Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/411877-b51a-464a-ad9e-104b14f5b0f8/1/WZ8VwXZ1M4H5A650K8GfgnGqlw0.roa
File: WZ8VwXZ1M4H5A650K8GfgnGqlw0.roa (raw, json)
Hash identifier: vrcLNiRae0kn55l+ybVC0edClU4bswcJwyjBkgJ3rnY=
Subject key identifier: 59:9F:15:C1:76:75:33:81:F9:03:AE:74:2B:C1:9F:82:71:AA:97:0D
Certificate issuer: /CN=3d65564a8954d6ae952f8a1f7af6c1cfba78094a
Certificate serial: 0185706742B77C02D4A6B8FF4B06E40BA7CB
Authority key identifier: 3D:65:56:4A:89:54:D6:AE:95:2F:8A:1F:7A:F6:C1:CF:BA:78:09:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PWVWSolU1q6VL4ofevbBz7p4CUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/411877-b51a-464a-ad9e-104b14f5b0f8/1/WZ8VwXZ1M4H5A650K8GfgnGqlw0.roa
Signing time: Mon 02 Jan 2023 02:54:53 +0000
ROA not before: Mon 02 Jan 2023 02:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49964
IP address blocks: 91.216.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:42:b7:7c:02:d4:a6:b8:ff:4b:06:e4:0b:a7:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d65564a8954d6ae952f8a1f7af6c1cfba78094a
Validity
Not Before: Jan 2 02:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=599f15c176753381f903ae742bc19f8271aa970d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b8:4c:2e:2c:4d:21:bb:3b:b7:64:0c:d3:e4:
5c:3b:ad:16:c0:2c:8a:86:a1:e6:1c:9f:69:92:5b:
bb:a9:1c:ea:a3:24:73:46:3a:21:71:e9:36:15:9f:
f6:1f:56:37:8c:b0:a2:63:47:3f:c0:78:8f:96:6a:
b5:b5:fb:e5:8d:dc:0d:69:f7:2e:16:ad:fd:84:af:
4d:b0:30:4e:1c:fa:67:06:10:24:94:cb:84:da:8e:
3c:f2:6c:fc:99:52:67:0e:bd:a8:4f:c4:ea:62:3f:
6e:22:34:b3:91:5e:b4:84:3d:33:ef:db:fd:27:44:
b4:3a:43:32:5a:a5:3a:9c:08:95:53:e6:cf:22:62:
b5:b8:90:26:a7:bd:ab:96:2a:73:61:8e:88:05:33:
d5:7e:54:7c:5e:29:d8:09:b5:c3:89:ef:06:15:01:
f8:f3:0c:66:ca:7b:ff:48:63:ce:77:ef:04:bb:6d:
d4:d6:3f:47:9f:c4:ed:da:9c:26:38:41:2a:10:cd:
c7:b7:d6:f2:1b:81:73:77:1f:3a:68:a3:7b:5a:44:
24:b1:a9:82:12:d1:e3:70:0a:79:b2:3c:e7:59:83:
d9:e4:d1:33:ce:e0:c8:7a:68:eb:df:59:c4:cd:06:
92:ab:cb:fa:5a:bc:ad:d4:f7:9d:be:35:41:1f:63:
00:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:9F:15:C1:76:75:33:81:F9:03:AE:74:2B:C1:9F:82:71:AA:97:0D
X509v3 Authority Key Identifier:
keyid:3D:65:56:4A:89:54:D6:AE:95:2F:8A:1F:7A:F6:C1:CF:BA:78:09:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PWVWSolU1q6VL4ofevbBz7p4CUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/411877-b51a-464a-ad9e-104b14f5b0f8/1/WZ8VwXZ1M4H5A650K8GfgnGqlw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/411877-b51a-464a-ad9e-104b14f5b0f8/1/PWVWSolU1q6VL4ofevbBz7p4CUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.145.0/24
Signature Algorithm: sha256WithRSAEncryption
70:62:3e:9f:b8:63:92:31:3a:24:08:4f:d5:b7:fc:f7:9a:0f:
b7:2d:ae:51:37:e8:d5:a7:a5:ed:b2:cb:b4:6f:4f:f1:7e:60:
b2:4b:6b:ef:d3:a9:2f:56:ec:70:04:80:d4:ce:c1:30:69:38:
63:b5:e4:3a:e0:d0:63:b3:fb:14:6e:c1:84:66:0b:2d:ed:77:
21:6d:47:eb:62:6a:9b:ee:07:e2:d4:01:7a:c7:6f:00:4b:97:
75:d8:77:0e:01:2b:0c:12:7f:96:ae:23:92:3a:60:7c:b7:73:
e1:84:39:c8:dd:c5:f8:89:db:f0:ef:a1:c2:5d:b1:dc:68:ba:
65:3c:18:47:d2:05:6b:69:98:29:32:2e:4c:1b:bf:cf:d9:29:
f9:70:0a:ff:32:c1:3c:14:3b:c3:a8:59:2b:62:62:19:58:7a:
db:47:d1:e0:8c:1e:87:be:27:15:65:24:b1:7a:32:c2:93:2c:
c3:d3:1f:62:7a:85:95:16:f5:93:dc:d1:68:83:f0:ef:b5:da:
80:1a:21:b4:32:e3:9b:bb:de:db:e1:7f:1b:4b:2c:e9:c5:9c:
c0:42:ed:cb:c5:4d:6c:d6:25:eb:34:36:23:be:ff:e1:f5:f3:
08:df:e8:38:83:81:d3:de:79:b8:f0:d8:3a:77:ac:d3:e2:41:
15:39:2c:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:37 2024 by rpki-client on console-ams.rpki-client.org