Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WNcBQsmyWATXjqvsg5H0SvwiMEA.roa
File: WNcBQsmyWATXjqvsg5H0SvwiMEA.roa (raw, json)
Hash identifier: 7SjhzK16Ak/99rEEur/Sy0S1NR4k6NZkQEcQZoRuWyM=
Subject key identifier: 58:D7:01:42:C9:B2:58:04:D7:8E:AB:EC:83:91:F4:4A:FC:22:30:40
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018B60B1F2644A773999D6B4BFC86B36CC53
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WNcBQsmyWATXjqvsg5H0SvwiMEA.roa
Signing time: Tue 24 Oct 2023 07:59:16 +0000
ROA not before: Tue 24 Oct 2023 07:59:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 147186
IP address blocks: 194.87.141.0/24 maxlen: 24
194.87.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 29 Oct 2023 13:10:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:60:b1:f2:64:4a:77:39:99:d6:b4:bf:c8:6b:36:cc:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Oct 24 07:59:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58d70142c9b25804d78eabec8391f44afc223040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:72:4f:38:89:22:ba:df:bd:97:a0:82:ec:87:
a6:e2:fb:af:19:df:00:f4:64:1f:33:c9:8b:0c:e8:
a7:a1:79:c1:70:b2:0f:15:7f:ac:d9:07:95:3c:7c:
41:32:6e:c8:13:4a:63:60:19:de:a2:f6:ec:31:1e:
7d:46:fe:3c:4c:ee:98:82:24:cc:cc:11:65:a6:95:
94:6e:08:ba:f6:27:fb:e6:8a:fe:83:d6:25:64:9d:
be:e6:22:d9:31:78:f3:ce:e4:00:88:50:33:8c:2e:
b1:d2:60:1a:e2:35:ad:10:77:05:55:77:02:e3:5d:
63:df:f6:ca:96:ad:3e:45:dd:ff:86:78:09:57:b8:
12:e3:b4:bb:dc:ea:1e:33:63:90:77:79:57:bd:6c:
cf:e8:1f:3a:6b:c4:ac:07:70:3b:08:8f:74:8a:35:
db:2b:77:57:94:8a:e9:0e:95:a2:95:f7:90:42:43:
3d:24:45:cc:ba:08:c4:24:21:94:54:72:d2:bc:5f:
d3:15:96:5a:67:2f:10:72:e9:b9:64:4c:40:de:9e:
ac:4c:cf:2c:0d:7a:db:ab:96:93:0b:8b:44:48:6d:
e0:b5:33:44:72:d3:04:84:50:a8:c1:43:41:23:e9:
59:86:de:4f:9a:95:ee:4d:89:c2:1d:84:11:80:ac:
4c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:D7:01:42:C9:B2:58:04:D7:8E:AB:EC:83:91:F4:4A:FC:22:30:40
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WNcBQsmyWATXjqvsg5H0SvwiMEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.33.0/24
194.87.141.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:ef:7c:d3:55:9a:00:12:f5:65:18:a5:ea:6d:62:8d:3f:d4:
fb:65:b1:6f:64:06:21:10:0a:17:7f:37:af:5a:10:67:b2:15:
8b:73:61:7f:a7:c1:64:7e:a7:19:8f:39:62:f9:c4:ac:9c:91:
3b:99:ca:7e:34:df:95:be:c6:89:ad:96:d9:f7:03:69:ea:17:
08:28:c0:e4:58:e7:1a:db:30:7f:23:b6:a7:18:03:8f:f0:a8:
13:72:a6:d4:b8:53:43:01:9e:62:59:de:bf:b6:e6:66:59:66:
bd:b6:76:f8:48:9e:7d:4c:e8:6c:00:3a:63:97:78:f7:ff:20:
06:20:09:1b:ff:4e:25:d2:ac:74:d6:23:8b:c0:4d:26:69:cd:
25:b4:3c:e3:50:97:f3:6e:70:f2:91:53:fa:09:c6:b3:47:3b:
8b:94:fd:41:f8:e8:55:41:d6:71:72:58:09:4b:74:49:f5:2c:
2b:68:d0:d2:06:d9:5f:48:55:29:0b:b7:05:82:3c:cb:13:9f:
de:d8:5f:e3:f1:9f:d5:f5:d8:a9:db:98:84:a1:68:61:eb:c0:
a4:ca:3e:ff:0f:fa:62:56:28:16:bd:3a:61:54:58:0a:57:d0:
17:66:dc:e6:4e:26:55:3e:28:c0:fc:1f:94:34:18:21:4b:5f:
68:0b:40:67
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYtgsfJkSnc5mda0v8hrNsxTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMxMDI0MDc1OTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OGQ3MDE0MmM5YjI1ODA0ZDc4ZWFiZWM4MzkxZjQ0YWZjMjIzMDQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkXJPOIkiut+9l6CC7Iem4vuvGd8A
9GQfM8mLDOinoXnBcLIPFX+s2QeVPHxBMm7IE0pjYBneovbsMR59Rv48TO6YgiTM
zBFlppWUbgi69if75or+g9YlZJ2+5iLZMXjzzuQAiFAzjC6x0mAa4jWtEHcFVXcC
411j3/bKlq0+Rd3/hngJV7gS47S73OoeM2OQd3lXvWzP6B86a8SsB3A7CI90ijXb
K3dXlIrpDpWilfeQQkM9JEXMugjEJCGUVHLSvF/TFZZaZy8Qcum5ZExA3p6sTM8s
DXrbq5aTC4tESG3gtTNEctMEhFCowUNBI+lZht5PmpXuTYnCHYQRgKxM9QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFjXAULJslgE146r7IOR9Er8IjBAMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvV05jQlFzbXlXQVRYanF2c2c1SDBTdndpTUVBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwlchAwQA
wleNMA0GCSqGSIb3DQEBCwUAA4IBAQAs73zTVZoAEvVlGKXqbWKNP9T7ZbFvZAYh
EAoXfzevWhBnshWLc2F/p8FkfqcZjzli+cSsnJE7mcp+NN+VvsaJrZbZ9wNp6hcI
KMDkWOca2zB/I7anGAOP8KgTcqbUuFNDAZ5iWd6/tuZmWWa9tnb4SJ59TOhsADpj
l3j3/yAGIAkb/04l0qx01iOLwE0mac0ltDzjUJfzbnDykVP6CcazRzuLlP1B+OhV
QdZxclgJS3RJ9SwraNDSBtlfSFUpC7cFgjzLE5/e2F/j8Z/V9dip25iEoWhh68Ck
yj7/D/piVigWvTphVFgKV9AXZtzmTiZVPijA/B+UNBghS19oC0Bn
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:18 2024 by rpki-client on console-fra.rpki-client.org