Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/e03808-d2db-40d9-81f4-87c2e8f3914e/1/W9tnm1V3899qbHwtgnGZPdSIYPw.roa
File: W9tnm1V3899qbHwtgnGZPdSIYPw.roa (raw, json)
Hash identifier: MYRgD246Vp3bxr9DDrLCBJ89DtGxcYZWJVPwKdmItr4=
Subject key identifier: 5B:DB:67:9B:55:77:F3:DF:6A:6C:7C:2D:82:71:99:3D:D4:88:60:FC
Certificate issuer: /CN=e4d32a3e18b84ee3c54e34fa67dc68ef19d2b7b3
Certificate serial: 01871E41E1878E774B0DFDF30EC874EDD4E9
Authority key identifier: E4:D3:2A:3E:18:B8:4E:E3:C5:4E:34:FA:67:DC:68:EF:19:D2:B7:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5NMqPhi4TuPFTjT6Z9xo7xnSt7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/e03808-d2db-40d9-81f4-87c2e8f3914e/1/W9tnm1V3899qbHwtgnGZPdSIYPw.roa
Signing time: Sun 26 Mar 2023 14:10:46 +0000
ROA not before: Sun 26 Mar 2023 14:10:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20853
IP address blocks: 185.28.119.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:1e:41:e1:87:8e:77:4b:0d:fd:f3:0e:c8:74:ed:d4:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4d32a3e18b84ee3c54e34fa67dc68ef19d2b7b3
Validity
Not Before: Mar 26 14:10:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5bdb679b5577f3df6a6c7c2d8271993dd48860fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f8:5e:bb:43:78:bc:b3:50:1a:7a:c9:0d:23:
78:e8:ba:9d:c1:3d:3b:52:49:6d:e5:42:49:7e:8f:
2b:8e:90:59:9c:04:aa:63:8d:17:f3:6d:27:bc:39:
bb:ff:9c:d6:90:c5:72:7f:28:5d:89:83:f5:6a:17:
df:73:ba:d2:d8:68:cb:23:01:36:6d:fb:85:63:db:
cd:da:89:5d:0b:92:4d:19:11:f5:a7:94:23:d4:96:
71:c4:39:00:04:e7:3a:73:ef:6e:65:df:22:15:df:
4f:3d:2b:08:67:2c:fb:53:17:3b:b7:2f:79:85:ee:
31:de:d4:3e:e2:f9:c6:9f:73:65:e1:9e:be:4b:0d:
b4:2d:40:1c:b1:b5:61:98:e9:63:3c:14:ea:9a:bc:
92:82:4e:f1:19:6e:ca:9e:39:f8:8b:ba:89:6a:40:
8e:31:ab:4b:30:a0:d8:b0:e1:d2:43:67:70:ef:40:
43:b8:54:f2:c9:0a:26:b6:d2:51:29:6a:c4:30:00:
8a:57:3b:08:c7:7b:c2:a4:c9:ba:7a:69:fc:91:0e:
16:7e:ed:f5:54:45:d4:42:a8:fe:1b:60:95:cd:1a:
53:f5:fb:bc:54:91:54:eb:d1:84:b7:22:55:aa:38:
5c:fc:f5:26:87:0d:37:3c:8d:8d:22:be:9e:86:85:
32:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:DB:67:9B:55:77:F3:DF:6A:6C:7C:2D:82:71:99:3D:D4:88:60:FC
X509v3 Authority Key Identifier:
keyid:E4:D3:2A:3E:18:B8:4E:E3:C5:4E:34:FA:67:DC:68:EF:19:D2:B7:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5NMqPhi4TuPFTjT6Z9xo7xnSt7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/e03808-d2db-40d9-81f4-87c2e8f3914e/1/W9tnm1V3899qbHwtgnGZPdSIYPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/e03808-d2db-40d9-81f4-87c2e8f3914e/1/5NMqPhi4TuPFTjT6Z9xo7xnSt7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.28.119.0/24
Signature Algorithm: sha256WithRSAEncryption
27:e7:d4:92:2b:81:2c:41:b0:80:28:bb:9a:d5:84:fd:50:72:
af:21:5b:be:1d:7a:54:60:0f:50:bb:59:fb:32:e9:44:d5:0a:
f3:1b:c4:29:98:34:df:28:8a:b3:ea:d2:cf:b5:44:62:c0:3d:
5c:9f:56:fe:93:89:72:f4:18:72:29:29:63:77:d6:21:b5:e3:
74:59:00:d4:61:76:b3:75:2e:60:d0:f7:30:a4:f3:f8:81:76:
4b:fd:b4:4e:5a:9d:24:16:39:bb:5b:fd:2c:62:14:77:01:70:
3b:bd:59:8e:19:24:10:5b:78:18:f6:54:e4:17:49:45:f9:68:
ea:22:83:48:b4:63:89:05:a2:56:47:19:d4:3e:3e:8a:27:6c:
cd:b0:5d:12:d1:83:e0:7d:21:be:cb:ce:54:03:2e:3a:45:e4:
88:62:dd:f3:a9:6b:6d:4a:3b:7f:44:1e:05:60:1f:08:36:21:
58:17:8d:cb:72:20:d9:01:b8:12:b5:65:82:26:ec:ba:01:e0:
57:d3:93:45:d0:62:28:fd:0d:4b:4e:6b:b3:12:37:49:4c:ee:
ed:4a:04:84:39:11:ff:50:03:bc:e4:23:8a:0a:ae:54:61:ff:
9e:e4:24:9c:53:b3:c0:f6:f7:5f:fe:90:21:02:d4:00:ca:7b:
6d:d1:33:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:50 2023 by rpki-client on console-fra.rpki-client.org