Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/d7fd2c-95a9-4c09-9e47-827f9648c022/1/WG7s793G6FR6REaxqoRJW6nlwJk.roa
File: WG7s793G6FR6REaxqoRJW6nlwJk.roa (raw, json)
Hash identifier: +zPeCH2gMq37i5tVCiENX3VbzXKmfvTtlU5wqmW2k6k=
Subject key identifier: 58:6E:EC:EF:DD:C6:E8:54:7A:44:46:B1:AA:84:49:5B:A9:E5:C0:99
Certificate issuer: /CN=07d64daef339e6fdae644db1b20bbf54e67e5d66
Certificate serial: 01856CAEF3200AF5B15F10CCCA7CBB5C9BB2
Authority key identifier: 07:D6:4D:AE:F3:39:E6:FD:AE:64:4D:B1:B2:0B:BF:54:E6:7E:5D:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9ZNrvM55v2uZE2xsgu_VOZ-XWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/d7fd2c-95a9-4c09-9e47-827f9648c022/1/WG7s793G6FR6REaxqoRJW6nlwJk.roa
Signing time: Sun 01 Jan 2023 09:34:42 +0000
ROA not before: Sun 01 Jan 2023 09:34:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48319
IP address blocks: 94.199.32.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ae:f3:20:0a:f5:b1:5f:10:cc:ca:7c:bb:5c:9b:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07d64daef339e6fdae644db1b20bbf54e67e5d66
Validity
Not Before: Jan 1 09:34:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=586eecefddc6e8547a4446b1aa84495ba9e5c099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c9:10:b8:f9:9e:a0:82:11:f5:35:4d:d5:d8:
46:22:ea:c4:f8:d0:b2:2b:68:86:81:78:10:1b:f1:
71:0a:b8:fd:9e:ef:ec:f4:4c:10:a2:99:e4:bf:ed:
0c:d5:e6:b0:41:3f:fa:d5:72:c9:d8:0a:a5:a4:f8:
53:56:0b:7b:3d:2e:f3:c6:9e:97:4a:d1:12:66:16:
92:07:13:be:d0:44:0c:fe:4b:42:a8:29:94:66:23:
61:e0:d9:9a:78:50:8b:f1:20:28:41:c4:03:00:fa:
2c:a7:92:ad:7f:40:bc:67:c0:93:bb:27:a5:49:62:
2f:b6:70:2b:53:74:9b:ba:77:27:5a:11:9d:fa:f9:
6e:54:f5:80:81:2b:f2:6f:26:52:ce:b4:b1:7e:21:
ef:3a:c0:2a:47:66:f4:91:28:31:50:00:3d:8b:51:
59:57:e7:c9:02:02:73:83:70:61:b4:e4:db:ee:88:
0b:46:c7:bd:92:0a:c9:0d:aa:2f:6d:64:40:c5:41:
68:6e:a2:b9:59:f7:c2:2e:fe:30:35:08:a6:6a:00:
a3:89:97:7f:b6:19:55:e7:e9:51:31:d9:58:e6:90:
c4:a4:47:8f:52:6a:4e:26:5e:d1:c0:01:ab:3e:65:
36:f0:1f:22:0e:f2:c2:1d:d2:30:04:ce:38:3c:fd:
41:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:6E:EC:EF:DD:C6:E8:54:7A:44:46:B1:AA:84:49:5B:A9:E5:C0:99
X509v3 Authority Key Identifier:
keyid:07:D6:4D:AE:F3:39:E6:FD:AE:64:4D:B1:B2:0B:BF:54:E6:7E:5D:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9ZNrvM55v2uZE2xsgu_VOZ-XWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/d7fd2c-95a9-4c09-9e47-827f9648c022/1/WG7s793G6FR6REaxqoRJW6nlwJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/d7fd2c-95a9-4c09-9e47-827f9648c022/1/B9ZNrvM55v2uZE2xsgu_VOZ-XWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.199.32.0/21
Signature Algorithm: sha256WithRSAEncryption
4a:f8:99:23:cf:44:7f:01:7a:f6:2e:2c:f7:78:02:fa:5c:b3:
eb:85:c5:12:e4:b2:e2:7e:ed:2c:80:fe:89:4d:b9:c3:96:66:
6c:d4:9d:64:24:51:c7:8e:47:c0:8b:a7:51:fa:f8:e8:4a:a7:
8d:74:cc:5e:76:22:a3:b8:7e:de:ea:af:9a:06:9a:e1:1d:ba:
ae:0b:b8:86:43:f2:97:69:0a:8e:e1:a0:9a:5b:10:67:7a:b7:
7b:05:48:4d:b9:97:53:89:78:a5:3b:28:7b:42:c7:d0:d5:ed:
30:7f:89:29:74:87:90:5d:e3:a1:4c:71:68:f5:92:21:7a:69:
17:a8:0d:1a:bf:bd:da:68:7e:74:98:43:ad:64:da:38:78:f9:
bb:f1:54:45:67:63:ef:13:49:3e:93:56:94:0a:6f:11:ac:aa:
3c:32:ce:94:6f:0a:af:93:80:76:50:13:01:98:6d:52:58:00:
38:0e:5f:25:d9:eb:7d:38:aa:b6:a2:42:81:9e:ea:6f:91:bc:
06:8a:a2:09:2d:f2:ac:42:91:9d:20:13:07:59:31:e5:05:07:
85:7b:0e:04:9c:6e:15:4a:14:6b:41:c8:61:e6:29:22:4f:37:
cf:6f:c3:64:c8:40:95:57:db:b3:c9:f1:4d:46:5e:7d:1e:cc:
71:02:39:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:47 2024 by rpki-client on console-fra.rpki-client.org