Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/WntGb_1MjDcW9fmI-LB0ZbMNVKo.roa
File: WntGb_1MjDcW9fmI-LB0ZbMNVKo.roa (raw, json)
Hash identifier: vO5gbMsnVezIwnEE9YmVCoEjeM7+ioThTlhS/WwA4rg=
Subject key identifier: 5A:7B:46:6F:FD:4C:8C:37:16:F5:F9:88:F8:B0:74:65:B3:0D:54:AA
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01857042C779B50999C0E045961A1B9447B3
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/WntGb_1MjDcW9fmI-LB0ZbMNVKo.roa
Signing time: Mon 02 Jan 2023 02:15:02 +0000
ROA not before: Mon 02 Jan 2023 02:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206092
IP address blocks: 163.5.123.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:c7:79:b5:09:99:c0:e0:45:96:1a:1b:94:47:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 2 02:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a7b466ffd4c8c3716f5f988f8b07465b30d54aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:c2:89:00:9c:6c:76:0f:78:fd:cb:56:ea:a0:
b1:e6:ba:37:9d:e4:84:54:cc:90:1e:b9:aa:3e:16:
5f:fc:73:a6:44:ff:1b:13:55:0c:2a:92:85:5c:91:
e4:d4:ef:fa:f9:e0:a9:18:24:e1:60:fe:01:81:14:
4d:69:17:fe:97:56:8c:6e:58:7c:84:aa:87:bd:e3:
36:41:2d:16:7f:7f:fb:98:58:9c:33:52:d3:4a:b7:
2a:6a:28:ad:69:59:97:e3:64:a8:4b:78:50:da:ad:
cc:ae:cb:b1:cb:3d:d5:02:4c:74:c7:f0:c8:41:c0:
c0:d2:71:f3:c2:7a:73:63:91:82:3d:6b:18:4e:cf:
8f:4e:64:22:b4:3d:c7:85:69:82:de:9e:94:ea:7d:
ee:51:83:1f:60:58:e2:d5:9d:ee:50:2b:ab:25:18:
bd:25:b1:77:56:84:70:5c:da:fd:2f:5e:1b:2f:74:
38:79:6b:2c:2b:56:84:6e:2a:3e:79:ad:71:16:34:
f9:03:f2:ef:92:3f:b8:6c:f2:f1:46:b3:d6:50:7a:
4d:a7:c2:cd:05:19:4a:28:a2:97:8a:8b:82:2c:2d:
78:1d:e1:b9:46:99:fc:04:4a:9b:25:24:a3:89:91:
f2:96:c9:93:ee:12:14:76:ca:31:cf:0c:40:59:cd:
00:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:7B:46:6F:FD:4C:8C:37:16:F5:F9:88:F8:B0:74:65:B3:0D:54:AA
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/WntGb_1MjDcW9fmI-LB0ZbMNVKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.123.0/24
Signature Algorithm: sha256WithRSAEncryption
41:8b:ba:3d:48:63:1b:e2:9f:92:4e:73:82:55:e3:c7:ec:ed:
5a:e1:5d:1b:f8:e7:76:8c:e6:6f:64:00:80:87:ea:e9:19:fa:
65:7f:2c:e4:8f:5b:fa:40:40:82:bf:3a:8a:02:6b:0b:7d:37:
ed:af:b1:60:a9:16:c5:e3:03:fa:c6:e1:6d:b5:2c:ba:21:5e:
9b:a9:15:c6:81:08:fe:9e:38:c6:a2:cf:05:d3:ab:f9:d5:4e:
a6:b4:fd:40:0e:95:fe:17:b4:d5:26:37:0e:71:90:a8:ba:85:
82:04:85:75:3e:cb:54:66:3b:f6:7c:8c:0a:4d:86:d0:6e:82:
b0:9f:6e:cf:ed:1b:34:ca:e4:70:af:89:bc:58:a8:40:9f:92:
e4:54:b9:bf:67:16:55:a1:a3:c3:6e:65:e1:9e:28:fa:c5:ec:
02:4e:56:90:03:c1:e5:1d:c5:b8:0a:7e:85:be:09:1f:55:00:
91:c5:6d:a1:60:88:1b:f8:6a:77:ae:c6:23:5a:29:c3:04:09:
81:96:38:6d:4a:c7:72:f4:a7:a9:3e:df:71:4e:df:43:2b:e7:
b1:e0:a5:3f:68:d9:ea:5e:51:d9:a1:19:61:05:21:ac:3b:7a:
5f:e9:12:93:ed:99:da:66:91:7d:83:54:9c:a5:ce:9c:48:2e:
db:9d:b5:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:10 2023 by rpki-client on console-ams.rpki-client.org