File: WPRxnbDbHWVQ8NJsPr6HdqXmEc0.roa (raw, json)
Hash identifier: KYVu1A8ruFi9wqYupBftYgEeD0YDzC9TfvY8NFcp7YY=
Subject key identifier: 58:F4:71:9D:B0:DB:1D:65:50:F0:D2:6C:3E:BE:87:76:A5:E6:11:CD
Certificate issuer: /CN=660899133329faa5b5716b1c95fbaf93021fbc61
Certificate serial: 0185715E6FDEC8D4B10348A3327E60D81659
Authority key identifier: 66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/WPRxnbDbHWVQ8NJsPr6HdqXmEc0.roa
Signing time: Mon 02 Jan 2023 07:24:52 +0000
ROA not before: Mon 02 Jan 2023 07:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3303
IP address blocks: 194.56.64.0/21 maxlen: 24
194.56.0.0/18 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 Feb 2023 15:23:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:5e:6f:de:c8:d4:b1:03:48:a3:32:7e:60:d8:16:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=660899133329faa5b5716b1c95fbaf93021fbc61
Validity
Not Before: Jan 2 07:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58f4719db0db1d6550f0d26c3ebe8776a5e611cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:2d:29:7a:1c:28:57:b7:3a:94:ac:75:d3:7f:
e0:c1:d1:ca:c3:61:e3:34:79:26:78:26:79:6f:7e:
90:b6:4c:4a:df:bf:69:54:a3:a4:67:2c:0d:a7:ac:
d2:f3:15:22:a7:f5:0c:41:df:02:6f:08:a7:f8:75:
7a:c7:26:1b:6e:d8:88:af:4a:23:55:86:3a:b3:8a:
9e:23:a9:df:97:3f:c2:ba:56:3f:0b:e8:1a:fd:4a:
4f:36:8b:a2:db:16:d8:de:83:5c:fd:94:7d:6f:de:
b5:76:34:ae:15:7f:15:ed:ae:6c:c3:3e:7a:60:b2:
05:55:52:d8:ad:a0:b0:95:09:8f:60:61:c1:4e:c5:
f6:10:2b:c6:cf:75:d8:33:0d:13:ab:98:8b:5c:19:
de:9b:9e:ff:9a:84:22:f4:c9:56:46:d6:41:11:4a:
24:a1:2e:1c:bf:a0:af:c5:df:60:94:07:9b:b9:21:
c8:a3:f4:17:75:5d:87:ec:a0:bd:b6:12:7a:03:9f:
80:ae:06:c2:76:30:4f:16:1b:99:5e:09:58:0c:54:
b6:3c:9f:47:66:e4:74:97:b6:b8:f7:29:97:0a:d5:
45:47:37:0c:27:fc:a2:bd:31:b6:70:c7:ea:3a:39:
1c:d4:0c:86:eb:6e:fa:b9:1d:e0:19:a7:b6:e6:9c:
a2:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:F4:71:9D:B0:DB:1D:65:50:F0:D2:6C:3E:BE:87:76:A5:E6:11:CD
X509v3 Authority Key Identifier:
keyid:66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/WPRxnbDbHWVQ8NJsPr6HdqXmEc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.0.0-194.56.71.255
Signature Algorithm: sha256WithRSAEncryption
34:d0:bd:c5:a6:56:0e:1e:69:1c:d5:e0:3f:5b:a3:30:9e:2a:
2a:17:23:26:19:7a:91:b5:cf:0c:27:a1:2e:7a:81:0e:c4:88:
86:0b:3d:b2:89:5e:0c:26:f5:a1:f7:01:cd:0f:e7:0e:d1:d6:
27:a7:1f:9d:32:ea:91:11:2d:b9:05:a1:c8:df:e1:3f:6c:66:
fc:5c:4c:90:24:c2:f8:7b:ad:59:e5:11:09:b1:f8:68:c0:69:
2e:08:f2:88:ac:60:ff:34:f4:5f:4a:87:53:6b:aa:a8:cf:fa:
3c:31:3b:dc:22:11:6a:26:b6:5a:f2:7a:58:d2:7a:04:f3:ba:
9c:07:38:8b:04:41:08:f2:7d:98:02:0e:e9:7d:41:81:ef:3b:
53:28:1a:ab:08:6c:23:fd:5d:b9:38:c2:e5:2f:ca:5a:1e:5b:
a9:10:fe:3f:47:91:c4:0e:db:63:33:d9:23:bf:dd:54:90:93:
93:b3:38:0c:28:ea:c6:23:e2:82:e5:d5:b0:8c:4e:ee:3f:22:
5c:dd:33:01:3c:f7:0a:98:ec:b4:20:5e:20:47:87:39:54:37:
57:2f:af:e9:7b:12:3b:f8:52:f9:50:40:10:5b:48:f6:ee:37:
d7:d5:20:45:76:1f:14:33:0d:25:88:c0:05:01:cb:21:e5:5b:
1b:10:df:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:59 2024 by rpki-client on console-fra.rpki-client.org