Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/75e36c-db1f-483e-b0ef-229051879b74/1/wJ-weg2wTnNy_9ys4UcPZIvLTvo.roa
File: wJ-weg2wTnNy_9ys4UcPZIvLTvo.roa (raw, json)
Hash identifier: qzYrDSj4yfjlL8SIJ8gX5+I33RznELE6hpNZ0lCdIno=
Subject key identifier: C0:9F:B0:7A:0D:B0:4E:73:72:FF:DC:AC:E1:47:0F:64:8B:CB:4E:FA
Certificate issuer: /CN=ae29751a0ac81a657190546ea4780cd86140dc9f
Certificate serial: 018920CD91F481A9C97863D361CFB5D8C61C
Authority key identifier: AE:29:75:1A:0A:C8:1A:65:71:90:54:6E:A4:78:0C:D8:61:40:DC:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ril1GgrIGmVxkFRupHgM2GFA3J8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/75e36c-db1f-483e-b0ef-229051879b74/1/wJ-weg2wTnNy_9ys4UcPZIvLTvo.roa
Signing time: Tue 04 Jul 2023 12:08:10 +0000
ROA not before: Tue 04 Jul 2023 12:08:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206757
IP address blocks: 5.252.0.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:20:cd:91:f4:81:a9:c9:78:63:d3:61:cf:b5:d8:c6:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae29751a0ac81a657190546ea4780cd86140dc9f
Validity
Not Before: Jul 4 12:08:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c09fb07a0db04e7372ffdcace1470f648bcb4efa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:05:19:41:3a:f1:6b:46:bc:fb:ff:9e:c4:18:
77:5f:07:19:60:73:80:1c:2a:2d:87:1c:e3:07:81:
2a:37:26:f2:9a:57:50:19:c9:93:6a:14:e9:1a:13:
53:e0:7c:09:1d:9c:4b:79:57:75:ca:a7:53:fa:e7:
c1:3c:fa:25:e8:05:4c:28:e9:d4:58:24:29:01:53:
0f:dc:74:33:8a:d3:2d:27:46:a7:b6:3f:7e:71:c4:
d7:6b:86:ed:b3:da:cf:07:7e:b1:ea:e6:c3:77:28:
86:11:30:8e:d0:36:79:3c:c1:15:3c:0f:c1:f0:ec:
2f:88:db:ba:7c:2f:6e:cd:ca:1e:1e:65:26:76:9b:
ce:cb:a8:22:6b:e7:14:2d:e2:55:4d:d6:52:b6:b2:
9b:a5:c2:af:93:a4:92:04:af:9d:31:0b:56:97:22:
16:56:dd:67:a1:6f:09:93:9e:35:dd:ec:a4:8f:0d:
e4:f3:f6:80:d0:f8:83:c1:50:da:52:79:44:e8:8d:
e6:f1:c3:7c:e2:2a:47:4d:e2:76:7e:1d:0e:5e:70:
52:4b:93:56:65:ee:8d:8e:c0:0f:04:3a:06:3e:6b:
50:54:fa:3c:5e:80:35:59:f7:47:84:fb:86:9f:56:
f7:08:4f:8a:5b:35:a4:63:f6:2a:a2:63:6c:11:57:
cd:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:9F:B0:7A:0D:B0:4E:73:72:FF:DC:AC:E1:47:0F:64:8B:CB:4E:FA
X509v3 Authority Key Identifier:
keyid:AE:29:75:1A:0A:C8:1A:65:71:90:54:6E:A4:78:0C:D8:61:40:DC:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ril1GgrIGmVxkFRupHgM2GFA3J8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/75e36c-db1f-483e-b0ef-229051879b74/1/wJ-weg2wTnNy_9ys4UcPZIvLTvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/75e36c-db1f-483e-b0ef-229051879b74/1/ril1GgrIGmVxkFRupHgM2GFA3J8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.0.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:ad:cf:3f:79:9e:3b:f4:80:77:c2:97:78:1b:4e:7d:2f:3d:
5c:e3:67:7c:68:b8:5c:e5:79:4b:84:9f:f8:5a:aa:35:1f:3a:
0a:92:75:a0:5a:c5:7d:17:81:df:24:7b:e5:92:58:cd:0b:fc:
46:65:35:be:34:eb:1e:d2:9a:2e:6e:a5:51:55:ea:3b:3a:6b:
3e:ea:b3:8e:1e:d5:ef:42:2b:09:75:67:a6:ef:a4:6d:d2:0a:
3a:a7:40:70:c2:31:64:80:ed:6a:4f:bb:fe:06:1d:19:46:9b:
56:53:24:4b:3a:e7:cd:61:15:1e:82:1a:9e:e0:3f:b0:c8:5c:
f6:3d:95:e4:0c:16:b9:85:84:af:e8:f9:b6:ff:ac:4b:90:49:
a9:66:c6:bc:5c:10:55:80:aa:55:3d:fc:9b:3c:9c:ec:20:d3:
89:be:72:fe:9b:3d:55:43:da:55:ec:8d:b6:82:05:ed:65:c7:
d2:69:ed:9b:f7:f3:25:e2:97:0f:39:27:9f:43:0c:39:8d:b9:
d8:e0:15:ec:2d:55:f0:2a:6b:cd:90:43:e3:31:d0:17:ad:eb:
d1:8c:a8:d4:a1:df:11:14:27:64:f1:e4:1c:f7:9d:e4:f8:b7:
c7:0c:97:44:5e:1b:b0:93:d5:3d:b3:9f:3b:70:29:f3:b1:f1:
32:59:52:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:40 2024 by rpki-client on console-ams.rpki-client.org