Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/wmzHcbv6TLW3DXrvrTv3f_5QMSY.roa
File: wmzHcbv6TLW3DXrvrTv3f_5QMSY.roa (raw, json)
Hash identifier: 46fAxDwLIdtmhsxnXoliQlNJe8tev/xkWeiO/0PSaQs=
Subject key identifier: C2:6C:C7:71:BB:FA:4C:B5:B7:0D:7A:EF:AD:3B:F7:7F:FE:50:31:26
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 018D5F514BDDAE0C55D76115D143CA59E274
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/wmzHcbv6TLW3DXrvrTv3f_5QMSY.roa
Signing time: Wed 31 Jan 2024 11:39:39 +0000
ROA not before: Wed 31 Jan 2024 11:39:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50225
IP address blocks: 94.154.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Mar 2024 08:42:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5f:51:4b:dd:ae:0c:55:d7:61:15:d1:43:ca:59:e2:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Jan 31 11:39:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c26cc771bbfa4cb5b70d7aefad3bf77ffe503126
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:3b:9e:d4:4a:4d:ac:ab:98:8e:f3:fd:4c:32:
58:f3:74:e4:7e:38:7a:56:7f:10:94:43:05:30:04:
34:9f:ab:b6:fb:04:cb:e3:a2:2e:2b:20:37:6b:83:
26:b1:6e:60:97:c9:08:09:ef:6b:50:64:72:8a:01:
d7:15:0d:75:d2:f1:b9:08:71:d9:4f:5e:be:fa:d0:
df:81:c4:5b:fd:c1:0a:9e:2c:a6:f0:a9:80:e5:42:
af:60:68:f4:5d:af:2f:97:bd:de:e5:b3:b5:03:a9:
57:1c:38:6f:2b:44:6f:ab:bf:0d:06:42:f2:31:c5:
9c:a6:37:f0:3d:f3:4f:d9:dd:f2:66:4d:d0:9a:7d:
86:3a:74:43:51:f4:99:fe:a4:9b:d5:43:b1:c6:ff:
cf:8d:ce:59:cf:2e:34:ad:37:b3:54:0f:08:3e:7f:
b9:19:f6:be:b0:c7:bb:44:84:51:89:3d:a7:79:78:
84:a4:3e:b6:c0:2c:c7:35:05:50:39:01:17:db:79:
e4:eb:bb:da:94:13:00:65:69:c1:2c:94:d2:4a:7d:
de:19:ca:fc:18:e7:51:df:bf:5a:5b:97:7e:06:b3:
96:89:63:2f:8f:66:96:72:db:db:0a:69:dd:c0:c5:
1b:59:37:a3:61:e2:6d:57:64:1c:4a:5f:55:91:26:
9a:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:6C:C7:71:BB:FA:4C:B5:B7:0D:7A:EF:AD:3B:F7:7F:FE:50:31:26
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/wmzHcbv6TLW3DXrvrTv3f_5QMSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.41.0/24
Signature Algorithm: sha256WithRSAEncryption
02:c2:f7:c1:67:d3:32:bc:98:00:bb:c8:fa:24:19:fd:c2:d3:
57:ae:d5:a3:0f:ee:99:9c:86:9c:c9:61:59:94:47:21:9e:d3:
3f:e2:2e:c6:85:65:3d:cf:fd:82:39:16:7c:45:b4:10:97:87:
b8:41:ff:f6:12:2f:1d:bc:56:e3:dd:59:0d:8b:60:60:ac:84:
9c:fe:84:fb:5d:24:8b:bf:64:7f:a8:a7:27:dc:f0:1a:12:c5:
95:6a:16:d7:75:e8:d4:ba:a8:3e:a9:f6:58:ec:e4:1b:12:24:
f5:44:0a:16:74:a5:af:0f:b9:27:d2:76:69:44:50:9c:b8:54:
a7:78:38:d7:ec:7e:fe:48:cf:db:1f:4c:41:34:6d:92:5f:ec:
0b:bf:be:7f:84:43:df:43:8d:59:27:e4:c2:ce:ff:12:c9:77:
1f:e1:3f:9c:fb:e1:03:57:44:2f:3b:bb:02:13:5a:38:b1:e3:
98:a6:59:9a:13:be:03:34:67:c9:82:2d:03:30:7e:e1:c0:ff:
68:eb:29:88:b0:97:f1:da:c4:5c:de:67:25:34:18:08:51:3b:
57:35:7e:6f:55:a1:0d:37:f6:a5:98:e7:b1:58:e5:1a:2b:d3:
26:ca:f0:d2:f2:36:93:4b:91:84:6b:cc:12:20:26:e8:0c:c8:
5e:84:f0:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:31 2024 by rpki-client on console-fra.rpki-client.org