Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Wh5InTx1BOAJAefOWPl2rlpiMSg.roa
File: Wh5InTx1BOAJAefOWPl2rlpiMSg.roa (raw, json)
Hash identifier: vgJrOOS0ILvCdXpuz+gZQN63urNoJf99zbvp4XY4w5s=
Subject key identifier: 5A:1E:48:9D:3C:75:04:E0:09:01:E7:CE:58:F9:76:AE:5A:62:31:28
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 0185E7DA7E57B3F110075400CBA9B51FB1A3
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Wh5InTx1BOAJAefOWPl2rlpiMSg.roa
Signing time: Wed 25 Jan 2023 07:35:34 +0000
ROA not before: Wed 25 Jan 2023 07:35:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 217.156.96.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e7:da:7e:57:b3:f1:10:07:54:00:cb:a9:b5:1f:b1:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 25 07:35:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a1e489d3c7504e00901e7ce58f976ae5a623128
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:db:41:41:62:92:1c:ff:0b:62:8b:0a:f4:2b:
4a:9d:1e:48:d5:f9:13:3a:31:20:9c:72:06:b4:38:
46:47:41:79:c1:8a:89:29:f0:d3:a5:1d:ed:d2:bd:
7b:bb:b8:a2:f5:ef:7c:c7:bb:f3:76:5c:67:93:c2:
db:29:16:07:59:a2:98:46:3f:ff:3b:ea:01:7b:7f:
cd:ff:31:30:30:f3:8a:f5:48:1e:d2:08:f4:f3:a2:
d2:a2:b1:fe:b3:13:d5:50:7c:53:05:b7:4b:14:31:
8f:22:c2:6f:69:c6:f6:b7:3d:72:89:1a:43:0f:64:
88:e7:91:5c:ba:48:44:9f:c4:47:47:11:38:73:03:
85:b3:ff:de:65:9d:0a:68:01:75:6c:ed:08:56:21:
94:d5:32:bd:e1:72:bc:81:65:15:64:2e:b1:b6:e8:
37:15:06:35:7d:0f:85:36:a1:7e:6e:4c:c1:ca:47:
60:88:09:a3:ad:34:78:7e:4a:71:94:9b:68:b3:90:
66:0a:34:4e:12:c9:f8:66:df:0a:40:ba:a1:dc:00:
a1:17:da:e0:42:88:93:ef:eb:96:84:9d:a5:92:19:
10:7d:b6:64:53:e4:8d:86:44:a4:35:bb:f6:89:c2:
96:28:b3:e9:53:28:f1:60:0a:e3:06:3a:94:68:d3:
d1:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:1E:48:9D:3C:75:04:E0:09:01:E7:CE:58:F9:76:AE:5A:62:31:28
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Wh5InTx1BOAJAefOWPl2rlpiMSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.156.96.0/24
Signature Algorithm: sha256WithRSAEncryption
84:3a:89:73:97:ef:75:61:1c:09:84:f3:0f:b2:1a:2a:13:b7:
88:d6:43:68:8a:d4:ff:22:77:3b:2e:b3:84:b9:67:aa:d4:a5:
8f:62:6c:cd:8c:a9:ff:21:f3:c2:8d:52:ad:55:96:0a:c6:dc:
28:f8:ea:40:09:b3:f4:de:03:15:1f:a1:a0:93:58:8a:04:e0:
9d:19:8f:89:4b:01:d0:30:f3:2f:9f:89:55:e2:21:89:d8:6c:
f8:af:d6:e3:10:6a:a2:56:f2:e3:fb:b5:15:14:ba:8f:3a:29:
08:63:a8:f7:9c:91:57:31:37:5c:59:d8:ce:06:f9:05:5b:fa:
5c:e3:bf:07:9b:f9:41:f6:0d:17:af:80:bc:37:03:8f:10:fa:
61:45:ee:fb:a2:9f:73:3c:8e:09:21:a7:35:74:58:32:6e:35:
d2:a2:5f:57:af:1f:f9:61:01:d6:12:f3:5d:13:e0:82:07:f9:
34:71:2d:27:11:5a:fc:04:d3:fb:0d:77:7d:58:9a:f0:fe:b8:
0f:1e:f1:93:30:ed:3c:77:47:76:fe:d9:41:07:72:b4:6c:b8:
c2:32:a5:cf:10:1c:09:e8:0c:74:39:64:c4:8c:ad:4b:89:70:
35:1d:b7:19:7f:c7:2d:21:54:50:4f:17:02:c7:a6:1f:e6:13:
22:bf:44:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:16 2023 by rpki-client on console-ams.rpki-client.org