Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/WXw1px9F4Qcphrku3r5j3MzaF-A.roa
File: WXw1px9F4Qcphrku3r5j3MzaF-A.roa (raw, json)
Hash identifier: sb6OHUKGpFr3h6iqNhC0y8KP9Lggdu/2PkgF5yxuN5k=
Subject key identifier: 59:7C:35:A7:1F:45:E1:07:29:86:B9:2E:DE:BE:63:DC:CC:DA:17:E0
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018D262454ACB63B7517A8B6C19FA6D65826
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/WXw1px9F4Qcphrku3r5j3MzaF-A.roa
Signing time: Sat 20 Jan 2024 09:12:11 +0000
ROA not before: Sat 20 Jan 2024 09:12:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 89.251.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Feb 2024 10:44:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:26:24:54:ac:b6:3b:75:17:a8:b6:c1:9f:a6:d6:58:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Jan 20 09:12:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=597c35a71f45e1072986b92edebe63dcccda17e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:d0:b5:86:4f:e3:fd:fb:fe:ed:4f:ab:56:59:
9d:21:cf:cc:5c:da:1d:1c:d3:18:7f:43:22:bb:88:
61:c0:29:7b:dd:a4:00:e6:ca:9d:0b:0d:7f:55:5a:
b5:0f:4d:4e:b4:93:c4:59:25:e0:e7:73:bc:62:e1:
f3:61:8c:aa:2d:40:f5:16:e1:b8:f7:c7:ae:9e:62:
d3:d3:2d:c4:63:d1:97:5f:4e:f8:ba:6e:49:3d:c6:
19:ac:4c:5f:cc:e4:2b:02:92:de:02:16:71:c9:17:
f2:05:1b:01:d2:e3:3b:8e:0d:bb:28:c3:61:0c:47:
ec:e8:d3:ca:3b:db:b1:02:3d:33:33:df:7e:8f:85:
f5:f5:b7:3a:ae:b2:8b:7a:75:b1:7b:6d:fd:52:c7:
78:da:b8:e2:a7:51:b2:8a:24:e1:09:f6:8f:da:39:
aa:5e:18:12:86:08:ff:f7:a1:5c:4b:53:c0:37:45:
dd:db:8e:b8:d6:09:b2:6e:83:e6:e0:d9:54:42:0b:
70:41:59:0e:53:8a:b1:76:a1:8f:de:f1:ba:40:bb:
ad:88:3e:19:a8:7d:72:8c:24:16:2a:c9:64:82:23:
ac:c4:8e:bd:6e:bf:4e:e4:77:a6:1b:15:8c:37:38:
3e:81:db:84:0b:5d:ec:d7:fd:b4:db:30:ac:11:5d:
68:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:7C:35:A7:1F:45:E1:07:29:86:B9:2E:DE:BE:63:DC:CC:DA:17:E0
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/WXw1px9F4Qcphrku3r5j3MzaF-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.251.30.0/24
Signature Algorithm: sha256WithRSAEncryption
01:f2:05:41:26:4c:00:ab:9e:64:3e:fc:b9:83:3d:e2:eb:1e:
d5:2f:75:6a:be:1b:32:48:4b:02:a0:35:82:11:d1:3d:f7:a7:
28:93:1e:b3:60:05:50:ba:6d:fa:84:54:61:e9:2a:33:cd:6b:
70:56:55:80:4f:ae:d9:7e:9d:b5:10:91:d3:53:e8:14:1b:8e:
54:02:62:e2:99:3e:fb:ef:d5:a1:be:47:66:98:ce:e6:9e:10:
cc:c9:d3:fa:00:d0:69:86:ff:c2:59:06:db:b7:75:24:94:80:
92:c5:80:eb:ef:49:16:5f:e9:e5:81:5f:28:df:a5:ab:79:8e:
3e:fc:fc:38:4d:5c:52:fe:cc:9d:64:53:ad:69:ea:08:81:a9:
20:c7:68:50:8e:75:7c:51:64:73:2b:db:de:44:87:1d:d1:53:
a7:f9:5a:20:91:72:a6:ff:33:35:18:7b:e0:11:9d:0f:13:2c:
81:91:0c:8e:f6:06:e2:0e:53:87:a1:59:6e:2d:56:84:7a:76:
0b:0a:60:7d:1f:63:03:71:fc:c0:97:7e:00:8e:05:67:88:26:
e1:ae:b0:e4:67:c8:5c:be:e2:1e:50:72:04:a0:5c:20:8d:3c:
b6:fd:e5:26:66:24:2d:e3:3c:1d:6e:d7:3d:ea:aa:23:d0:b1:
ca:ee:da:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:06 2024 by rpki-client on console-ams.rpki-client.org