Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/1b8648-5e96-4cef-8055-64e729ef302d/1/WR_AfZL_JoJTycIC1WW7O4-o5qo.roa
File: WR_AfZL_JoJTycIC1WW7O4-o5qo.roa (raw, json)
Hash identifier: lc5n/0FwgaZsD6HIBx3x5sknT8Z/fAcLy3nYNUX7mP8=
Subject key identifier: 59:1F:C0:7D:92:FF:26:82:53:C9:C2:02:D5:65:BB:3B:8F:A8:E6:AA
Certificate issuer: /CN=8d576a86ae3a3532e109c5cdf729ad478c1c697f
Certificate serial: 01856E541DE657CE5ED66373DBB329D0A6AA
Authority key identifier: 8D:57:6A:86:AE:3A:35:32:E1:09:C5:CD:F7:29:AD:47:8C:1C:69:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVdqhq46NTLhCcXN9ymtR4wcaX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/1b8648-5e96-4cef-8055-64e729ef302d/1/WR_AfZL_JoJTycIC1WW7O4-o5qo.roa
Signing time: Sun 01 Jan 2023 17:14:44 +0000
ROA not before: Sun 01 Jan 2023 17:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43701
IP address blocks: 193.23.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:54:1d:e6:57:ce:5e:d6:63:73:db:b3:29:d0:a6:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d576a86ae3a3532e109c5cdf729ad478c1c697f
Validity
Not Before: Jan 1 17:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=591fc07d92ff268253c9c202d565bb3b8fa8e6aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:82:71:36:1f:b1:dc:b0:3c:78:b7:b3:8b:cd:
ea:8b:7b:3d:85:62:22:2c:df:7a:ed:f4:44:b6:c9:
d8:89:bb:7d:1b:26:58:93:0d:00:66:65:d0:50:98:
bd:dd:ee:45:10:b1:31:3f:f7:f8:06:1a:13:9d:fd:
6b:6a:b0:6b:a8:61:74:fb:0a:ef:ef:94:66:0d:b7:
65:5f:16:fa:a0:bd:25:9e:0c:2b:f3:b5:24:a6:f4:
bf:f5:27:5b:1d:13:9c:59:4a:d5:4b:93:21:ad:89:
8b:f1:5a:c4:39:21:75:f9:e2:66:4d:7d:a7:52:1f:
24:63:8a:26:3c:3c:2f:fa:f3:2f:de:df:30:97:2e:
3f:97:7f:df:cb:e4:1e:0e:68:ad:89:70:a5:0a:a6:
f3:5e:0b:b8:09:90:ca:b0:e1:9d:9d:34:54:e0:64:
fc:46:79:10:af:97:bd:d6:b7:bc:c0:42:86:71:c8:
14:98:ac:c0:9d:cc:95:cf:f4:0e:aa:bd:ce:5f:6b:
c5:be:26:1f:6d:0f:3b:11:13:dd:2a:96:41:bb:0e:
a9:a6:64:d8:c1:b9:3c:fe:bf:fd:5e:a5:06:34:87:
59:41:93:01:33:1c:40:8c:c1:f8:29:9e:78:e0:fa:
e1:ce:49:ee:90:bf:39:fa:50:a8:b3:ee:24:d7:5a:
7e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:1F:C0:7D:92:FF:26:82:53:C9:C2:02:D5:65:BB:3B:8F:A8:E6:AA
X509v3 Authority Key Identifier:
keyid:8D:57:6A:86:AE:3A:35:32:E1:09:C5:CD:F7:29:AD:47:8C:1C:69:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVdqhq46NTLhCcXN9ymtR4wcaX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/1b8648-5e96-4cef-8055-64e729ef302d/1/WR_AfZL_JoJTycIC1WW7O4-o5qo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/1b8648-5e96-4cef-8055-64e729ef302d/1/jVdqhq46NTLhCcXN9ymtR4wcaX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.230.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:4a:51:23:ed:06:b7:10:b8:2d:ec:0e:ba:df:ab:c6:01:b4:
39:9d:8c:01:f1:d2:66:10:26:3b:96:f6:49:ef:c8:c1:05:f6:
aa:d5:61:92:3b:ee:03:3c:3b:11:d8:a3:94:ac:6e:05:ea:0e:
72:d8:6e:65:bc:0b:46:c6:a1:3f:09:ce:30:c3:aa:71:3e:ff:
c3:68:9e:e0:7e:9c:6b:5b:93:d6:68:de:87:c8:31:ff:01:ac:
94:b2:da:fa:6a:d6:f8:ca:3c:68:c7:03:cd:17:86:64:ce:9d:
fd:01:f4:f8:60:c8:aa:55:44:d4:79:fe:85:4b:67:b6:31:09:
49:de:96:04:7d:e7:98:e5:e1:79:c3:54:5a:c6:2c:52:8a:25:
b5:f4:2a:7d:ea:fd:3e:05:bc:37:6d:c2:67:85:49:3f:99:6c:
35:c8:59:ff:42:09:8e:e1:be:20:d3:4d:ec:4e:12:d5:15:09:
45:db:bb:fa:3f:da:54:7c:41:ea:af:cc:b7:7e:e4:5f:26:af:
d4:4f:e4:79:29:6a:cd:1b:bb:29:ed:6b:ac:de:2a:e2:81:fc:
e8:23:e5:a7:b6:29:7c:dc:3e:90:b7:53:2f:a1:80:c6:b4:76:
b0:b9:18:68:a0:c3:a6:4c:54:7f:75:5c:3a:c1:4e:8d:50:bd:
e8:49:df:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:54 2024 by rpki-client on console-fra.rpki-client.org