Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/WbCNhjZuc_VrN6IDLa-5kflmJbI.roa
File: WbCNhjZuc_VrN6IDLa-5kflmJbI.roa (raw, json)
Hash identifier: ccTU61UsuTxY31eyv8jqB31QliddzOxh6s5Zia415Vw=
Subject key identifier: 59:B0:8D:86:36:6E:73:F5:6B:37:A2:03:2D:AF:B9:91:F9:66:25:B2
Certificate issuer: /CN=c84d61cd17ed92e54bb3397f1e5a6b3904ac6f05
Certificate serial: 01856CCAD849A08530AFEA7FF735089917A6
Authority key identifier: C8:4D:61:CD:17:ED:92:E5:4B:B3:39:7F:1E:5A:6B:39:04:AC:6F:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yE1hzRftkuVLszl_HlprOQSsbwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/WbCNhjZuc_VrN6IDLa-5kflmJbI.roa
Signing time: Sun 01 Jan 2023 10:05:10 +0000
ROA not before: Sun 01 Jan 2023 10:05:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5089
IP address blocks: 185.33.184.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:d8:49:a0:85:30:af:ea:7f:f7:35:08:99:17:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c84d61cd17ed92e54bb3397f1e5a6b3904ac6f05
Validity
Not Before: Jan 1 10:05:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59b08d86366e73f56b37a2032dafb991f96625b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:98:0d:54:dd:13:50:cd:29:fc:4b:6b:b7:5d:
1e:06:42:0a:8f:8e:06:86:a6:e7:52:a2:8e:2a:7c:
10:2f:34:da:5e:5f:fc:e4:7a:5e:50:6e:ba:95:d0:
d7:d4:9a:e9:a5:a6:2c:37:d1:46:83:a2:3b:71:cb:
2f:19:1e:b8:1a:a6:93:33:34:20:53:1b:06:60:be:
98:7f:27:f9:97:29:46:94:64:98:12:ac:7f:6d:5c:
99:cc:bb:ff:94:c7:f0:f4:9f:dc:fd:8d:c2:db:09:
6f:3f:c8:b8:1a:6e:68:86:32:c9:51:80:2e:d6:8b:
ce:a1:47:5d:32:17:f2:3b:aa:57:f9:20:1a:94:00:
20:f9:b0:f7:a5:6e:5f:a5:d3:3a:3b:7c:11:04:c5:
d6:5b:f7:b0:aa:cf:59:0a:2c:76:67:ea:53:49:37:
84:b3:47:fc:e9:4b:58:9d:1a:bb:c9:d2:9d:49:49:
7f:33:b6:87:78:90:f0:d8:5a:32:bf:2d:e2:4d:c8:
82:a8:f3:97:eb:ca:c0:fe:83:b3:3f:a6:86:5a:b8:
56:99:15:62:2f:2b:0c:ed:87:a3:48:a5:07:a0:f2:
b3:83:b5:0a:4e:7d:d4:e1:b1:97:bc:c1:5b:f9:01:
32:87:02:6e:f6:dd:8b:c8:da:f7:38:ee:1c:f0:cb:
2f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B0:8D:86:36:6E:73:F5:6B:37:A2:03:2D:AF:B9:91:F9:66:25:B2
X509v3 Authority Key Identifier:
keyid:C8:4D:61:CD:17:ED:92:E5:4B:B3:39:7F:1E:5A:6B:39:04:AC:6F:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yE1hzRftkuVLszl_HlprOQSsbwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/WbCNhjZuc_VrN6IDLa-5kflmJbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/yE1hzRftkuVLszl_HlprOQSsbwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.184.0/22
Signature Algorithm: sha256WithRSAEncryption
35:eb:5c:52:24:b7:c1:29:34:4a:4f:bc:4f:b1:ac:42:59:0b:
d6:71:6d:64:8d:ca:bd:55:fb:d4:0c:67:0e:65:a7:50:bc:e7:
c9:b1:00:d5:e9:d5:95:40:75:ab:b8:dd:b8:a0:47:91:09:5f:
37:8d:98:3b:d5:16:93:42:b1:fb:88:10:b9:d5:5b:34:3f:0d:
83:82:fb:41:40:8b:2c:f5:51:cf:c0:5f:93:58:f6:6c:68:61:
64:86:a4:4e:17:63:07:32:38:f8:f5:0a:a6:e2:d5:16:14:e6:
0e:24:0b:bb:d6:53:71:6c:01:21:59:94:27:d4:7a:7f:3c:f2:
92:da:3d:f4:4c:41:a9:5a:ff:33:c0:73:43:9d:c8:72:f6:a9:
c0:5d:68:d8:e7:bf:f7:6e:7d:0b:6d:51:77:c0:a5:6f:80:80:
63:2b:43:05:4b:29:58:f8:d1:2b:3b:00:32:8d:b1:59:cd:c5:
17:8d:ea:3c:fa:06:0d:7e:d4:eb:39:91:dd:cd:4c:a6:5a:c2:
fb:8c:18:3f:a5:de:25:31:f7:b4:ce:f6:83:2e:d8:5a:e4:26:
93:17:10:11:8c:cb:9c:ca:11:9b:08:41:70:01:69:61:15:b7:
f2:c5:bb:24:93:a3:34:8f:e2:d3:3c:a3:5e:4d:29:52:dc:1b:
29:72:73:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:38 2024 by rpki-client on console-ams.rpki-client.org