Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/W44y_RsxvSLxCvMyhAVOueWuigg.roa
File: W44y_RsxvSLxCvMyhAVOueWuigg.roa (raw, json)
Hash identifier: +aNBomPv5+ouz120cMNgbDnbgrOEecPNXRmAXdb5HEU=
Subject key identifier: 5B:8E:32:FD:1B:31:BD:22:F1:0A:F3:32:84:05:4E:B9:E5:AE:8A:08
Certificate issuer: /CN=08422168eda8423054d82eb018c383e2dbe8afdf
Certificate serial: 01856EF4187E008842F0F934C1E12B6B2778
Authority key identifier: 08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/W44y_RsxvSLxCvMyhAVOueWuigg.roa
Signing time: Sun 01 Jan 2023 20:09:28 +0000
ROA not before: Sun 01 Jan 2023 20:09:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60278
IP address blocks: 193.178.220.0/23 maxlen: 23
193.178.230.0/23 maxlen: 23
2a04:4940::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:f4:18:7e:00:88:42:f0:f9:34:c1:e1:2b:6b:27:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08422168eda8423054d82eb018c383e2dbe8afdf
Validity
Not Before: Jan 1 20:09:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b8e32fd1b31bd22f10af33284054eb9e5ae8a08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:34:f0:ac:e3:b9:ab:e3:ad:11:b2:c2:d6:7f:
01:bf:87:60:7f:52:0d:d8:57:99:b6:86:5f:66:54:
3b:98:fa:d5:1c:58:ec:3d:f2:59:2c:4b:89:ad:bc:
d9:fa:38:0b:f4:3a:b5:0c:73:aa:6f:89:c9:67:51:
d1:b2:22:2b:72:3d:df:b7:38:fb:94:cc:1f:a3:7c:
7e:79:c1:5d:22:7f:a7:d0:3c:49:55:32:c8:7b:77:
56:6a:44:37:1f:57:25:f2:35:79:1e:9f:47:e6:13:
57:17:86:37:c8:e0:6e:4d:db:7d:1f:57:e5:75:ee:
52:f1:16:f3:34:e5:8d:58:21:52:7a:cd:ae:6d:75:
d8:e3:32:72:1c:ec:88:42:fb:f1:b6:cf:04:7a:86:
8e:07:79:38:6e:f2:17:d1:a0:c9:ef:c0:9b:f0:24:
e2:a8:f4:06:d5:fc:97:8e:6c:3b:c5:c0:30:b9:0d:
e6:24:ee:b0:9b:69:00:c2:ec:5b:1b:0d:b6:b1:cf:
f5:70:05:05:39:71:14:46:e4:66:a8:6d:47:49:53:
3f:66:7b:7f:8a:3a:cf:ae:c6:7f:3b:a7:e4:bb:67:
88:6f:4f:ea:8d:82:0a:fc:62:df:75:23:17:df:94:
d7:97:24:67:67:a4:57:a5:bb:e6:49:ce:a8:be:86:
f9:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:8E:32:FD:1B:31:BD:22:F1:0A:F3:32:84:05:4E:B9:E5:AE:8A:08
X509v3 Authority Key Identifier:
keyid:08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/W44y_RsxvSLxCvMyhAVOueWuigg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.220.0/23
193.178.230.0/23
IPv6:
2a04:4940::/29
Signature Algorithm: sha256WithRSAEncryption
39:97:50:20:4b:28:8a:8f:06:ca:67:e1:57:59:09:0b:90:14:
23:9e:38:24:b9:ad:f2:e2:d9:e7:c4:1a:2f:30:cb:50:63:d7:
b5:f8:df:d5:11:3f:3b:d0:fa:0b:37:f2:06:c0:9c:fa:1a:59:
64:fe:23:a6:ba:99:aa:ce:6e:e9:3e:ea:18:87:ca:d9:8d:63:
50:80:c8:53:6a:53:25:a1:1f:5d:2b:2b:46:b3:c4:f8:46:0e:
ba:34:73:41:2f:0e:4a:d4:f4:96:84:10:e1:ea:1b:6d:bc:bc:
a1:a9:cf:89:ef:20:3b:62:07:6b:12:78:b3:ab:d5:a2:46:ee:
06:6a:15:35:f2:a0:75:c9:0c:35:71:1d:b9:99:04:25:05:dd:
36:a8:0e:9a:41:70:82:99:53:19:2b:8a:ce:58:90:ca:d0:ab:
6d:f8:76:ad:89:5f:90:cb:47:6b:6a:7f:73:46:6e:9d:1d:d7:
f1:8c:ec:46:a7:b1:e2:f7:9a:86:4d:0d:5c:cf:b8:72:dc:d5:
b3:22:f3:16:b1:51:f7:17:4a:94:9d:ac:8c:dc:8b:9b:fc:c9:
87:b5:56:c1:61:cd:08:6f:b8:e8:fd:7f:73:dc:5c:ac:4f:6d:
2c:3c:e6:78:c4:10:ce:b4:db:4f:78:b5:89:a0:89:f7:ac:ec:
14:fd:50:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:59 2024 by rpki-client on console-ams.rpki-client.org