Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/df8105-18ee-4172-b6bb-0dc33acc1dba/1/WKQQ24qslYccDwKpcydcTkMII-4.roa
File: WKQQ24qslYccDwKpcydcTkMII-4.roa (raw, json)
Hash identifier: 4RyNHmrt1G+MxSlTQ1hG4JxibabwloVBlbo5CKTJcHU=
Subject key identifier: 58:A4:10:DB:8A:AC:95:87:1C:0F:02:A9:73:27:5C:4E:43:08:23:EE
Certificate issuer: /CN=b84785791e07646f5cc58b15e86434cb9c24149d
Certificate serial: 01856E2F91335C0F8C235177152176BE1275
Authority key identifier: B8:47:85:79:1E:07:64:6F:5C:C5:8B:15:E8:64:34:CB:9C:24:14:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uEeFeR4HZG9cxYsV6GQ0y5wkFJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/df8105-18ee-4172-b6bb-0dc33acc1dba/1/WKQQ24qslYccDwKpcydcTkMII-4.roa
Signing time: Sun 01 Jan 2023 16:34:49 +0000
ROA not before: Sun 01 Jan 2023 16:34:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62137
IP address blocks: 185.44.36.0/24 maxlen: 24
185.44.37.0/24 maxlen: 24
185.44.38.0/24 maxlen: 24
185.44.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:91:33:5c:0f:8c:23:51:77:15:21:76:be:12:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b84785791e07646f5cc58b15e86434cb9c24149d
Validity
Not Before: Jan 1 16:34:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58a410db8aac95871c0f02a973275c4e430823ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:7a:2f:5e:43:17:9f:91:26:76:d5:90:df:1d:
c7:ea:ae:ac:53:cf:01:6f:10:8f:47:7a:fa:fe:0e:
cd:0b:b8:dc:ae:5e:bb:34:2f:05:e0:fe:46:27:ea:
18:f0:81:0f:ac:21:ab:aa:8a:dc:be:a9:a3:38:35:
ef:f8:08:df:dd:df:9c:10:d9:26:ed:ae:59:62:46:
3b:1a:f9:d7:f9:a4:e6:07:a3:79:d4:dc:86:78:5e:
ce:88:ca:d8:28:70:a3:5f:17:c3:5b:ba:0f:97:2f:
2a:f4:21:88:b3:f1:09:76:be:b9:86:98:22:42:3d:
9f:78:c1:aa:f5:fd:e2:eb:02:d8:88:cd:3e:89:3c:
f8:2f:24:a5:ab:aa:2d:9d:ca:6f:d7:ef:00:ce:ef:
d9:ba:e5:9c:1f:73:d7:77:38:57:7e:40:bd:d4:f5:
90:ae:7e:bf:dc:65:47:46:e8:f0:66:90:ce:2d:48:
b2:92:6e:df:c7:4c:dc:d3:c0:a2:65:26:8b:3b:30:
f0:8d:8f:92:01:40:56:e4:38:c6:da:1d:37:08:9c:
d3:1e:f5:1e:bf:3e:2f:8d:5a:79:86:9c:a4:aa:90:
52:22:0a:7d:47:63:0b:83:6f:8b:e6:f3:94:92:0b:
13:4b:3c:28:6d:2a:92:64:e1:f3:05:c9:66:b4:3c:
4a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:A4:10:DB:8A:AC:95:87:1C:0F:02:A9:73:27:5C:4E:43:08:23:EE
X509v3 Authority Key Identifier:
keyid:B8:47:85:79:1E:07:64:6F:5C:C5:8B:15:E8:64:34:CB:9C:24:14:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uEeFeR4HZG9cxYsV6GQ0y5wkFJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/df8105-18ee-4172-b6bb-0dc33acc1dba/1/WKQQ24qslYccDwKpcydcTkMII-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/df8105-18ee-4172-b6bb-0dc33acc1dba/1/uEeFeR4HZG9cxYsV6GQ0y5wkFJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.36.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:3d:a2:2f:e9:b2:d1:69:49:9e:ff:7c:63:ef:e7:77:35:b5:
1c:9d:c9:b3:ba:85:b9:ea:d9:a8:74:68:2a:36:f0:02:e7:ba:
8c:71:a9:c0:d7:a0:ab:c8:cf:87:5b:dc:92:36:65:31:28:79:
84:f5:38:e1:bf:2d:56:1e:5d:4c:31:51:d1:e6:59:08:68:3b:
95:40:12:c4:ec:13:30:43:1a:f6:31:ac:38:d7:a6:de:32:77:
3a:58:b8:a5:aa:fc:aa:d1:98:d3:28:91:0e:30:bb:05:09:8c:
6f:33:40:74:c9:c9:34:ac:a2:99:cf:10:27:08:8c:f0:43:4d:
1b:60:dc:f2:3e:9d:95:d8:df:05:d1:b4:02:62:d9:e9:f1:19:
02:7e:bf:a5:83:b6:ac:cc:78:50:88:47:ac:bc:26:6a:5c:4c:
a5:b7:19:17:6c:cc:97:d5:0f:e4:cc:1b:a4:fd:ba:d5:2b:1f:
b8:c5:69:47:8a:a8:f1:2e:5a:9f:a8:62:93:16:2c:10:46:ed:
61:3a:9f:56:8f:1b:c7:d7:c2:f9:87:00:e4:2a:d7:6c:b4:18:
a5:9b:51:ec:6b:51:28:15:d3:dc:a3:04:2b:ba:cb:bc:79:93:
25:64:89:40:b1:f0:df:ea:ce:fd:98:ab:a3:a8:02:fd:12:55:
06:d4:49:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:37 2024 by rpki-client on console-fra.rpki-client.org