Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/WWZ1a3DCXmemqSVptO6nN-JZrdQ.roa
File: WWZ1a3DCXmemqSVptO6nN-JZrdQ.roa (raw, json)
Hash identifier: ksmuq/FBCNVikfgsSC9fXcqXvHuh3OQZWUyOreAEmu0=
Subject key identifier: 59:66:75:6B:70:C2:5E:67:A6:A9:25:69:B4:EE:A7:37:E2:59:AD:D4
Certificate issuer: /CN=6161470d39be4ba2dd5df8fa47b16396278e670a
Certificate serial: 01856E6FCE5EA152176BC8AC9F9B8E666B42
Authority key identifier: 61:61:47:0D:39:BE:4B:A2:DD:5D:F8:FA:47:B1:63:96:27:8E:67:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YWFHDTm-S6LdXfj6R7FjlieOZwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/WWZ1a3DCXmemqSVptO6nN-JZrdQ.roa
Signing time: Sun 01 Jan 2023 17:44:59 +0000
ROA not before: Sun 01 Jan 2023 17:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209242
IP address blocks: 195.85.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:6f:ce:5e:a1:52:17:6b:c8:ac:9f:9b:8e:66:6b:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6161470d39be4ba2dd5df8fa47b16396278e670a
Validity
Not Before: Jan 1 17:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5966756b70c25e67a6a92569b4eea737e259add4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:bc:68:5b:82:9b:08:16:07:ff:bb:c9:94:34:
81:27:04:fc:f7:a1:f8:b7:75:88:e9:6c:c9:47:da:
e3:ce:89:c1:0a:12:fa:4e:4d:a6:5a:05:36:6c:fa:
e9:6d:a2:cb:a9:17:6c:79:55:4e:0d:c6:78:84:a0:
3a:73:21:c0:aa:2a:51:3a:b4:3a:e6:a1:9c:d4:4f:
95:e5:1a:65:31:6b:5d:46:63:27:0f:68:0f:c2:13:
c0:a4:83:ea:74:71:c4:2f:fd:b3:38:df:e5:89:cc:
08:24:c1:c3:ae:34:a5:ba:a8:93:d3:b0:be:70:fc:
e7:07:76:cb:9c:3f:a8:57:35:e1:f2:ce:90:0a:aa:
ba:44:b5:07:2d:16:f9:73:b5:4f:55:c3:10:a4:01:
ac:78:72:40:e3:d4:4e:41:14:c8:cd:e7:4d:3d:cd:
f4:70:80:9d:a6:bb:e6:ba:71:ae:81:47:ab:f9:2e:
e5:1b:f2:1e:86:ee:26:52:8d:c2:3d:94:51:8f:c7:
25:38:81:0c:ff:b6:37:8c:58:5a:b2:f2:32:43:f6:
0b:31:10:3d:20:1f:57:85:4a:ab:c5:95:1e:9d:b8:
82:71:c4:cd:8a:1d:7f:c2:57:ea:0d:09:a7:d8:a9:
3c:ef:12:0b:ae:33:7f:3d:f7:7e:2e:15:f8:92:34:
31:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:66:75:6B:70:C2:5E:67:A6:A9:25:69:B4:EE:A7:37:E2:59:AD:D4
X509v3 Authority Key Identifier:
keyid:61:61:47:0D:39:BE:4B:A2:DD:5D:F8:FA:47:B1:63:96:27:8E:67:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YWFHDTm-S6LdXfj6R7FjlieOZwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/WWZ1a3DCXmemqSVptO6nN-JZrdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/YWFHDTm-S6LdXfj6R7FjlieOZwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.85.59.0/24
Signature Algorithm: sha256WithRSAEncryption
29:f7:9b:7d:94:ab:3b:6b:54:df:5f:40:c6:0d:1f:30:7c:63:
98:47:89:4a:c5:1e:f9:c9:b0:2f:39:86:ff:f0:83:3f:57:77:
82:bd:1b:ec:b2:f4:3f:fb:d0:bb:1a:6e:a6:e9:63:e9:a1:41:
e5:d9:87:88:81:27:9d:e2:0f:00:95:6d:e9:d7:5b:eb:fc:08:
ff:5e:cb:02:ce:14:9f:3d:8e:82:fc:43:58:9a:b7:20:69:a2:
21:3a:c2:0b:80:38:9a:33:74:3c:23:5c:b7:81:3d:08:64:42:
ac:c8:3f:52:be:db:61:f4:67:e3:72:2c:20:9a:11:26:30:8f:
95:69:19:49:40:e2:7f:d1:66:ad:04:b4:09:c9:61:bd:14:04:
fb:f2:fc:94:11:ec:12:6e:a1:fa:35:9a:bd:59:25:c6:c6:d4:
4b:f3:a3:f3:10:64:ea:6c:c1:6c:63:13:e9:df:6d:bf:5c:ff:
03:b9:10:7c:81:80:7c:c9:1f:b4:f7:de:52:e8:74:7f:38:b9:
7e:a2:b1:e3:63:76:09:88:fe:17:98:b5:e5:d0:c8:f9:d0:ec:
6c:82:9f:88:bd:df:24:96:b5:6a:e9:5a:6c:7b:29:61:34:bb:
d3:97:86:75:fb:72:73:d5:16:e2:db:0e:e2:92:84:53:32:1e:
36:6b:94:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:46 2024 by rpki-client on console-fra.rpki-client.org