Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/wx6P8AUBai38Kvjf-yiNX2Oe6no.roa
File: wx6P8AUBai38Kvjf-yiNX2Oe6no.roa (raw, json)
Hash identifier: uuMSNxXgtb2R2x6tDCrQgAIjCMuHWc0JuFKGxUcLqPc=
Subject key identifier: C3:1E:8F:F0:05:01:6A:2D:FC:2A:F8:DF:FB:28:8D:5F:63:9E:EA:7A
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018E12B479E59F3E00548EE4A49B94CCEC5D
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/wx6P8AUBai38Kvjf-yiNX2Oe6no.roa
Signing time: Wed 06 Mar 2024 07:40:01 +0000
ROA not before: Wed 06 Mar 2024 07:40:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 147186
IP address blocks: 82.115.208.0/24 maxlen: 24
171.22.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 07:52:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:12:b4:79:e5:9f:3e:00:54:8e:e4:a4:9b:94:cc:ec:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Mar 6 07:40:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c31e8ff005016a2dfc2af8dffb288d5f639eea7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c0:87:8a:d4:ae:0c:62:26:7a:a3:ff:05:13:
66:a7:42:94:66:26:81:b2:75:ed:49:3c:91:cf:0b:
e0:d4:3e:a3:73:b0:ef:16:4e:02:68:40:fd:e6:56:
22:67:f4:58:13:79:2c:5f:c6:1a:51:8b:9b:80:c1:
eb:4a:d9:ca:73:2b:a7:b8:d4:d3:92:4e:5e:98:80:
f3:f5:51:18:27:52:30:f5:bb:7f:dc:cd:5f:c5:34:
5a:ff:a3:01:ab:d3:7b:51:8c:41:74:f9:74:22:27:
54:bd:25:e7:3b:55:b2:2d:e3:3d:92:b0:f0:31:7e:
7a:d0:93:17:dd:0a:36:dd:ef:2e:6e:c5:25:ca:b7:
99:ce:38:af:09:52:5d:03:53:bf:73:99:9d:23:c2:
2d:bf:fe:f0:1e:b1:11:ba:c8:01:de:dc:9e:4a:ee:
d3:2a:dd:1e:2e:0d:5b:5a:a6:fe:7a:a0:6a:aa:82:
06:33:b2:29:72:19:58:fb:05:27:68:ac:55:ca:55:
40:0b:1b:07:1d:ed:f7:17:82:ec:d4:36:c2:94:49:
c0:aa:c3:76:c8:36:b7:ee:6e:b2:4c:42:02:80:b9:
6a:90:b1:ad:22:f5:f8:a2:8a:84:39:8b:72:7b:8d:
e1:e0:15:4e:05:e7:98:c6:cb:57:c0:38:e6:cd:cf:
d3:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:1E:8F:F0:05:01:6A:2D:FC:2A:F8:DF:FB:28:8D:5F:63:9E:EA:7A
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/wx6P8AUBai38Kvjf-yiNX2Oe6no.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.208.0/24
171.22.31.0/24
Signature Algorithm: sha256WithRSAEncryption
62:db:08:f7:be:6f:6e:33:70:2e:53:4b:2d:aa:fa:87:23:fd:
72:a0:33:32:72:ff:3e:f3:f6:26:f0:7b:18:f3:6e:a1:98:55:
7e:22:c4:6d:55:1a:55:ca:92:7e:bf:20:b8:40:01:e3:ab:96:
0f:88:1d:46:ff:c8:2f:bb:55:a8:4e:4b:fe:ce:2e:3a:74:72:
ac:6e:53:81:82:ef:0b:82:7b:28:7f:3e:5d:35:cb:d8:7d:1c:
13:75:70:ac:7a:24:25:8f:97:1a:4a:4d:c7:5c:45:1a:a7:35:
c4:1d:20:e3:6c:0f:62:7c:ba:92:d9:c6:df:6a:d8:80:dd:03:
cd:b5:2f:59:c7:54:ee:d2:40:8d:f6:e4:f2:be:6a:d1:5c:6f:
2c:e3:b4:7d:19:f8:22:0c:e8:3a:bb:ee:c6:a1:88:e2:7b:35:
5d:6e:9a:c4:13:15:5e:25:5c:02:65:8f:94:96:d9:5d:eb:ad:
f7:6f:d2:2d:b2:4c:d5:16:ea:1e:5b:e3:4c:f1:c4:a4:de:75:
89:00:85:ba:21:35:18:d1:9e:a9:40:49:67:b3:da:d7:65:63:
49:f5:17:59:d8:af:53:3b:20:90:9d:b4:d4:f2:66:ae:88:77:
ee:d3:10:8b:3e:32:44:c8:6b:9f:8a:ca:9e:9e:d4:74:f3:30:
36:a1:89:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 11 11:55:56 2024 by rpki-client on console-fra.rpki-client.org