Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/ed3d4a-704f-4aa4-821f-dcd5e9478084/1/WLjtKRX6P9_nYVRod_DDpoYTlG8.roa
File: WLjtKRX6P9_nYVRod_DDpoYTlG8.roa (raw, json)
Hash identifier: vWYC0bUeHR2veMEyqlD29J96bLoKH2DrZYPkaLtqOaI=
Subject key identifier: 58:B8:ED:29:15:FA:3F:DF:E7:61:54:68:77:F0:C3:A6:86:13:94:6F
Certificate issuer: /CN=643daf122e3a87acaa6fdb62c35a252a199a58d9
Certificate serial: 01856D4AA4C8441535AD123F01001692645A
Authority key identifier: 64:3D:AF:12:2E:3A:87:AC:AA:6F:DB:62:C3:5A:25:2A:19:9A:58:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZD2vEi46h6yqb9tiw1olKhmaWNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/ed3d4a-704f-4aa4-821f-dcd5e9478084/1/WLjtKRX6P9_nYVRod_DDpoYTlG8.roa
Signing time: Sun 01 Jan 2023 12:24:46 +0000
ROA not before: Sun 01 Jan 2023 12:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57956
IP address blocks: 91.237.42.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:a4:c8:44:15:35:ad:12:3f:01:00:16:92:64:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=643daf122e3a87acaa6fdb62c35a252a199a58d9
Validity
Not Before: Jan 1 12:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58b8ed2915fa3fdfe761546877f0c3a68613946f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:c9:52:df:89:86:c7:59:d7:51:69:7c:ff:87:
df:91:db:8c:fa:b2:89:be:fe:85:57:98:44:ca:59:
8c:08:c7:26:f3:4e:14:5a:c4:6d:59:dd:30:e7:d8:
28:ab:ec:dc:cb:fc:b3:87:49:ee:f7:7e:aa:0e:56:
d1:69:73:a5:0f:9b:d1:27:93:a7:ec:de:e6:c9:88:
f3:cd:bc:78:fd:85:da:43:8b:41:dd:b2:c8:33:ba:
5a:0f:27:b9:2e:36:f6:26:8f:79:d5:30:a8:80:64:
03:3c:6b:35:a0:14:4f:95:71:88:36:e4:b7:f8:97:
bd:3f:a6:8f:b3:c0:41:94:af:16:e8:a0:91:2b:3b:
a7:02:80:24:2f:85:98:b9:0e:51:a5:41:51:8e:48:
67:cc:8d:0e:31:44:c7:68:f2:bf:a6:8f:0c:1c:79:
a8:0c:43:fa:6b:30:3b:e9:ed:ce:f1:42:68:4e:1e:
de:79:a4:48:44:b0:73:83:82:20:46:f7:84:7f:fd:
95:f8:3a:a7:bd:57:98:67:2c:ed:f7:ba:78:d9:07:
5b:8d:82:a1:c4:9f:7a:8f:ec:b5:2d:a9:52:6d:51:
67:82:ec:93:6e:b5:da:9f:5b:ec:03:8a:09:dd:94:
47:35:a4:4e:e6:15:5b:88:73:05:2a:f0:af:ae:1d:
4f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:B8:ED:29:15:FA:3F:DF:E7:61:54:68:77:F0:C3:A6:86:13:94:6F
X509v3 Authority Key Identifier:
keyid:64:3D:AF:12:2E:3A:87:AC:AA:6F:DB:62:C3:5A:25:2A:19:9A:58:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZD2vEi46h6yqb9tiw1olKhmaWNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/ed3d4a-704f-4aa4-821f-dcd5e9478084/1/WLjtKRX6P9_nYVRod_DDpoYTlG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/ed3d4a-704f-4aa4-821f-dcd5e9478084/1/ZD2vEi46h6yqb9tiw1olKhmaWNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.42.0/24
