Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/wgJsBV3y9L75Enw5x5OXIb7rqhk.roa
File: wgJsBV3y9L75Enw5x5OXIb7rqhk.roa (raw, json)
Hash identifier: 464gw5icH3o4kC5+b3jPrSTDZq3FpvtragrcI2ItzZo=
Subject key identifier: C2:02:6C:05:5D:F2:F4:BE:F9:12:7C:39:C7:93:97:21:BE:EB:AA:19
Certificate issuer: /CN=3919f2ad91584baff0467447bac8fb978d1f9dd3
Certificate serial: 018988BA214CC0F1E77D4CA3A898F26F4EDC
Authority key identifier: 39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/wgJsBV3y9L75Enw5x5OXIb7rqhk.roa
Signing time: Mon 24 Jul 2023 16:27:26 +0000
ROA not before: Mon 24 Jul 2023 16:27:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39298
IP address blocks: 213.143.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:88:ba:21:4c:c0:f1:e7:7d:4c:a3:a8:98:f2:6f:4e:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3919f2ad91584baff0467447bac8fb978d1f9dd3
Validity
Not Before: Jul 24 16:27:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2026c055df2f4bef9127c39c7939721beebaa19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:bd:c4:76:af:42:3e:e2:ea:9e:e7:26:00:65:
97:6a:99:c6:8f:bc:e9:99:c8:4e:64:a4:ac:ec:ca:
6e:ee:0c:e5:80:c5:8c:ac:48:08:4d:f7:92:ec:87:
9c:bc:04:79:e9:be:c0:82:1f:33:db:76:1d:c6:15:
08:34:76:b6:d5:ce:2d:24:a1:9e:0a:38:4c:be:c3:
88:9b:a3:db:22:5c:e7:5c:36:b8:dc:fa:46:8b:91:
ab:03:62:d3:ec:da:fb:d9:b6:99:2a:be:99:93:3f:
a7:cd:76:d3:d4:aa:b3:60:d2:95:34:41:dd:12:05:
37:f8:e6:c5:a9:2d:21:35:64:68:9b:53:e1:90:b7:
b8:e3:9c:22:d3:20:cc:20:e9:0b:dc:1e:fc:65:e3:
e5:11:be:c8:e5:cc:76:a9:af:ee:a9:b2:67:d3:d1:
c8:07:ea:91:37:03:1a:05:9e:0b:ba:c8:00:c4:1f:
8c:92:c4:d4:c5:8a:ad:bf:40:c4:13:56:6d:e6:9d:
54:03:f9:fa:71:2c:57:57:95:de:26:86:2a:73:6b:
41:2a:97:20:a7:87:f8:c1:86:19:03:a5:32:fb:7e:
1a:97:12:f7:f0:fa:0f:24:7c:ee:e2:76:03:4d:75:
0c:43:fc:2e:85:1e:62:65:e5:a0:90:42:51:0a:c7:
51:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:02:6C:05:5D:F2:F4:BE:F9:12:7C:39:C7:93:97:21:BE:EB:AA:19
X509v3 Authority Key Identifier:
keyid:39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/wgJsBV3y9L75Enw5x5OXIb7rqhk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/ORnyrZFYS6_wRnRHusj7l40fndM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.143.251.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:0b:42:35:e0:9d:72:8b:1f:5e:ae:05:83:36:66:1c:df:ef:
05:4c:0a:6a:14:1a:3a:b2:fc:0a:3f:bc:b6:38:59:dc:c0:08:
f6:0a:9e:3d:9f:3b:95:72:ad:0d:f8:75:1c:da:2d:74:6a:2f:
1e:71:2b:4b:7a:9a:1c:7c:4f:e4:0d:65:81:e3:15:bd:75:26:
32:47:f8:bd:2d:b1:d4:ff:fe:a0:68:32:24:15:3f:35:87:8e:
22:d4:73:e3:9b:06:c8:24:7d:a0:a0:11:40:27:c5:50:f7:b9:
d8:a9:34:e5:33:73:81:c7:06:d0:46:84:40:ba:69:cf:6d:d9:
c2:75:25:a6:88:e2:16:55:7b:81:cb:a6:b4:80:1e:ff:89:47:
7a:77:2f:7c:ec:8a:6d:3c:e6:3b:03:f6:33:e6:ec:87:d5:c6:
84:b4:9f:06:9e:3f:bd:7b:29:e8:87:63:8d:e7:56:88:2e:0e:
8a:d2:02:42:64:19:a2:f0:81:85:76:58:23:5d:53:22:19:98:
83:b6:67:a5:e9:18:d2:1d:f9:71:eb:6d:36:f5:a3:35:92:5c:
fa:58:d5:ee:d7:1f:ee:b0:f3:e6:31:26:55:77:54:8b:cc:91:
88:90:a8:cc:1f:ee:e4:95:a7:5c:61:42:81:ed:ec:18:9b:2a:
c0:7b:1a:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:17 2024 by rpki-client on console-ams.rpki-client.org