Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/wDKQb3pBVnMArkYlVlMPuapbc4k.roa
File: wDKQb3pBVnMArkYlVlMPuapbc4k.roa (raw, json)
Hash identifier: VWy48KH9nQ7UJMgnWSI8zPNpWPeHuDf2DbFoL/b3QNQ=
Subject key identifier: C0:32:90:6F:7A:41:56:73:00:AE:46:25:56:53:0F:B9:AA:5B:73:89
Certificate issuer: /CN=33c342c06aacc359d39439ff58defa8ea1875748
Certificate serial: 01856F0B64E815A91C9DC3F7052F6F5410B2
Authority key identifier: 33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/wDKQb3pBVnMArkYlVlMPuapbc4k.roa
Signing time: Sun 01 Jan 2023 20:34:55 +0000
ROA not before: Sun 01 Jan 2023 20:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51238
IP address blocks: 109.236.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:64:e8:15:a9:1c:9d:c3:f7:05:2f:6f:54:10:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33c342c06aacc359d39439ff58defa8ea1875748
Validity
Not Before: Jan 1 20:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c032906f7a41567300ae462556530fb9aa5b7389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f1:e7:2f:87:60:02:b8:d4:35:7c:99:29:45:
2f:a3:f0:34:98:bf:8c:0b:1f:6a:4d:45:0b:5f:70:
41:60:5d:2c:30:24:2f:7f:d2:56:9d:10:b4:09:4b:
18:8c:a0:b9:bc:d8:95:e1:c7:dc:3d:01:9e:de:b8:
34:03:99:fa:2a:35:6d:9f:cc:07:de:36:07:cd:fa:
a5:49:43:03:9f:90:1a:7b:7a:4b:4c:9b:19:fe:95:
b9:8d:7e:e5:88:39:b1:ed:7c:1e:f5:0e:c9:9c:20:
ad:8e:72:a2:2d:3a:dc:72:ef:cd:20:fb:31:0d:3e:
a8:d9:07:a5:56:1b:08:73:99:15:65:c1:c2:a0:3a:
77:e8:1e:97:f5:76:8b:45:32:11:4a:4c:11:c9:42:
5b:2f:39:27:f1:83:43:2c:87:4f:26:24:57:a0:bd:
c3:95:af:70:25:5f:53:7f:02:1b:43:e7:a7:d4:1a:
c3:f5:ce:5f:64:ed:28:49:79:1b:5b:48:22:e7:49:
88:34:b0:bf:10:de:99:6e:e6:ac:b6:fe:0f:63:a6:
1c:e3:92:eb:88:b4:49:72:55:1b:e6:ef:97:98:88:
59:51:02:96:51:88:9c:69:63:31:6c:5d:0a:e5:1e:
81:69:30:ca:4a:23:12:bd:c5:0d:a1:44:51:3a:8d:
19:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:32:90:6F:7A:41:56:73:00:AE:46:25:56:53:0F:B9:AA:5B:73:89
X509v3 Authority Key Identifier:
keyid:33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/wDKQb3pBVnMArkYlVlMPuapbc4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/M8NCwGqsw1nTlDn_WN76jqGHV0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.236.250.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:9f:ab:2c:8c:9d:b5:22:ea:ea:7a:44:10:35:5f:30:62:bf:
ee:bc:81:f3:17:55:dd:68:17:d1:a4:fb:44:da:65:f1:60:86:
2f:12:84:80:3c:4c:22:c9:06:13:45:b3:06:7c:b4:09:5f:68:
b3:fa:72:df:7f:26:f0:80:a9:f5:e5:c1:d1:21:f1:f7:16:40:
e6:da:8d:22:ca:ad:c6:df:0a:5c:b5:e9:5b:91:a3:40:20:ac:
a5:b4:b1:d2:84:17:d9:4d:4b:e6:eb:e0:e9:74:7d:7d:d5:41:
45:ac:1b:56:a4:13:08:25:29:de:a7:07:e2:de:cc:b7:cb:ec:
52:be:ca:4b:05:bd:9c:6f:24:6d:74:37:96:dc:1e:f9:15:78:
a6:49:16:1d:18:a6:eb:a3:da:00:ae:b5:16:df:9a:6c:f3:a4:
49:64:0d:5f:a9:c4:59:5f:0b:82:11:4b:c1:75:d2:db:51:d7:
93:6c:5f:0d:12:a9:40:ee:cb:5f:bc:04:3d:89:c4:8a:3f:68:
0f:ef:87:72:31:10:09:fa:7c:12:ca:8e:7f:a1:9d:a7:30:af:
ad:cb:81:69:5e:d2:3f:a1:5b:07:37:f6:19:a8:1e:d5:16:d2:
ed:c4:b6:0f:cf:fc:fd:83:98:46:9f:25:b0:86:3e:8a:9e:aa:
ff:0f:04:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:29 2024 by rpki-client on console-ams.rpki-client.org