Signature Algorithm: sha256WithRSAEncryption
47:02:98:2b:e3:ba:cb:7c:ad:43:c3:7d:bf:3b:01:57:7b:c9:
3e:6d:89:bf:47:78:ab:6d:0a:61:1d:6b:22:ca:9b:44:51:c5:
68:5d:6d:2c:76:92:b8:37:46:21:1c:49:02:ee:50:6b:69:54:
e2:6e:fd:80:09:e9:a2:0d:73:f4:0c:05:da:87:66:b0:50:1d:
bd:4a:9c:9e:23:34:fc:c0:b8:c9:41:d9:3f:2a:74:6b:01:d3:
f7:75:9d:dd:75:0d:24:75:91:c0:2d:1c:57:a3:45:3d:71:9b:
d7:03:45:94:22:9f:5d:d4:04:07:4e:f7:0a:dd:11:4c:3c:d3:
14:08:ee:93:ea:8c:f3:81:b2:80:6d:4e:20:ee:ba:f6:0b:ae:
0a:5c:7f:9a:f1:ae:bd:bf:d1:87:f0:50:33:d7:c0:56:4d:40:
b9:62:74:2a:ef:ff:db:1b:be:64:7a:a7:fb:7e:ac:65:2f:ef:
bb:75:c6:9c:7a:dd:76:29:4d:4c:84:d8:04:d0:6d:6f:49:88:
74:e8:ec:4b:14:9a:13:80:cd:73:8f:88:b8:30:ec:3b:e9:16:
5e:b7:f3:64:36:d5:d2:d5:c7:37:e1:dc:37:5f:b2:3c:9d:72:
87:bb:c6:38:ae:55:db:16:1e:c2:e2:cd:79:0a:10:0e:8d:02:
37:7e:95:53
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtSqTIRBU1rRI/AQAWkmRaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0M2RhZjEyMmUzYTg3YWNhYTZmZGI2MmMzNWEyNTJhMTk5
YTU4ZDkwHhcNMjMwMTAxMTIyNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OGI4ZWQyOTE1ZmEzZmRmZTc2MTU0Njg3N2YwYzNhNjg2MTM5NDZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgslS34mGx1nXUWl8/4ffkduM+rKJ
vv6FV5hEylmMCMcm804UWsRtWd0w59goq+zcy/yzh0nu936qDlbRaXOlD5vRJ5On
7N7myYjzzbx4/YXaQ4tB3bLIM7paDye5Ljb2Jo951TCogGQDPGs1oBRPlXGINuS3
+Je9P6aPs8BBlK8W6KCRKzunAoAkL4WYuQ5RpUFRjkhnzI0OMUTHaPK/po8MHHmo
DEP6azA76e3O8UJoTh7eeaRIRLBzg4IgRveEf/2V+DqnvVeYZyzt97p42QdbjYKh
xJ96j+y1LalSbVFnguyTbrXan1vsA4oJ3ZRHNaRO5hVbiHMFKvCvrh1PkQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFi47SkV+j/f52FUaHfww6aGE5RvMB8GA1UdIwQY
MBaAFGQ9rxIuOoesqm/bYsNaJSoZmljZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWkQydkVpNDZoNnlxYjl0aXcxb2xLaG1hV05rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9lZDNkNGEtNzA0Zi00YWE0LTgyMWYt
ZGNkNWU5NDc4MDg0LzEvV0xqdEtSWDZQOV9uWVZSb2RfRERwb1lUbEc4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC9lZDNkNGEtNzA0Zi00YWE0LTgyMWYtZGNkNWU5NDc4MDg0
LzEvWkQydkVpNDZoNnlxYjl0aXcxb2xLaG1hV05rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+0qMA0G
CSqGSIb3DQEBCwUAA4IBAQBHApgr47rLfK1Dw32/OwFXe8k+bYm/R3irbQphHWsi
yptEUcVoXW0sdpK4N0YhHEkC7lBraVTibv2ACemiDXP0DAXah2awUB29SpyeIzT8
wLjJQdk/KnRrAdP3dZ3ddQ0kdZHALRxXo0U9cZvXA0WUIp9d1AQHTvcK3RFMPNMU
CO6T6ozzgbKAbU4g7rr2C64KXH+a8a69v9GH8FAz18BWTUC5YnQq7//bG75keqf7
fqxlL++7dcacet12KU1MhNgE0G1vSYh06OxLFJoTgM1zj4i4MOw76RZet/NkNtXS
1cc34dw3X7I8nXKHu8Y4rlXbFh7C4s15ChAOjQI3fpVT
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:31:45 2024 by rpki-client on console-ams.rpki-client.org