Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/WJpCs0O18kli4AgjLlDAUVHElWA.roa
File: WJpCs0O18kli4AgjLlDAUVHElWA.roa (raw, json)
Hash identifier: CjTwkuzXdLNHYyPifEaijbdQA3nJQLFVvbKziOCOZjA=
Subject key identifier: 58:9A:42:B3:43:B5:F2:49:62:E0:08:23:2E:50:C0:51:51:C4:95:60
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018CC794DBAA517AF8280CCD6B9C3D1E0E3B
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/WJpCs0O18kli4AgjLlDAUVHElWA.roa
Signing time: Tue 02 Jan 2024 00:31:10 +0000
ROA not before: Tue 02 Jan 2024 00:31:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212817
IP address blocks: 91.200.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 21:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:db:aa:51:7a:f8:28:0c:cd:6b:9c:3d:1e:0e:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Jan 2 00:31:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=589a42b343b5f24962e008232e50c05151c49560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:17:cb:54:08:63:57:40:d8:6c:68:7b:a6:96:
fb:ae:f1:6a:d2:16:12:11:00:8f:92:20:7c:0d:1d:
ac:c8:67:95:00:b3:36:24:8a:80:4c:d3:57:19:db:
c8:9c:63:09:40:38:c0:0e:bc:5c:02:a7:b9:c6:ef:
6e:c8:15:84:da:c3:8a:13:b5:2d:fe:49:9b:f8:51:
b9:4a:46:18:6a:d1:e3:05:0f:50:b8:8a:f9:ec:94:
de:b4:56:e2:4b:cc:f3:61:05:69:ff:dc:d4:13:48:
09:61:7e:8f:ca:4a:8a:a9:85:fa:ae:12:e3:8f:46:
a1:89:47:81:be:8c:f9:a1:1c:5c:ac:61:93:49:62:
f2:15:ad:d3:c5:f2:10:a1:be:a8:ad:bb:a4:3e:7b:
f0:f4:b5:fe:55:7d:af:f9:f7:f6:8c:0e:24:cf:ae:
03:a5:8e:7a:a5:8e:ef:cb:f3:e7:ff:89:95:a3:99:
d9:a1:70:41:be:eb:f9:cc:eb:0e:47:5f:30:58:dd:
ed:d6:d3:a8:dc:88:81:bc:3b:21:eb:80:26:5c:d8:
2b:66:9c:ba:7d:1b:c7:e0:95:85:47:02:5d:e9:1e:
77:1b:38:45:52:00:92:e6:14:1e:17:61:a7:1f:37:
cc:81:f1:b4:9b:42:96:8d:92:01:3a:2c:68:3b:b2:
98:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:9A:42:B3:43:B5:F2:49:62:E0:08:23:2E:50:C0:51:51:C4:95:60
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/WJpCs0O18kli4AgjLlDAUVHElWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.222.0/24
Signature Algorithm: sha256WithRSAEncryption
23:90:e7:4e:5e:11:5c:91:1f:7c:c9:4d:98:17:99:cb:a6:2e:
7a:65:e7:be:77:c6:ea:5b:46:06:b7:d3:8a:e7:d9:2e:54:65:
2a:70:5c:22:88:a6:65:75:ec:14:a6:7b:ad:87:5d:1c:d1:63:
e7:2c:1c:e7:3d:7a:8d:7e:1c:6a:e4:f1:de:9f:f7:62:9f:c8:
1b:ce:23:21:f9:11:1d:58:f2:d0:9e:fd:9c:75:6f:58:49:44:
74:b2:28:ce:06:3e:12:39:77:06:89:94:24:0a:c6:d2:cc:75:
18:6f:38:52:81:59:0d:85:b4:a4:1b:fd:3d:55:16:26:8a:05:
e2:4a:56:67:bd:7d:6a:25:9e:5f:c8:bd:f2:f1:7c:d8:2d:d3:
94:36:0e:da:8c:cf:a9:0e:e8:c3:60:54:9b:43:fb:f8:a4:d7:
09:d5:c0:b8:23:a5:86:fe:d1:40:b1:ad:6e:09:bc:88:eb:6d:
49:4f:1e:34:07:f7:f4:dd:c0:44:4b:81:aa:2a:8e:e9:a4:d5:
03:86:0d:06:db:1d:f9:a9:a9:42:f9:be:31:a8:32:e3:5a:94:
92:ee:63:41:67:2a:45:10:70:86:e8:8e:29:b1:0e:e0:d2:c5:
c9:1c:cb:2e:11:2f:db:56:27:62:de:d9:23:b3:2c:4b:0e:d6:
04:b2:6f:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org