Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/WwJwmqMLirPqnuVKNraSr5U8wlk.roa
File: WwJwmqMLirPqnuVKNraSr5U8wlk.roa (raw, json)
Hash identifier: ttWU+xYOpW0d0LxjbpydbZvJg50WEvStmIRErSiXwZs=
Subject key identifier: 5B:02:70:9A:A3:0B:8A:B3:EA:9E:E5:4A:36:B6:92:AF:95:3C:C2:59
Certificate issuer: /CN=577021dcdf44b6afdd3810547c55a79bd1a9fa3b
Certificate serial: 0185700B9592263CE574C39204B735755000
Authority key identifier: 57:70:21:DC:DF:44:B6:AF:DD:38:10:54:7C:55:A7:9B:D1:A9:FA:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/WwJwmqMLirPqnuVKNraSr5U8wlk.roa
Signing time: Mon 02 Jan 2023 01:14:45 +0000
ROA not before: Mon 02 Jan 2023 01:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211261
IP address blocks: 185.204.201.0/24 maxlen: 24
185.204.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 30 Nov 2023 15:03:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:0b:95:92:26:3c:e5:74:c3:92:04:b7:35:75:50:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=577021dcdf44b6afdd3810547c55a79bd1a9fa3b
Validity
Not Before: Jan 2 01:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b02709aa30b8ab3ea9ee54a36b692af953cc259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b9:82:be:f9:e0:04:94:0b:3f:19:a5:20:c6:
9c:d5:c7:bc:07:75:e6:21:6f:69:4b:7b:7e:e9:78:
3a:a4:6e:f9:df:eb:d8:84:a7:ea:2c:e9:e1:9f:aa:
9d:1e:7d:c7:76:0f:98:14:54:ef:1f:9b:0a:03:7f:
ae:ea:db:69:8b:eb:e5:db:f2:b3:c2:55:78:7a:5a:
c8:a0:91:1c:0f:ad:b8:04:bd:61:ad:e1:ea:1c:e1:
95:ed:62:ca:80:f8:83:ac:aa:67:b9:d4:08:fb:fd:
b9:0c:b8:58:df:33:56:c0:e8:98:21:c5:dc:1c:d1:
53:ea:bb:be:e9:bd:76:4e:05:d3:bd:ba:3b:ec:c5:
e6:ad:4e:28:b4:43:99:4c:cf:24:c1:72:41:d4:f2:
f2:f5:5c:ba:32:5b:29:b1:c4:37:11:e0:af:28:4c:
67:e8:a5:19:e8:b8:58:54:50:08:13:c6:eb:ea:32:
15:5c:df:80:2c:a2:0d:f5:86:76:e5:9b:8b:54:a0:
05:e2:28:dc:cc:ce:c8:8c:4b:27:c6:d8:67:24:ce:
a7:0d:96:87:c1:4e:45:0d:a4:80:a5:f6:4c:e5:e0:
17:20:2b:9a:74:bb:0c:a1:9f:ce:fa:03:b4:29:2a:
89:a1:cb:05:83:db:b3:16:4b:09:f7:7f:17:13:d2:
66:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:02:70:9A:A3:0B:8A:B3:EA:9E:E5:4A:36:B6:92:AF:95:3C:C2:59
X509v3 Authority Key Identifier:
keyid:57:70:21:DC:DF:44:B6:AF:DD:38:10:54:7C:55:A7:9B:D1:A9:FA:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/WwJwmqMLirPqnuVKNraSr5U8wlk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.200.0/23
Signature Algorithm: sha256WithRSAEncryption
39:e6:a5:3e:96:28:54:e6:33:d9:52:73:04:64:86:ad:48:71:
e5:2e:81:9c:1c:a8:58:58:b1:6d:75:be:48:52:98:db:b4:3e:
bf:cb:e5:cd:70:14:62:fb:e8:cf:7e:52:6f:aa:10:50:62:eb:
ee:a7:cf:25:2d:75:ce:fd:20:e9:f3:2a:e9:b3:d6:b8:7c:37:
8d:10:b3:80:54:22:24:47:11:3d:4d:c3:51:79:26:1f:54:6c:
54:6b:48:d8:cc:84:24:c2:ae:d7:86:db:70:7b:18:0e:a2:2e:
47:6a:27:db:b8:60:37:b0:c5:af:9f:59:93:10:ae:b8:2c:85:
1b:66:7d:cb:cd:a1:8a:f5:ad:ed:2a:d0:a0:06:48:d9:66:4c:
a7:f5:5a:50:fc:55:50:71:a4:8e:fc:00:1c:9a:32:d1:1d:6e:
38:61:19:e2:6f:4f:c9:d9:bd:32:82:51:7a:8f:0f:46:fd:33:
84:83:c2:2c:9a:6c:fc:b6:94:d0:6f:74:f4:31:08:cb:a4:3c:
80:bf:0e:af:7a:20:d1:97:16:de:28:eb:29:69:cc:a7:ac:e1:
6f:16:e4:04:04:d8:31:24:71:5a:c3:b8:e5:77:90:e9:b4:57:
00:2a:45:8c:2d:e4:76:68:02:fd:88:26:cf:33:ad:82:53:41:
6c:1c:f6:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:15 2024 by rpki-client on console-fra.rpki-client.org