Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/wNDhDWSPUs0AC37R0SLsxn4MqM8.roa
File: wNDhDWSPUs0AC37R0SLsxn4MqM8.roa (raw, json)
Hash identifier: z+8es8VaQD2BAsDTCsoD4ARwpCx6GufUOMw6RSdkZ7w=
Subject key identifier: C0:D0:E1:0D:64:8F:52:CD:00:0B:7E:D1:D1:22:EC:C6:7E:0C:A8:CF
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01856BEED2342E7C034DEA743E360B3638B8
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/wNDhDWSPUs0AC37R0SLsxn4MqM8.roa
Signing time: Sun 01 Jan 2023 06:04:51 +0000
ROA not before: Sun 01 Jan 2023 06:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202399
IP address blocks: 85.31.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:d2:34:2e:7c:03:4d:ea:74:3e:36:0b:36:38:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 06:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c0d0e10d648f52cd000b7ed1d122ecc67e0ca8cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:56:17:fe:fd:d0:e7:42:fb:f5:99:3a:21:fd:
57:9f:3d:7c:f1:46:1e:e8:47:0c:03:29:41:13:7d:
bd:9f:70:42:50:08:9d:50:f1:9c:2f:27:09:15:e7:
90:e3:40:31:32:45:c8:e4:a7:5d:5e:ba:34:61:03:
1c:49:b5:b3:f1:e5:8a:44:08:85:40:ba:a5:ba:51:
aa:00:9d:f7:84:ca:f3:55:0a:d0:3a:eb:a3:46:e8:
78:f4:13:b4:c4:3f:11:45:8d:df:40:66:58:3d:6d:
9a:9b:2d:61:5e:09:1e:78:aa:fb:44:c8:98:d0:d7:
34:78:2b:91:61:81:a7:0e:a7:c5:a8:b2:45:f6:ea:
63:17:5a:9f:18:05:8a:bb:fe:56:4f:aa:a1:a5:93:
c8:7a:58:f4:f6:bb:8e:e1:4f:54:69:9b:96:30:23:
7c:bd:a9:bc:dc:ba:b3:c7:97:fa:28:cf:72:a6:f1:
74:32:99:44:f7:83:f9:25:46:4e:e4:76:d2:d8:ed:
34:5e:83:30:3a:e1:bc:8b:06:f2:e1:d5:f3:ec:de:
a6:1f:b2:1c:30:fb:5c:2d:6c:05:b3:52:5c:07:16:
b8:da:9e:d4:18:03:b7:3e:4b:aa:a2:d6:5f:5f:79:
a9:35:14:6f:1e:7d:20:c5:bc:e0:af:3f:e3:32:52:
b1:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:D0:E1:0D:64:8F:52:CD:00:0B:7E:D1:D1:22:EC:C6:7E:0C:A8:CF
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/wNDhDWSPUs0AC37R0SLsxn4MqM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.31.253.0/24
Signature Algorithm: sha256WithRSAEncryption
42:2d:d5:95:84:59:42:51:f7:53:45:33:2c:3a:c3:ee:35:74:
6b:18:17:04:bd:33:d4:32:c2:6d:8f:54:39:34:f8:c2:b0:a0:
00:d4:7e:7d:53:73:21:15:85:0e:77:64:33:e7:5c:c4:e6:96:
6b:30:90:fb:34:4b:5f:a1:c2:8a:2d:e1:59:3c:e4:b7:7a:fd:
a5:2e:6c:75:b1:fb:d4:b7:39:68:e5:21:c5:8f:d1:13:3e:81:
0b:9f:99:96:3e:00:21:fe:a5:da:5f:c1:eb:0a:c0:89:6b:4f:
e8:bc:26:dc:1c:d8:49:16:8e:80:69:38:e0:19:0c:f2:61:6f:
3a:90:17:45:55:91:1b:0b:3a:51:a0:e8:93:9a:9e:1b:e1:39:
93:0c:56:90:64:41:da:83:e0:7b:aa:45:a6:d3:50:07:c5:2b:
1d:ed:96:59:5b:55:a1:08:ce:cf:70:ef:55:ef:1a:d0:82:0c:
d0:c2:3a:23:4f:80:96:bb:dc:d4:45:05:b6:83:95:47:b5:45:
09:52:fc:50:3a:b1:af:a4:d6:77:93:09:0e:6e:78:a6:ff:d0:
37:9c:9f:59:15:6a:4c:fd:09:cc:f2:b9:24:6a:fe:c1:6c:45:
9a:1e:13:0f:6d:90:3e:43:ad:f0:db:d4:b5:71:c5:21:a8:ca:
d0:ba:07:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org