Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/WzyjL-kMZdLbi4r-jANeOelPuIk.roa
File: WzyjL-kMZdLbi4r-jANeOelPuIk.roa (raw, json)
Hash identifier: 4SUoX059iGdN5QAqXGL6HKRANGXVj9wXjXMmVn8Nglc=
Subject key identifier: 5B:3C:A3:2F:E9:0C:65:D2:DB:8B:8A:FE:8C:03:5E:39:E9:4F:B8:89
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 018EE6DBFA30935B5A4267F7D10110A7F5E4
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/WzyjL-kMZdLbi4r-jANeOelPuIk.roa
Signing time: Tue 16 Apr 2024 12:22:39 +0000
ROA not before: Tue 16 Apr 2024 12:22:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 193.38.249.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 May 2024 19:49:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e6:db:fa:30:93:5b:5a:42:67:f7:d1:01:10:a7:f5:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Apr 16 12:22:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b3ca32fe90c65d2db8b8afe8c035e39e94fb889
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f9:e0:de:a9:af:b6:3d:bc:39:30:d8:9e:19:
cb:74:37:24:ac:8d:c6:ea:e9:63:c0:16:2f:5b:f7:
80:c1:a9:9e:02:5a:e5:3e:b6:59:53:88:0c:8c:08:
c2:80:df:a4:c1:78:77:c0:2d:1c:4c:08:42:41:31:
38:ad:0f:4a:48:3e:0f:e9:5f:12:42:1d:a5:2a:a2:
0a:d5:a0:25:ad:ae:93:44:b8:56:d8:0e:9b:b7:31:
29:10:0e:de:53:8c:10:a7:6e:cc:1e:0d:da:bd:ef:
88:68:f3:36:f1:2e:4f:dd:ee:60:41:f5:dd:83:15:
b6:b6:e2:4d:7b:62:b6:e7:40:99:54:57:e7:6c:ff:
52:57:3a:9a:89:21:fe:86:78:32:61:15:ed:16:07:
0a:bd:e9:e3:8e:87:a2:b4:fd:97:3c:00:97:14:e3:
05:d7:24:2f:7c:e0:ad:25:97:c2:7a:dc:fd:cd:2a:
59:79:27:be:75:d6:a2:0b:1e:b6:b8:a5:bf:30:94:
c9:f7:27:22:15:6a:55:8a:c2:bf:aa:71:45:10:4c:
a1:f5:35:ce:34:68:38:40:0f:30:b9:7b:90:cb:bf:
34:22:02:6e:6b:ab:91:fb:34:95:96:64:74:ee:00:
70:ee:a2:db:83:ca:27:96:48:50:42:d4:23:78:12:
e8:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:3C:A3:2F:E9:0C:65:D2:DB:8B:8A:FE:8C:03:5E:39:E9:4F:B8:89
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/WzyjL-kMZdLbi4r-jANeOelPuIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.38.249.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:03:dc:4d:7d:79:28:78:88:ab:04:bc:26:44:00:2f:b3:23:
b8:f4:3b:06:5f:6b:19:77:f2:94:31:11:5f:95:0b:69:da:5d:
86:c1:49:52:1b:a7:fd:6f:71:32:00:a9:65:5e:e7:2f:2a:f7:
c8:0c:34:9c:ed:9d:1d:42:e2:73:f2:48:33:dd:11:de:68:d2:
91:63:52:b3:11:7a:95:75:da:1b:67:d8:7b:77:07:b7:43:d5:
5b:a1:2c:ec:29:d2:e9:0e:fa:55:b6:e6:43:2d:e7:4d:d7:dc:
11:dd:ca:06:fe:7e:35:62:c5:d4:09:6d:8a:28:07:09:91:95:
50:79:d1:a3:86:00:fe:20:0a:0b:85:76:1f:18:38:6a:6d:c1:
95:77:68:ba:21:ed:ab:8f:2f:11:15:19:14:34:7c:aa:af:3d:
0e:de:dc:80:6b:da:7f:29:d7:fd:b2:8b:fc:7b:09:27:c4:7a:
a5:4b:b1:c9:8c:22:1e:1b:90:1b:15:41:cc:60:4b:de:57:9a:
03:74:32:02:b0:12:fb:b9:f8:37:37:b9:70:dc:fc:be:88:71:
c4:8f:30:c6:f6:24:41:08:45:fe:c5:7a:92:ad:47:e4:76:20:
13:8a:e3:5c:b5:0e:e5:b6:99:9b:4e:aa:9d:c0:f0:d9:db:79:
46:80:7e:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 21:05:47 2024 by rpki-client on console-fra.rpki-client.org