Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/wsjTMXHDV3dz7ILI1YK37EAIRx4.roa
File: wsjTMXHDV3dz7ILI1YK37EAIRx4.roa (raw, json)
Hash identifier: eIkAVHUH7WUgt+ECBuygIYQy437x8PZVsPfzBUOtlDA=
Subject key identifier: C2:C8:D3:31:71:C3:57:77:73:EC:82:C8:D5:82:B7:EC:40:08:47:1E
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 01856FF96D85FC1638A04C434E1629F5D306
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/wsjTMXHDV3dz7ILI1YK37EAIRx4.roa
Signing time: Mon 02 Jan 2023 00:54:55 +0000
ROA not before: Mon 02 Jan 2023 00:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40968
IP address blocks: 213.222.33.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:6d:85:fc:16:38:a0:4c:43:4e:16:29:f5:d3:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 00:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2c8d33171c3577773ec82c8d582b7ec4008471e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:24:6b:f7:40:6d:f7:93:5f:11:7d:f5:ba:b3:
13:d4:7f:54:26:87:5a:08:c9:bd:fa:83:00:be:af:
ea:c3:07:fc:b1:5b:cc:23:c2:04:71:26:6e:aa:8f:
94:b3:07:70:3b:8b:f8:82:e3:99:46:f1:9b:5a:49:
30:21:9e:19:d1:b4:b9:31:0f:33:b2:0e:b3:f2:f3:
1f:0b:3b:c8:f7:93:54:15:08:6e:e0:52:66:1d:dc:
7c:fd:a2:8c:8e:0d:17:8f:b4:d9:5a:85:a4:67:2d:
15:c1:ad:f2:56:6f:39:e5:c4:21:21:3e:b3:93:f0:
d5:13:46:ba:b5:b9:db:0a:f1:5c:6c:f7:0d:98:51:
9a:bf:11:6a:5e:49:a6:99:26:46:58:60:dc:f9:86:
c3:c8:81:75:1e:cc:59:e7:fe:05:23:9a:9f:bb:c8:
94:92:a6:d8:33:1f:2e:d0:76:8a:ed:be:3f:5a:b4:
a1:cc:f7:ca:cd:b0:6f:bb:73:12:27:91:9a:19:e6:
79:d3:7c:75:f7:24:a6:fd:98:a1:8d:a1:89:f2:a5:
3e:97:9d:8b:66:4d:98:75:b8:c3:34:d8:63:63:c9:
de:a9:17:7e:61:65:ef:14:d8:ee:f4:1f:be:78:68:
1f:0d:3e:e1:34:6c:b2:17:c5:ee:b0:5a:f9:02:eb:
76:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:C8:D3:31:71:C3:57:77:73:EC:82:C8:D5:82:B7:EC:40:08:47:1E
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/wsjTMXHDV3dz7ILI1YK37EAIRx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.222.33.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:90:d7:ca:4a:49:01:82:04:c2:65:d6:70:05:88:1c:7d:75:
12:66:e5:7f:5f:54:5a:4a:a8:8a:62:15:c3:20:21:bb:c4:a5:
cd:89:4d:b7:44:81:c4:6a:b0:1d:4e:31:23:25:ab:bd:3b:46:
39:e0:a0:fb:e2:5e:5b:45:97:f5:b1:19:15:7f:93:5c:49:20:
8b:53:a2:c0:7f:d1:c7:75:7d:63:b5:23:06:97:3b:a9:de:8b:
a9:ca:6b:c1:db:ca:2a:27:04:4d:c7:64:c4:4b:39:e8:40:9e:
6a:35:a5:80:da:80:f6:c4:28:77:8e:8b:7e:6e:00:7e:d1:af:
45:7b:51:db:1c:5b:38:4c:df:23:63:36:d8:28:48:af:c0:54:
61:54:78:f3:d2:7e:fe:73:f6:32:8c:0d:54:ec:1c:e6:3a:ab:
9c:d3:c5:51:50:57:d5:94:63:1d:5a:06:29:0f:bb:fc:c1:6a:
d0:da:c6:11:8e:0e:15:24:6a:78:1d:e5:97:37:9f:92:14:66:
6c:38:1f:e9:05:9f:ef:58:a8:28:b3:b8:a2:05:7a:30:d5:7d:
f5:94:0e:d2:ec:24:3c:08:a5:97:b3:5b:49:59:e6:9b:f2:69:
a6:59:97:51:8c:15:ac:9f:8f:cd:20:60:15:47:66:84:88:b2:
52:b2:b8:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:01 2024 by rpki-client on console-fra.rpki-client.org