Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/wd9uwYs2HmbbNCB4xiwCiU2-Rps.roa
File: wd9uwYs2HmbbNCB4xiwCiU2-Rps.roa (raw, json)
Hash identifier: LwJCHhH1Ybwiwo03UNxrmkjyqshDMXf5CTy28YLEYbA=
Subject key identifier: C1:DF:6E:C1:8B:36:1E:66:DB:34:20:78:C6:2C:02:89:4D:BE:46:9B
Certificate issuer: /CN=7d149f62447853689c12fb288afeb6b681cfebc1
Certificate serial: 01856ED4A97922B090ADD7A64AE229A9870D
Authority key identifier: 7D:14:9F:62:44:78:53:68:9C:12:FB:28:8A:FE:B6:B6:81:CF:EB:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fRSfYkR4U2icEvsoiv62toHP68E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/wd9uwYs2HmbbNCB4xiwCiU2-Rps.roa
Signing time: Sun 01 Jan 2023 19:35:08 +0000
ROA not before: Sun 01 Jan 2023 19:35:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49711
IP address blocks: 178.172.133.0/24 maxlen: 24
93.125.43.0/24 maxlen: 24
91.149.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:a9:79:22:b0:90:ad:d7:a6:4a:e2:29:a9:87:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d149f62447853689c12fb288afeb6b681cfebc1
Validity
Not Before: Jan 1 19:35:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c1df6ec18b361e66db342078c62c02894dbe469b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:68:63:25:07:fe:e6:a7:41:c1:7c:21:c7:06:
48:80:60:54:e1:dd:5f:4f:e9:9f:b5:5b:61:b8:22:
44:8f:47:3f:fc:f8:0d:33:b3:0f:5d:11:ea:51:78:
07:b0:42:84:a9:da:6f:7f:c7:3b:46:63:df:93:9a:
a4:c0:4c:6f:3e:3b:1a:48:b5:e0:b8:91:2d:db:30:
4f:d7:4d:c1:c3:91:5a:5f:e8:85:2d:5a:e4:e0:d6:
59:1f:87:d9:83:f1:c1:e2:61:ac:c6:9d:39:09:82:
e6:5c:b6:18:ef:3a:1b:84:8e:90:9d:e3:90:3b:c7:
d9:03:e4:c8:1b:88:a0:14:84:d1:af:88:b2:a0:51:
a9:9c:d7:49:52:53:84:8f:36:ef:3b:ab:4b:b0:10:
35:ce:00:89:87:3d:f2:1a:2a:1b:0e:c9:d0:30:74:
84:b4:a8:fe:7f:28:10:ce:f3:78:24:d9:88:1a:97:
c7:02:76:d8:37:1e:f5:69:27:dd:58:62:0e:59:75:
85:93:11:96:87:8d:95:1a:c5:1f:c5:57:12:52:6b:
8a:88:ac:a7:3b:0f:39:e0:e9:34:49:e2:0b:2f:6f:
33:96:4c:6b:f4:9e:ed:ed:61:29:a2:3c:1b:19:b3:
7b:e1:75:2f:cd:ee:2a:2f:7b:33:4d:f5:cd:1b:77:
09:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:DF:6E:C1:8B:36:1E:66:DB:34:20:78:C6:2C:02:89:4D:BE:46:9B
X509v3 Authority Key Identifier:
keyid:7D:14:9F:62:44:78:53:68:9C:12:FB:28:8A:FE:B6:B6:81:CF:EB:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fRSfYkR4U2icEvsoiv62toHP68E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/wd9uwYs2HmbbNCB4xiwCiU2-Rps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/fRSfYkR4U2icEvsoiv62toHP68E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.149.171.0/24
93.125.43.0/24
178.172.133.0/24
Signature Algorithm: sha256WithRSAEncryption
71:9f:4b:b7:c2:9c:d6:fb:0b:f3:0f:1f:79:ea:40:4b:43:bc:
5f:a1:b1:8d:ce:89:f9:62:6a:a8:92:ce:cb:cd:41:c8:29:c6:
38:8c:0c:2e:81:c3:ce:d1:82:7d:99:8e:2e:56:dd:5f:4f:64:
0a:6c:b6:70:81:25:b7:af:12:ad:10:e4:f9:f7:da:b0:14:90:
e0:25:f0:d2:8b:3d:0d:bb:35:2d:d8:a3:2b:b5:6f:52:f4:bd:
91:96:27:c5:c4:52:37:31:2d:be:3e:9d:d9:10:69:8a:7b:3d:
40:9d:87:37:87:ac:3b:b1:b2:e8:2a:c8:fd:55:5b:53:69:6c:
b1:c2:be:c1:bd:83:93:3c:42:ec:68:a5:e2:63:76:c6:1f:fc:
78:92:82:61:9a:22:27:91:f1:dc:31:f5:c2:1d:d1:45:48:9d:
6a:f5:8f:ee:03:bd:a9:f2:c9:0c:99:fe:35:ce:de:48:88:ef:
e7:12:ae:44:9e:ef:7d:7f:a3:12:17:14:74:ed:06:9d:13:26:
b2:6c:aa:c9:31:87:4b:52:f2:0a:a1:a4:b9:ff:46:d1:f4:e4:
69:db:0a:0e:9c:17:d5:55:68:76:8b:fc:82:3f:80:cb:0a:30:
17:c5:d4:fa:c1:cf:bf:28:12:64:f7:01:bf:56:d4:2a:73:74:
ca:06:56:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:50 2024 by rpki-client on console-ams.rpki-client.org