Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/WYHSNnXx2EeM3C7VZlJZFYYjbDk.roa
File: WYHSNnXx2EeM3C7VZlJZFYYjbDk.roa (raw, json)
Hash identifier: GL34NM1jHZO+MO3At89I/++43vJHGcrkJL0zmE7b3VM=
Subject key identifier: 59:81:D2:36:75:F1:D8:47:8C:DC:2E:D5:66:52:59:15:86:23:6C:39
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018BDD64A123D5C0B6586D35E1B83CC8DCF8
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/WYHSNnXx2EeM3C7VZlJZFYYjbDk.roa
Signing time: Fri 17 Nov 2023 13:07:21 +0000
ROA not before: Fri 17 Nov 2023 13:07:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29802
IP address blocks: 2.56.108.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:dd:64:a1:23:d5:c0:b6:58:6d:35:e1:b8:3c:c8:dc:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Nov 17 13:07:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5981d23675f1d8478cdc2ed56652591586236c39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f0:b7:41:3b:59:ef:77:bd:96:ed:3a:cb:c9:
af:6d:bf:3f:38:7d:ca:15:17:3c:f1:2c:63:4c:80:
2c:52:7a:f4:bd:11:5c:7a:23:e7:e6:0d:e6:29:bd:
46:f2:fb:19:9d:32:42:7c:03:ee:0f:3f:b4:19:97:
9c:ae:ca:6a:74:d5:03:4a:80:b4:39:7e:2f:a0:c5:
59:ef:da:a7:ac:c5:7c:b5:a8:56:c8:df:bc:94:1c:
9b:22:4c:09:8d:57:4c:dc:d2:0e:e7:91:f4:b0:71:
56:cd:89:93:40:d6:eb:c1:3e:3f:7a:f8:e8:cc:4b:
3d:f0:2b:a3:d5:c8:94:ad:d7:a4:0b:bd:9a:49:ad:
05:a7:3d:1a:a8:b4:c3:56:13:8c:a3:71:76:ec:bc:
44:03:9d:89:0c:ed:45:c3:39:a0:e8:ca:fd:ce:cd:
56:32:69:89:8f:74:86:cb:d0:fe:0f:8c:cb:c5:c3:
59:07:6c:56:f4:62:04:3b:ea:71:01:ff:c9:a0:91:
ac:9f:0b:e8:78:a5:aa:83:f0:38:ba:d9:74:d1:b1:
c9:4b:00:9e:fb:90:b5:7a:02:d7:3b:1e:21:49:d3:
8f:13:c0:53:66:e8:19:b9:c8:2c:12:cf:36:91:df:
07:8c:44:fb:d5:6e:9e:ea:0b:d2:ae:1f:5b:05:ca:
5b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:81:D2:36:75:F1:D8:47:8C:DC:2E:D5:66:52:59:15:86:23:6C:39
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/WYHSNnXx2EeM3C7VZlJZFYYjbDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.108.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:06:a8:f6:5b:0a:25:33:70:c2:b0:76:0f:aa:eb:2b:85:a0:
fc:ad:32:62:7a:7e:8c:d4:ed:7f:c4:79:61:96:e8:44:1f:cf:
e6:05:6f:56:f2:c9:52:88:56:eb:e6:17:b1:f6:df:1a:40:d4:
e3:c4:4f:1f:ee:9e:0e:12:6c:f4:e7:c9:2d:47:e0:ca:57:e6:
87:39:6e:d9:2e:38:50:31:8c:ac:de:9c:a1:25:4e:a1:49:f0:
0f:47:62:1b:9f:16:21:98:1c:9c:4b:24:67:ac:d4:c7:c5:7f:
1c:f0:fb:fc:c8:32:65:7d:60:88:90:60:7f:90:1f:92:0a:60:
50:26:95:a0:e9:cb:64:12:82:2f:ea:1d:c5:84:2b:b1:4f:75:
52:85:8a:7d:e0:4b:a6:2c:31:43:de:4e:0c:7f:f1:aa:0a:1b:
6e:e7:63:ca:90:82:f7:79:2b:d6:9c:08:f8:54:30:06:24:6e:
ba:9f:3c:4f:18:50:99:76:86:6d:46:4e:9a:8a:a5:bd:ba:7a:
d8:6c:81:9d:68:1a:23:6c:cd:ed:8b:da:46:a2:4d:a5:12:d1:
93:30:d7:94:7c:a4:e6:87:18:8a:70:c9:fe:ac:32:55:b7:18:
c4:01:dc:60:6c:2d:d8:c1:5d:97:23:64:40:c3:0b:61:74:2a:
1b:da:8c:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 18 13:56:40 2023 by rpki-client on console-fra.rpki-client.org