Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/9cfa5f-5d2d-4be4-a80d-7d0ee2e990f5/1/WbLmPxeHZjqM-r2NgBUPieSd5z0.roa
File: WbLmPxeHZjqM-r2NgBUPieSd5z0.roa (raw, json)
Hash identifier: VRfGyMNwPUjaw6sBsFJpGsepi7gWlKYjl+gBnYCu4iU=
Subject key identifier: 59:B2:E6:3F:17:87:66:3A:8C:FA:BD:8D:80:15:0F:89:E4:9D:E7:3D
Certificate issuer: /CN=5c4fc1e4defc471c9fdb7fdadb9895563daf999c
Certificate serial: 01857102D581AFB072A595440146C7986DB4
Authority key identifier: 5C:4F:C1:E4:DE:FC:47:1C:9F:DB:7F:DA:DB:98:95:56:3D:AF:99:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XE_B5N78Rxyf23_a25iVVj2vmZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/9cfa5f-5d2d-4be4-a80d-7d0ee2e990f5/1/WbLmPxeHZjqM-r2NgBUPieSd5z0.roa
Signing time: Mon 02 Jan 2023 05:44:49 +0000
ROA not before: Mon 02 Jan 2023 05:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44352
IP address blocks: 91.199.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:d5:81:af:b0:72:a5:95:44:01:46:c7:98:6d:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c4fc1e4defc471c9fdb7fdadb9895563daf999c
Validity
Not Before: Jan 2 05:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59b2e63f1787663a8cfabd8d80150f89e49de73d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:94:5c:1b:62:96:96:2e:08:cd:a5:8c:3a:26:
36:33:89:1f:fe:4e:fc:20:1a:03:33:f5:fc:a8:d3:
5d:62:d2:a2:10:0b:a1:c2:4b:b0:40:f9:93:12:13:
d3:e0:31:59:b6:37:d2:b0:c9:16:23:d7:c1:11:de:
98:f1:82:0a:6e:9d:6e:7f:21:92:98:ed:fb:e4:22:
5f:b2:6d:78:36:27:73:a5:16:2a:bc:f8:f8:31:d7:
4c:74:cb:45:ee:96:39:fe:b7:9d:2f:7e:53:a5:4c:
03:d0:60:43:b3:4d:e8:5c:ce:02:97:0c:d9:ac:34:
9a:c6:5d:22:ae:f4:df:29:70:d7:f8:f3:fc:7a:36:
ef:85:78:bd:37:44:a9:16:22:b0:f3:30:e4:f4:98:
26:5f:09:c1:6e:1c:35:cc:f1:3f:25:8a:96:b8:64:
a7:c5:1a:64:cc:6e:8e:c1:c0:10:9b:b9:ef:37:6a:
4f:b3:e1:38:4a:f8:24:2c:99:d4:8d:3b:c4:5d:b3:
c1:7a:3c:a6:9a:30:34:87:bf:2c:09:ae:ae:7d:bf:
65:a7:93:df:f4:6c:f2:d4:51:67:bd:64:01:28:85:
40:9c:dc:5f:65:08:62:f3:a4:15:59:e9:2d:ae:1f:
32:c8:18:4e:5b:11:e6:b1:37:bb:3f:e8:b3:3c:fe:
84:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B2:E6:3F:17:87:66:3A:8C:FA:BD:8D:80:15:0F:89:E4:9D:E7:3D
X509v3 Authority Key Identifier:
keyid:5C:4F:C1:E4:DE:FC:47:1C:9F:DB:7F:DA:DB:98:95:56:3D:AF:99:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XE_B5N78Rxyf23_a25iVVj2vmZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/9cfa5f-5d2d-4be4-a80d-7d0ee2e990f5/1/WbLmPxeHZjqM-r2NgBUPieSd5z0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/9cfa5f-5d2d-4be4-a80d-7d0ee2e990f5/1/XE_B5N78Rxyf23_a25iVVj2vmZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.93.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:90:9f:8d:85:8f:a5:b4:55:fa:2c:6f:98:6a:51:42:cd:92:
fb:39:39:6c:22:7b:37:8f:8f:7c:c4:cc:b3:39:59:75:30:19:
e7:70:0b:6d:7f:48:44:e8:61:4a:ef:b3:35:6c:c2:df:d6:af:
65:f3:b8:48:3b:84:e0:47:4e:5b:6c:14:4e:b3:cd:ca:0f:7d:
bf:68:7d:c6:08:23:38:18:7b:95:40:79:22:73:97:83:a6:30:
29:29:6a:cd:01:95:e1:2f:1c:38:41:8d:47:96:6b:e7:49:c0:
c0:8c:67:bf:21:ad:d5:10:7e:f6:88:71:15:89:54:a8:6e:04:
a6:df:2f:c3:ec:cc:8e:61:42:a1:4f:04:4b:34:81:14:b0:67:
2c:6b:68:1f:7d:de:60:8f:79:a5:d2:8b:3c:65:16:5e:55:0f:
cb:d8:8c:54:61:52:91:41:02:f3:b4:ab:e6:3b:93:7c:43:e6:
00:3c:ab:79:aa:74:79:90:7b:8c:e6:2b:9e:e8:37:1d:26:cd:
75:c7:96:1f:33:c7:40:24:79:ac:56:2f:a0:a2:5d:83:3c:36:
af:35:14:21:28:1a:8f:44:39:9a:b3:1f:1e:d5:b0:af:4d:a0:
7f:d3:d9:30:28:2e:20:46:97:94:01:1a:fa:ad:b7:d6:b5:d2:
8c:39:5f:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:35 2024 by rpki-client on console-ams.rpki-client.org