Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/wmvlByDpMpMIyWpEH6wFTZo3kK4.roa
File: wmvlByDpMpMIyWpEH6wFTZo3kK4.roa (raw, json)
Hash identifier: 1L3lNuO63fzF+14yMWI5OilRtJ6pm4ba2Fkay5r6/7k=
Subject key identifier: C2:6B:E5:07:20:E9:32:93:08:C9:6A:44:1F:AC:05:4D:9A:37:90:AE
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018CC649CE22DDF7370BBB41C662A488E338
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/wmvlByDpMpMIyWpEH6wFTZo3kK4.roa
Signing time: Mon 01 Jan 2024 18:29:34 +0000
ROA not before: Mon 01 Jan 2024 18:29:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208949
IP address blocks: 109.72.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Jan 2024 08:13:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:ce:22:dd:f7:37:0b:bb:41:c6:62:a4:88:e3:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jan 1 18:29:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c26be50720e9329308c96a441fac054d9a3790ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:53:c4:22:fc:7f:6e:47:e2:c8:98:ee:94:53:
85:7e:8f:63:e4:ad:da:9b:c5:30:3e:c7:e8:02:e4:
bd:f3:a9:16:7e:51:a3:db:2d:75:6f:cc:54:bc:45:
74:09:28:91:fb:46:e9:a7:3f:e6:5e:7d:84:9e:f9:
b1:6c:89:61:4e:c8:1b:10:22:f0:b2:cf:d8:5c:68:
fe:c9:ae:88:0e:b0:1b:48:51:e8:e7:a1:0c:c0:48:
01:c6:03:22:6f:4b:89:1f:96:dd:31:c3:ed:ca:03:
e5:94:2d:88:62:cd:f2:e4:17:21:7f:d5:40:1d:09:
50:cf:49:37:08:8c:fd:b2:63:10:bb:aa:c1:65:21:
21:a9:51:61:b7:ce:ae:f4:f0:54:cb:41:0b:5d:21:
58:54:2e:63:f5:fe:1a:44:4f:32:e8:f4:fe:7f:cc:
72:5a:25:2f:c9:a8:f2:ad:21:bc:04:52:e5:5e:3c:
84:52:cc:01:dc:7e:6e:d7:0e:46:89:0d:27:a2:6e:
8b:ae:3a:f0:df:30:f0:dc:00:09:2a:5e:5a:e9:99:
80:4d:3f:68:62:eb:89:fe:2f:80:92:05:07:7f:73:
b0:fc:b4:f1:94:80:2c:ed:d7:ed:04:0c:fe:2f:4c:
10:ca:d2:2b:8a:58:50:0c:ec:49:91:91:e6:04:91:
ae:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:6B:E5:07:20:E9:32:93:08:C9:6A:44:1F:AC:05:4D:9A:37:90:AE
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/wmvlByDpMpMIyWpEH6wFTZo3kK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.126.0/24
Signature Algorithm: sha256WithRSAEncryption
04:ac:61:1e:ce:99:2d:f6:51:91:c9:c4:e7:29:ad:49:b7:c9:
a4:f8:e0:f9:cb:40:36:34:85:34:de:89:3b:75:34:15:b0:ad:
84:d8:d6:43:fc:68:9b:2b:e0:34:aa:ef:01:af:55:33:b5:39:
48:b5:20:66:83:bf:f5:02:a1:76:5d:9e:fe:a6:1d:83:27:95:
40:7c:89:10:02:48:24:4e:bf:ef:af:1f:c0:21:be:7e:66:cb:
51:7e:9a:ab:66:57:0b:2f:52:1d:66:6f:34:a0:ed:b1:d7:56:
1e:42:5a:19:69:36:a4:ce:47:df:6d:f6:f4:50:e1:fe:36:3b:
5c:b0:83:f6:d4:25:f5:64:6a:6b:16:aa:84:94:2d:de:f7:ae:
04:4b:69:3a:0f:15:7b:35:a0:35:1a:87:49:02:c2:4b:1e:76:
20:97:0e:23:25:96:66:b6:16:ea:fb:16:45:39:ab:eb:5e:77:
87:a5:99:c2:7d:3d:23:d0:76:67:4e:cb:f8:57:70:2c:41:a7:
c1:6f:06:7a:b2:6f:fc:16:4f:2e:f5:57:59:03:87:f3:aa:26:
15:81:a5:82:b5:18:4e:f2:ce:17:04:ad:2e:ec:16:da:b3:97:
c0:be:99:43:e4:72:39:28:1d:50:e4:4b:f9:9e:52:cc:db:14:
e7:97:95:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org