Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/wAd7ZMKPJrjV1btJ-hF-m1Whmwk.roa
File: wAd7ZMKPJrjV1btJ-hF-m1Whmwk.roa (raw, json)
Hash identifier: RGI8wXi8GZup4cagWGQw7vzCu82CBolN524IIgq0i9I=
Subject key identifier: C0:07:7B:64:C2:8F:26:B8:D5:D5:BB:49:FA:11:7E:9B:55:A1:9B:09
Certificate issuer: /CN=a5a975239fdd443b7d3d82e392a9e4ae39218ef6
Certificate serial: 0186C06D680AE7A4203031AD29E75D86D5D2
Authority key identifier: A5:A9:75:23:9F:DD:44:3B:7D:3D:82:E3:92:A9:E4:AE:39:21:8E:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/wAd7ZMKPJrjV1btJ-hF-m1Whmwk.roa
Signing time: Wed 08 Mar 2023 08:54:00 +0000
ROA not before: Wed 08 Mar 2023 08:54:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 193.36.67.0/24 maxlen: 24
193.36.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c0:6d:68:0a:e7:a4:20:30:31:ad:29:e7:5d:86:d5:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a975239fdd443b7d3d82e392a9e4ae39218ef6
Validity
Not Before: Mar 8 08:54:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c0077b64c28f26b8d5d5bb49fa117e9b55a19b09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:db:4b:d4:e4:7c:78:40:0f:c6:1b:97:48:99:
fd:41:03:12:a1:8e:b1:51:02:25:d8:7a:80:bf:75:
f6:f6:80:b4:9d:48:54:c4:36:1b:ff:1a:e5:a6:45:
bb:75:6b:61:0e:d3:ba:96:de:3a:ce:f5:b6:f6:e2:
07:e7:ac:d4:b4:5d:e1:21:99:b2:d2:80:a5:c3:24:
31:f4:52:83:9a:2f:9b:78:4e:40:6f:50:4c:26:8c:
35:d6:24:5c:45:30:d7:a2:fb:ae:03:fe:a1:09:9c:
80:2c:40:f8:db:45:6a:92:64:2e:36:07:e7:8f:9a:
de:32:ba:63:71:c2:ba:a8:08:6e:1d:40:f4:d5:e9:
c8:e9:5d:f0:f6:de:0e:15:10:53:3d:9a:81:f3:e7:
4d:c9:38:0b:65:ef:b9:c3:f2:b4:77:c1:9c:f5:46:
60:8c:ba:99:a9:98:07:b8:41:29:ef:d5:26:17:cf:
4e:9d:5e:4a:0b:73:7b:43:f7:ee:60:f3:e5:b8:c2:
32:b4:22:09:cf:f3:63:51:fa:08:5f:a8:e6:ac:ea:
d8:b5:7a:40:b5:17:b3:e2:07:52:01:58:6e:c5:1b:
98:00:49:df:d2:a6:c8:f6:ab:8c:2f:34:fb:c0:1f:
b7:32:7e:ed:bf:31:37:65:3e:4c:bd:12:05:a8:5f:
e1:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:07:7B:64:C2:8F:26:B8:D5:D5:BB:49:FA:11:7E:9B:55:A1:9B:09
X509v3 Authority Key Identifier:
keyid:A5:A9:75:23:9F:DD:44:3B:7D:3D:82:E3:92:A9:E4:AE:39:21:8E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/wAd7ZMKPJrjV1btJ-hF-m1Whmwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.66.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:70:40:a9:08:78:4b:e1:e4:14:49:e9:1e:fc:e7:90:06:6d:
2f:72:59:fc:87:79:5a:a4:6f:68:eb:a7:c2:a6:f0:90:9a:c5:
d5:28:4a:82:2f:0a:75:72:70:e0:a8:94:5c:11:33:80:a8:95:
0b:c5:77:68:a9:54:2a:6d:1e:1d:be:67:08:69:bb:99:9e:de:
67:b6:f5:24:f5:94:ab:2a:76:ce:91:86:cf:ac:65:17:89:d8:
a8:f5:ba:3e:ea:14:e9:a3:ea:87:2c:56:d9:2a:37:27:bd:01:
33:48:89:c4:8d:26:03:e6:84:93:c2:09:76:cc:96:0e:7a:db:
a2:d8:49:2a:4d:e3:e9:b6:4b:c4:4f:f7:13:73:97:11:a6:b4:
3c:8e:b4:94:b9:b2:da:e4:c1:35:9c:ee:48:f7:17:5e:84:12:
06:9b:35:e6:6b:58:79:ba:f2:9b:9a:11:3a:af:05:db:43:ed:
ff:80:6c:8a:53:7e:b7:f7:ab:d4:5f:18:3f:6a:e1:32:82:62:
64:07:f9:d1:c1:1c:19:09:3c:ac:ff:bc:ad:fb:c5:71:7c:33:
7c:f4:91:ce:a1:c4:be:3f:21:0d:23:81:e5:35:e9:04:08:d9:
d6:cc:4b:bc:24:6e:01:69:d0:f6:59:8a:73:d8:4e:ce:cc:1e:
6b:10:d3:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:49 2024 by rpki-client on console-fra.rpki-client.org