Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/32779d-3656-44c0-8ab5-981fbb3442dd/1/Wgs9u-K4Nh3bc8-k8qjZFzLYU8Y.roa
File: Wgs9u-K4Nh3bc8-k8qjZFzLYU8Y.roa (raw, json)
Hash identifier: 0lJ28lLtvnSMI7WzwmJXcB9QhddEV6WMMDQIvffLZnc=
Subject key identifier: 5A:0B:3D:BB:E2:B8:36:1D:DB:73:CF:A4:F2:A8:D9:17:32:D8:53:C6
Certificate issuer: /CN=ecf7ca9ffafe72a30966f7e43d92b58e774ce741
Certificate serial: 018CC26D05D7DBA37DA7F5DDEFEE56AFEF2C
Authority key identifier: EC:F7:CA:9F:FA:FE:72:A3:09:66:F7:E4:3D:92:B5:8E:77:4C:E7:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7PfKn_r-cqMJZvfkPZK1jndM50E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/32779d-3656-44c0-8ab5-981fbb3442dd/1/Wgs9u-K4Nh3bc8-k8qjZFzLYU8Y.roa
Signing time: Mon 01 Jan 2024 00:29:33 +0000
ROA not before: Mon 01 Jan 2024 00:29:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206766
IP address blocks: 185.236.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Mar 2024 03:37:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:05:d7:db:a3:7d:a7:f5:dd:ef:ee:56:af:ef:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecf7ca9ffafe72a30966f7e43d92b58e774ce741
Validity
Not Before: Jan 1 00:29:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a0b3dbbe2b8361ddb73cfa4f2a8d91732d853c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ec:fd:00:ed:c8:71:11:7b:e1:99:cd:ef:3b:
96:ec:98:58:91:0d:37:ae:5a:30:e7:51:3c:dc:b6:
7c:35:13:36:ec:56:26:b0:a9:8b:b6:c8:19:f1:53:
52:47:54:b6:70:5e:5e:a5:17:25:a0:f8:79:b7:79:
1d:10:78:ef:7a:6a:01:f7:18:fb:18:59:38:3f:ba:
a9:9c:16:70:a1:32:37:cb:24:51:91:eb:5e:f0:bd:
d5:3a:3f:91:01:1e:4d:2d:71:7c:ec:af:67:48:9f:
1a:74:f9:e1:3d:63:c6:ad:ad:6f:d7:46:8a:ab:b0:
6e:a6:1d:7b:5c:3d:09:8b:15:aa:87:b7:54:bd:c3:
83:8a:15:1f:bf:89:32:c0:f5:e2:c9:48:05:d3:12:
56:39:90:9f:98:e7:13:8b:25:af:3c:8e:a7:66:a5:
23:ae:36:01:59:c6:c1:d5:f0:84:8e:1a:b7:c7:b9:
21:b6:48:a5:10:07:5a:ef:e5:de:10:cf:17:3b:c6:
45:03:a6:a1:d4:b9:79:06:c9:de:42:ae:c1:18:ea:
fa:f2:f5:8e:0d:dc:77:f5:d4:d6:a7:b1:b2:49:b0:
99:65:7f:ad:60:13:c3:87:43:79:e9:19:49:e5:c5:
ca:c4:73:58:cf:d0:18:d5:90:f5:50:06:0e:f9:98:
4b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:0B:3D:BB:E2:B8:36:1D:DB:73:CF:A4:F2:A8:D9:17:32:D8:53:C6
X509v3 Authority Key Identifier:
keyid:EC:F7:CA:9F:FA:FE:72:A3:09:66:F7:E4:3D:92:B5:8E:77:4C:E7:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7PfKn_r-cqMJZvfkPZK1jndM50E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/32779d-3656-44c0-8ab5-981fbb3442dd/1/Wgs9u-K4Nh3bc8-k8qjZFzLYU8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/32779d-3656-44c0-8ab5-981fbb3442dd/1/7PfKn_r-cqMJZvfkPZK1jndM50E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.21.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:c0:e0:e7:ee:0c:9d:ba:8f:02:3f:96:7a:21:9a:0d:b4:90:
55:fd:ca:61:1d:c8:40:4e:85:bc:50:32:49:04:eb:34:32:56:
60:b9:ef:a1:c3:df:12:aa:c3:a8:b1:57:2f:bd:46:bd:8d:c9:
5d:33:2c:d9:e2:ba:d8:20:9b:af:49:90:03:dd:67:91:e4:e9:
51:b0:33:62:b2:49:5d:01:6c:96:e7:f3:09:88:75:b0:60:88:
db:51:29:ba:e1:33:b1:45:d7:98:51:28:8f:bc:85:77:04:11:
2a:55:fa:c6:52:67:61:c9:40:a7:79:55:14:e7:74:8b:da:7c:
f4:a1:c5:4d:ee:21:b8:69:f3:76:8d:bd:8b:a1:2b:d1:34:d7:
2d:4b:12:c8:69:71:d9:11:c6:69:bb:c1:ec:65:78:a5:ae:fc:
e2:d2:c8:8f:12:15:74:08:a2:3c:e7:45:ec:90:07:45:70:6d:
4a:23:31:9e:ac:e3:2e:27:f9:7d:26:3b:e0:c2:2d:12:4b:3d:
d9:33:e9:60:5f:79:89:ae:6e:27:20:25:01:d2:1c:3a:74:c6:
5a:19:6f:4b:49:b8:ce:7b:da:f0:f7:cc:99:b8:f7:05:ff:88:
1f:48:d8:81:fb:14:31:66:a7:30:35:57:d2:3d:40:eb:06:75:
6d:b8:54:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:18 2024 by rpki-client on console-ams.rpki-client.org