Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/b2e3d3-32ed-4bb2-acf6-204148c5a017/1/wmkT0EOeTmUve7n_TMaLgV48c_E.roa
File: wmkT0EOeTmUve7n_TMaLgV48c_E.roa (raw, json)
Hash identifier: cTAdS+YlevKg9QkxMLQ29O7o9axfiYZfwDgO+/KmX6M=
Subject key identifier: C2:69:13:D0:43:9E:4E:65:2F:7B:B9:FF:4C:C6:8B:81:5E:3C:73:F1
Certificate issuer: /CN=359ddc737684ce041754a95b56b5a076d8851048
Certificate serial: 01856EC1F40847FA5947D17ED9DDD141E444
Authority key identifier: 35:9D:DC:73:76:84:CE:04:17:54:A9:5B:56:B5:A0:76:D8:85:10:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ3cc3aEzgQXVKlbVrWgdtiFEEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/b2e3d3-32ed-4bb2-acf6-204148c5a017/1/wmkT0EOeTmUve7n_TMaLgV48c_E.roa
Signing time: Sun 01 Jan 2023 19:14:42 +0000
ROA not before: Sun 01 Jan 2023 19:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207264
IP address blocks: 185.117.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:c1:f4:08:47:fa:59:47:d1:7e:d9:dd:d1:41:e4:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359ddc737684ce041754a95b56b5a076d8851048
Validity
Not Before: Jan 1 19:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c26913d0439e4e652f7bb9ff4cc68b815e3c73f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:06:47:14:bf:b4:88:2b:78:94:91:aa:ba:e3:
77:69:a4:fc:c3:96:ba:b1:2f:34:82:1c:a8:e0:b2:
41:86:bb:7b:73:8a:16:6a:11:47:cb:98:73:5e:ed:
94:94:13:ec:98:cb:cf:0e:1e:54:02:bd:7b:bb:b5:
42:74:7c:70:c9:81:40:bf:b7:23:56:53:39:55:c2:
ae:89:7d:e5:98:5c:95:bc:6d:c0:6a:7c:52:c9:09:
e9:01:ed:75:1b:5b:0c:1f:31:8f:44:1f:08:ec:82:
69:a0:de:65:b8:1b:57:fc:3d:fc:f8:cc:b6:78:fc:
02:75:01:4c:ef:b1:c1:41:74:dc:aa:17:ee:68:83:
5c:13:67:7a:3f:48:4b:1c:6c:1c:54:4f:48:7a:8f:
57:66:a4:de:3e:fe:95:55:10:94:77:83:77:dd:4c:
b2:02:68:f8:26:cd:bb:54:bb:7d:7d:b5:77:d7:e0:
48:00:01:e0:b6:87:e1:38:6e:4d:54:33:ec:d9:05:
b9:09:25:ca:2a:48:35:4f:4b:9d:af:33:b0:96:f4:
92:72:18:1e:88:cf:bb:af:8f:04:53:51:ff:aa:28:
e5:1a:8c:a6:33:53:9f:f9:4a:bf:c3:e8:00:df:37:
a6:e5:74:1a:a0:15:8f:e3:e9:6e:fc:cf:f9:43:77:
f6:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:69:13:D0:43:9E:4E:65:2F:7B:B9:FF:4C:C6:8B:81:5E:3C:73:F1
X509v3 Authority Key Identifier:
keyid:35:9D:DC:73:76:84:CE:04:17:54:A9:5B:56:B5:A0:76:D8:85:10:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ3cc3aEzgQXVKlbVrWgdtiFEEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b2e3d3-32ed-4bb2-acf6-204148c5a017/1/wmkT0EOeTmUve7n_TMaLgV48c_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b2e3d3-32ed-4bb2-acf6-204148c5a017/1/NZ3cc3aEzgQXVKlbVrWgdtiFEEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.98.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:16:e5:b9:00:c4:8a:ca:a6:c2:cf:ac:d6:a0:be:ee:50:45:
2c:a8:db:11:5e:d4:18:5e:ec:3e:14:28:1d:93:98:55:f0:27:
3d:bc:a8:2c:12:98:56:83:7f:c6:59:34:f3:5e:f4:36:5c:07:
43:77:52:73:39:d3:54:5b:2d:7a:86:03:7b:0f:7d:88:f5:5f:
fe:98:72:78:fa:2a:68:b6:8b:1a:16:31:c1:dd:19:1a:76:95:
9b:26:40:3e:e8:86:f3:bf:1d:89:89:69:a2:8b:ca:6c:3c:a3:
f0:e9:f2:a1:e9:9e:7b:d5:f8:ad:b0:d2:63:2a:30:cc:23:b1:
33:13:1b:c7:1c:f9:0d:4a:5b:d7:49:fa:dd:b3:1b:08:0c:2d:
bb:22:1d:b4:95:34:8f:0e:9d:89:dc:38:89:a7:d6:bd:a5:e1:
a7:23:36:40:e9:39:65:cd:33:57:15:05:16:9c:df:50:32:89:
ce:0e:c5:3b:9c:78:fe:12:ce:f7:d0:0c:68:69:4a:f4:2a:1c:
88:b3:01:51:f2:24:df:46:9c:50:28:38:b2:03:b2:ed:16:1b:
f9:36:6e:f6:cb:c9:cf:0d:40:cf:30:bd:a2:d8:fc:81:6d:01:
46:03:10:23:55:bc:67:11:02:48:87:32:3b:c4:33:0e:b8:a5:
ed:b2:9b:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:04 2024 by rpki-client on console-ams.rpki-client.org