Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/WKRu6_SKV0pIrnU7gVezXTFRDLk.roa
File: WKRu6_SKV0pIrnU7gVezXTFRDLk.roa (raw, json)
Hash identifier: YDSFMiRTuTEVGwGIYELfB6tZCdwxrks2nlPdH28pvqo=
Subject key identifier: 58:A4:6E:EB:F4:8A:57:4A:48:AE:75:3B:81:57:B3:5D:31:51:0C:B9
Certificate issuer: /CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250
Certificate serial: 01856E2665FA28AA7D4B0C0D0BF359A7CFE9
Authority key identifier: 5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/WKRu6_SKV0pIrnU7gVezXTFRDLk.roa
Signing time: Sun 01 Jan 2023 16:24:48 +0000
ROA not before: Sun 01 Jan 2023 16:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56766
IP address blocks: 31.133.38.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:65:fa:28:aa:7d:4b:0c:0d:0b:f3:59:a7:cf:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250
Validity
Not Before: Jan 1 16:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58a46eebf48a574a48ae753b8157b35d31510cb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:62:0a:ec:6c:03:6c:65:ef:67:af:2a:87:42:
c8:6f:36:13:05:32:e5:35:ff:06:b6:34:47:19:be:
08:cd:7a:04:43:77:b3:2e:76:1f:d9:03:5c:df:b0:
f1:c7:0b:0c:18:9d:02:e0:14:15:b8:a1:c3:4f:c2:
8a:32:75:b1:34:34:e4:71:f1:e2:84:f6:80:05:14:
35:a1:49:96:e7:70:70:73:c4:1f:33:23:2b:b1:6c:
7d:85:78:42:d1:e5:5a:77:21:12:1e:c6:7f:bf:24:
dd:36:2b:3b:3e:5a:92:44:dc:a4:17:cb:0a:53:73:
59:1a:8d:ea:41:aa:2a:48:d8:2c:63:f5:a7:61:a6:
34:2d:e0:a9:9e:66:b5:cc:fc:f0:46:b5:b6:d3:02:
50:ba:95:08:c8:be:d7:03:da:ef:5b:2f:4b:b1:a7:
be:c6:7b:13:2f:e0:8d:d5:71:31:c3:b5:b5:23:69:
01:3e:7b:0a:a7:78:43:d6:2b:60:6d:95:3a:1f:3f:
16:55:85:84:50:a8:74:a7:5a:63:af:c5:9e:47:ee:
15:6a:82:8b:d9:49:d9:db:d9:17:c0:02:cc:4d:9e:
b5:d2:e4:b4:24:ea:80:eb:1d:27:52:c9:54:0b:cf:
f9:0c:fa:43:61:da:20:1a:3c:55:98:54:34:30:3f:
de:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:A4:6E:EB:F4:8A:57:4A:48:AE:75:3B:81:57:B3:5D:31:51:0C:B9
X509v3 Authority Key Identifier:
keyid:5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/WKRu6_SKV0pIrnU7gVezXTFRDLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/XGT50E79Wp_C4jtC1bUa79mlAlA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.133.38.0/23
Signature Algorithm: sha256WithRSAEncryption
36:2d:77:11:53:0c:14:df:55:c5:0d:54:d7:43:8b:62:a3:4b:
a2:ec:1a:95:ed:af:d0:dd:ae:32:50:70:4b:d4:68:8e:9b:19:
51:fa:26:ad:98:4c:c8:72:6a:2f:f7:0b:34:0c:14:9a:30:bd:
1b:56:e2:24:d4:b2:df:18:8c:8b:60:c7:58:32:14:d1:69:34:
cd:1d:d4:30:41:bf:27:78:4b:bf:13:16:5e:c1:d8:19:b3:b3:
2b:bb:dd:b9:2b:d4:96:fc:5b:30:d8:e2:4c:06:71:3f:a8:59:
ff:51:7e:c3:8b:8b:a0:94:a5:a2:44:96:9a:3c:38:27:f7:a7:
c6:dd:cf:3f:4a:99:2c:94:8e:3d:27:da:05:dd:e2:08:bd:fd:
d3:3f:81:ff:a0:4e:95:70:d5:a9:f6:13:24:7c:a0:04:66:20:
02:fe:f6:b3:d9:69:26:86:e5:b1:23:0a:3c:0e:0b:b7:c3:3e:
76:c0:89:2b:b5:3b:9d:92:65:c5:4b:83:7f:4f:0b:72:c9:55:
33:b0:74:cc:d9:09:43:22:62:af:3b:93:84:50:5d:ca:14:6c:
19:e2:47:d0:2c:e7:80:7a:b9:75:ab:00:68:c9:66:5e:6d:5b:
4d:11:bd:5d:c8:12:0f:90:dc:17:2a:50:8d:36:47:10:32:b7:
f5:7d:da:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:41 2024 by rpki-client on console-ams.rpki-client.org