Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d01a91-a3ab-4e08-9564-a51aa23a8fdd/1/WYNp7WHs0diVfoIG1u_eDi4BfLI.roa
File: WYNp7WHs0diVfoIG1u_eDi4BfLI.roa (raw, json)
Hash identifier: 3flCZHw6iPREHXxBhXiU78LVNXju/gVtf/fkIkXG6O4=
Subject key identifier: 59:83:69:ED:61:EC:D1:D8:95:7E:82:06:D6:EF:DE:0E:2E:01:7C:B2
Certificate issuer: /CN=86df1259b3aa1de34d13d1d863178864d9d185cb
Certificate serial: 018573039591E233390CB56AF1B842A13727
Authority key identifier: 86:DF:12:59:B3:AA:1D:E3:4D:13:D1:D8:63:17:88:64:D9:D1:85:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ht8SWbOqHeNNE9HYYxeIZNnRhcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d01a91-a3ab-4e08-9564-a51aa23a8fdd/1/WYNp7WHs0diVfoIG1u_eDi4BfLI.roa
Signing time: Mon 02 Jan 2023 15:04:52 +0000
ROA not before: Mon 02 Jan 2023 15:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 394201
IP address blocks: 109.235.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:03:95:91:e2:33:39:0c:b5:6a:f1:b8:42:a1:37:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86df1259b3aa1de34d13d1d863178864d9d185cb
Validity
Not Before: Jan 2 15:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=598369ed61ecd1d8957e8206d6efde0e2e017cb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:dc:de:22:25:8f:e7:da:19:5d:ce:64:45:ea:
43:5d:23:fe:14:02:74:e2:ce:88:4f:9e:31:2a:af:
0f:9a:e9:57:98:d7:c0:2d:e9:fb:1f:a9:81:52:de:
a2:d1:08:68:83:a7:14:1a:49:eb:71:47:c0:7f:c3:
ce:53:5f:4c:03:32:a9:a9:6b:a2:61:0c:f0:52:50:
5f:b1:8e:23:33:09:46:46:e4:f7:a8:c9:3d:13:f5:
10:fd:da:49:51:b3:e4:0e:b8:7d:0d:95:5d:51:14:
51:f8:73:05:8a:64:94:b6:61:fd:77:db:41:13:5a:
e3:c0:2e:6e:ef:98:bf:3c:4a:d6:52:42:80:4b:5e:
bb:9c:7f:3a:6e:59:3f:9a:a8:60:1e:27:10:bf:da:
18:b4:dd:00:e4:8a:03:9e:64:cc:8b:51:fc:8e:74:
1f:a1:50:c1:46:f5:c8:66:4b:96:a1:04:c8:94:1d:
b5:f2:42:af:ec:9d:92:15:fe:1f:af:09:da:93:7c:
c8:3b:7c:4e:4d:80:5b:b9:b3:7f:24:f3:e1:fb:fc:
05:00:a7:10:9d:f6:8e:12:c6:7c:76:30:8d:50:63:
2c:b4:a3:09:c2:87:a3:58:27:23:cf:10:68:ef:e2:
cd:e3:f2:0b:93:d2:28:6a:7e:d6:bb:d0:2b:bc:d2:
b6:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:83:69:ED:61:EC:D1:D8:95:7E:82:06:D6:EF:DE:0E:2E:01:7C:B2
X509v3 Authority Key Identifier:
keyid:86:DF:12:59:B3:AA:1D:E3:4D:13:D1:D8:63:17:88:64:D9:D1:85:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ht8SWbOqHeNNE9HYYxeIZNnRhcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d01a91-a3ab-4e08-9564-a51aa23a8fdd/1/WYNp7WHs0diVfoIG1u_eDi4BfLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d01a91-a3ab-4e08-9564-a51aa23a8fdd/1/ht8SWbOqHeNNE9HYYxeIZNnRhcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.235.96.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:94:3a:c2:e6:00:3c:5c:52:7d:d5:fa:e2:fc:9b:7c:b3:76:
f5:65:5d:ca:d3:c4:b1:0d:0c:a7:21:80:1e:53:51:a2:9c:0b:
41:4a:1a:82:df:2f:ce:1a:b1:53:6d:f9:5d:e1:10:58:36:a2:
23:6e:99:10:2b:57:e3:a4:b1:cc:b5:36:a4:35:38:cd:db:49:
c0:f4:ac:f5:f7:9a:44:0a:2c:ed:af:0a:19:fd:74:38:7b:4f:
5f:68:12:5d:fd:47:5e:3c:0e:e3:80:d1:2b:d7:73:cc:f8:e9:
01:76:fa:21:20:1a:8e:59:2a:3c:83:07:91:5c:76:68:85:26:
a5:25:37:36:cc:6f:72:3c:5a:b9:e1:3f:14:64:6f:91:ff:b9:
4d:00:de:24:ab:58:50:89:ad:fd:53:9e:06:b9:4f:ca:f1:29:
e8:c0:cd:ae:c9:1a:41:dd:4d:3b:9c:37:02:dd:ff:80:c0:b0:
56:49:6d:ac:0f:e6:f2:c0:d9:6f:1b:66:ae:29:72:61:eb:20:
e0:02:d2:3b:2a:01:c8:7b:d2:77:74:16:18:7a:c5:57:b7:6b:
0d:ea:cb:3d:be:2c:a4:4c:d5:3b:d1:8c:b3:1c:05:aa:a8:04:
8c:2d:26:50:fb:ca:59:a7:d8:69:c2:b2:3e:f4:e7:c7:7a:8b:
1c:85:7f:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:00 2024 by rpki-client on console-ams.rpki-client.org