Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WU0JXkAEJAGfao58SLkO-vPu1oI.roa
File: WU0JXkAEJAGfao58SLkO-vPu1oI.roa (raw, json)
Hash identifier: sxi425xM0zVmEauC+rjmyTnf6R1sdyRT9fxWUZtjUhc=
Subject key identifier: 59:4D:09:5E:40:04:24:01:9F:6A:8E:7C:48:B9:0E:FA:F3:EE:D6:82
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018D0C51C240593E34763D52901E5857360C
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WU0JXkAEJAGfao58SLkO-vPu1oI.roa
Signing time: Mon 15 Jan 2024 08:51:40 +0000
ROA not before: Mon 15 Jan 2024 08:51:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44620
IP address blocks: 194.87.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 29 Jun 2024 09:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0c:51:c2:40:59:3e:34:76:3d:52:90:1e:58:57:36:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 15 08:51:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=594d095e400424019f6a8e7c48b90efaf3eed682
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:16:fe:72:b6:7e:0b:dd:96:25:00:4f:26:2d:
b5:d2:1f:b3:21:df:c7:ad:46:f6:17:3c:c7:ca:0e:
53:e2:3e:f3:ac:8f:68:70:36:40:ea:36:6d:12:bb:
7f:a3:e7:9d:d3:12:b6:82:66:17:6f:e1:1c:5a:31:
ff:c4:9d:71:09:28:c2:0e:80:a6:cc:af:53:ad:c0:
44:5e:65:f5:bb:82:bd:39:ca:4c:b3:91:0b:a6:e9:
6e:6b:dc:1a:f2:fc:2d:32:df:58:f7:54:46:ae:97:
bb:df:2c:1f:9d:bc:92:c8:f3:91:40:b4:03:20:f4:
02:73:af:35:04:30:78:5d:4b:c0:c3:bc:47:d0:51:
4f:f5:26:bc:03:d8:60:b9:27:4f:bc:8f:8c:fe:ed:
c9:84:4b:d4:95:96:e8:49:3a:c0:57:04:ef:62:49:
63:c9:56:87:31:27:e2:e9:8c:44:8c:71:97:72:c1:
14:a3:08:4c:b6:29:68:03:8f:83:df:53:d6:1d:f9:
a6:ef:f4:63:e0:ac:b9:03:67:06:e3:9b:a7:26:63:
ef:cb:f3:24:11:d6:fb:1f:70:52:f3:48:8b:05:92:
d9:e5:5a:5a:2b:9b:ef:96:c2:48:6c:35:9b:51:11:
50:54:13:84:e5:46:61:dd:d6:44:c7:51:c0:8f:b2:
56:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:4D:09:5E:40:04:24:01:9F:6A:8E:7C:48:B9:0E:FA:F3:EE:D6:82
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WU0JXkAEJAGfao58SLkO-vPu1oI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.246.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:7f:b9:8e:5c:c8:17:e4:9f:dd:47:96:d0:c6:68:a4:cf:c9:
0f:16:ec:97:a6:fa:25:ad:ea:1e:fb:8e:5f:26:fb:99:e3:47:
e5:3d:45:15:71:34:2b:cd:47:5b:80:25:1c:bf:fa:13:6b:6d:
1a:c9:0a:b6:8a:12:3d:42:51:3d:5e:45:5d:57:4e:8e:28:bf:
60:76:6f:81:7c:45:74:f1:67:a1:55:43:85:74:2a:1e:26:39:
01:9c:ac:05:05:28:bd:b4:d6:72:c8:18:4b:3f:d5:30:9f:02:
82:05:bf:2a:fd:c7:72:39:a5:08:bf:0a:c5:9b:e6:bd:3e:1a:
9a:57:37:6d:ae:c8:8e:9a:2e:72:79:2e:5b:4c:e1:ad:bd:5c:
5b:99:f4:08:73:08:d3:32:e5:14:0c:af:1d:66:d6:af:1a:94:
46:63:3a:6e:89:00:d2:23:24:b6:d2:95:1c:68:1c:d8:bc:d3:
a5:b8:43:25:59:47:40:5a:34:6e:a9:c6:ea:a0:05:26:6d:bd:
b9:99:85:85:04:a6:5d:7e:9a:3d:55:f7:40:14:27:4d:f7:6a:
b8:68:c2:f5:c7:48:46:f0:f3:48:0f:bd:db:ec:8e:61:34:0d:
f8:be:a9:53:6b:7c:f8:ae:18:a9:96:6a:d8:6c:ef:d3:96:e9:
49:d8:7e:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 29 10:07:54 2024 by rpki-client on console-fra.rpki-client.org