Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WdgjnDdIWhJLUjDlMHbxp1gmYE4.roa
File: WdgjnDdIWhJLUjDlMHbxp1gmYE4.roa (raw, json)
Hash identifier: 3aVB0EMSY6HQR2pF9xoZnywcvID0H8RXqt78KNlsiYI=
Subject key identifier: 59:D8:23:9C:37:48:5A:12:4B:52:30:E5:30:76:F1:A7:58:26:60:4E
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018A6B2002164E33DA1C8C8CDDF7C6EA472F
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WdgjnDdIWhJLUjDlMHbxp1gmYE4.roa
Signing time: Wed 06 Sep 2023 15:32:54 +0000
ROA not before: Wed 06 Sep 2023 15:32:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211895
IP address blocks: 195.133.79.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6b:20:02:16:4e:33:da:1c:8c:8c:dd:f7:c6:ea:47:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 6 15:32:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59d8239c37485a124b5230e53076f1a75826604e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:81:d4:4f:43:33:20:bd:72:1e:f0:0f:20:58:
d6:a9:8c:ab:15:e3:14:3f:33:9b:29:a7:cf:da:20:
fc:51:c2:f7:b7:f4:4b:92:87:ba:14:8f:bf:2e:e3:
0a:30:ff:37:8c:fb:15:03:dc:c2:59:e1:f7:54:5f:
a4:40:a6:c7:fb:9c:08:6e:5b:c3:5f:0a:9b:95:0d:
57:6e:de:1a:9a:1c:00:80:5c:bf:f8:8a:e1:d3:60:
56:0a:f3:25:54:fc:a9:0c:a4:5f:af:0d:6b:90:21:
b2:d9:d6:4c:d1:a2:55:54:82:53:8a:dc:75:0e:2a:
7e:66:2e:c7:47:29:f3:bf:1f:b5:80:2d:54:0e:5b:
47:19:80:da:00:60:b1:8d:dd:09:4a:bd:e5:8f:41:
10:6d:f8:5f:01:ff:fa:2e:cb:9e:8b:d6:55:0f:87:
e7:58:c6:af:da:54:a5:8f:1c:ff:8e:b3:5d:83:0e:
d9:54:40:2c:0a:4a:3f:bd:07:32:ae:64:6f:e0:94:
6e:36:6d:0e:66:87:af:76:78:3b:3c:33:75:69:7e:
7b:63:60:6e:a6:b9:82:0c:aa:55:8a:ab:8a:15:2d:
44:6c:0c:8e:be:b6:f5:78:8d:d3:c3:ac:d9:ff:0d:
e7:5b:42:b9:fa:bc:8c:c9:7a:15:48:75:8b:53:fc:
41:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:D8:23:9C:37:48:5A:12:4B:52:30:E5:30:76:F1:A7:58:26:60:4E
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WdgjnDdIWhJLUjDlMHbxp1gmYE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.79.0/24
Signature Algorithm: sha256WithRSAEncryption
46:6b:47:8e:4a:e1:bc:d8:87:1a:e4:48:1b:91:e6:cd:3f:f5:
77:1c:29:9e:1f:9c:22:0b:cd:88:31:ba:d8:47:5e:3c:6f:78:
a3:6c:e7:8b:34:36:75:4a:f1:58:b6:3d:0b:a5:8f:e2:01:f5:
b0:f0:06:08:ec:1d:56:43:9b:e1:52:12:86:6f:e9:1e:76:e8:
b2:6f:96:96:c9:fc:5d:21:ee:86:0e:b6:63:08:74:06:da:40:
b4:85:ff:c7:9b:65:e7:ec:29:dd:59:d6:69:49:bc:aa:63:2f:
af:d3:dd:c5:0a:00:a6:4f:9d:a8:0a:73:c5:af:bf:05:b5:42:
0a:0b:f2:e7:2b:db:4d:cf:aa:b9:8f:f9:17:32:c8:2a:66:73:
27:51:dd:9f:0a:21:3e:5d:30:82:fc:f2:8f:aa:88:71:22:9c:
68:b4:02:f0:0b:0f:4f:d6:e7:22:61:56:53:9e:db:9b:22:45:
b8:1b:af:5f:6d:62:c0:02:52:c9:ba:80:ab:47:a4:a4:18:39:
cc:41:33:00:97:a2:5d:b7:ee:df:7e:0c:3a:a4:92:7c:4d:b2:
b1:b3:23:98:6a:90:04:0b:95:ee:f6:91:35:07:f1:b0:64:db:
0f:c2:a5:bc:1d:9a:1b:68:b9:1a:19:23:29:bc:1f:bd:26:72:
ba:9b:da:22
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYprIAIWTjPaHIyM3ffG6kcvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwOTA2MTUzMjU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OWQ4MjM5YzM3NDg1YTEyNGI1MjMwZTUzMDc2ZjFhNzU4MjY2MDRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyoHUT0MzIL1yHvAPIFjWqYyrFeMU
PzObKafP2iD8UcL3t/RLkoe6FI+/LuMKMP83jPsVA9zCWeH3VF+kQKbH+5wIblvD
XwqblQ1Xbt4amhwAgFy/+Irh02BWCvMlVPypDKRfrw1rkCGy2dZM0aJVVIJTitx1
Dip+Zi7HRynzvx+1gC1UDltHGYDaAGCxjd0JSr3lj0EQbfhfAf/6Lsuei9ZVD4fn
WMav2lSljxz/jrNdgw7ZVEAsCko/vQcyrmRv4JRuNm0OZoevdng7PDN1aX57Y2Bu
prmCDKpViquKFS1EbAyOvrb1eI3Tw6zZ/w3nW0K5+ryMyXoVSHWLU/xB8QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFnYI5w3SFoSS1Iw5TB28adYJmBOMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvV2Rnam5EZElXaEpMVWpEbE1IYnhwMWdtWUU0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw4VPMA0G
CSqGSIb3DQEBCwUAA4IBAQBGa0eOSuG82Ica5EgbkebNP/V3HCmeH5wiC82IMbrY
R148b3ijbOeLNDZ1SvFYtj0LpY/iAfWw8AYI7B1WQ5vhUhKGb+keduiyb5aWyfxd
Ie6GDrZjCHQG2kC0hf/Hm2Xn7CndWdZpSbyqYy+v093FCgCmT52oCnPFr78FtUIK
C/LnK9tNz6q5j/kXMsgqZnMnUd2fCiE+XTCC/PKPqohxIpxotALwCw9P1uciYVZT
ntubIkW4G69fbWLAAlLJuoCrR6SkGDnMQTMAl6Jdt+7ffgw6pJJ8TbKxsyOYapAE
C5Xu9pE1B/GwZNsPwqW8HZobaLkaGSMpvB+9JnK6m9oi
-----END CERTIFICATE-----
Generated at Mon Nov 6 08:00:16 2023 by rpki-client on console-fra.rpki-client.org