Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/W2TvH4GSeZ5918IB0KbMcxUbDkQ.roa
File: W2TvH4GSeZ5918IB0KbMcxUbDkQ.roa (raw, json)
Hash identifier: OmGE5AEfGfsneoC6c11tbXRVJ6x5P2orfJ35lA5qYDw=
Subject key identifier: 5B:64:EF:1F:81:92:79:9E:7D:D7:C2:01:D0:A6:CC:73:15:1B:0E:44
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 018BFD9F5D805003EF59A1D03C18BF977D02
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/W2TvH4GSeZ5918IB0KbMcxUbDkQ.roa
Signing time: Thu 23 Nov 2023 19:19:21 +0000
ROA not before: Thu 23 Nov 2023 19:19:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22653
IP address blocks: 146.19.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:fd:9f:5d:80:50:03:ef:59:a1:d0:3c:18:bf:97:7d:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Nov 23 19:19:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b64ef1f8192799e7dd7c201d0a6cc73151b0e44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:d5:5a:22:fc:29:8e:93:5b:0f:4c:20:de:de:
ac:3d:51:e0:d6:4b:2c:45:f8:a6:25:5f:24:c0:8a:
e7:57:ea:15:7a:d9:d0:75:8e:44:b4:1b:01:c7:53:
94:99:aa:f3:62:21:88:82:a8:7d:92:9b:05:23:2c:
52:37:aa:cd:91:b6:5b:8d:65:e6:6d:f7:47:6e:37:
fa:41:16:7b:29:de:5f:f3:37:50:75:a8:7c:c9:27:
52:c5:79:52:f4:e2:63:1e:b3:54:bd:a2:52:3e:37:
90:94:c7:2e:eb:0d:b9:34:e9:2b:5e:5a:0a:40:b2:
1a:9d:1d:07:60:a0:6c:6f:19:c5:be:74:7e:ca:56:
94:72:05:d0:7a:ff:fc:c0:02:1f:15:9f:bd:94:c6:
11:b4:97:6d:05:b7:91:15:09:d8:6c:af:1e:83:1c:
14:e9:b9:d2:e1:7b:1b:ee:0b:ee:a1:bd:0e:13:82:
ff:13:81:ad:7c:15:54:f0:49:cf:91:60:93:95:bd:
da:e8:aa:ee:02:80:01:5c:5d:0c:ae:99:cc:f0:c9:
44:e0:05:51:4f:43:30:27:03:d6:6e:8c:3b:26:b9:
40:ca:e6:66:34:86:2f:d5:68:f4:18:f3:0a:c9:f2:
2e:a3:14:b0:64:9b:fe:55:88:c7:c5:95:7d:b8:6e:
c6:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:64:EF:1F:81:92:79:9E:7D:D7:C2:01:D0:A6:CC:73:15:1B:0E:44
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/W2TvH4GSeZ5918IB0KbMcxUbDkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.20.0/24
Signature Algorithm: sha256WithRSAEncryption
84:a4:23:d2:91:3f:62:03:40:6c:16:81:74:73:4a:98:5a:95:
0f:97:f6:dc:af:05:37:94:45:0d:9d:b1:ff:2c:c6:a7:12:82:
1e:0f:12:0b:f9:34:50:d9:43:45:12:27:2e:36:68:07:4c:b6:
a7:ba:37:93:94:e2:ed:68:ad:56:3d:4d:9f:39:9f:16:47:da:
1f:82:7f:f1:ed:8f:5c:09:77:df:4a:6f:61:f8:bd:3a:f5:11:
aa:89:67:b0:37:08:f2:4a:7f:5a:91:50:47:46:76:fd:94:f8:
f6:f4:ab:41:5d:cf:80:b8:84:7e:36:a5:43:f1:0b:7f:47:3d:
f9:8e:bd:36:99:8e:db:c8:6e:55:f5:ac:db:0a:e4:18:1a:64:
83:f1:8d:2c:06:26:a1:6d:af:e5:54:05:14:2a:01:56:e4:17:
df:b4:93:0a:3a:c3:5f:bf:04:a9:b0:d9:e0:6a:e9:d9:7a:dd:
eb:ac:37:f2:4e:3b:ed:80:3e:8f:37:c3:f8:8b:5d:f6:db:2e:
7a:38:0d:c8:11:cc:23:af:9d:dd:f5:5d:64:73:5d:b2:a8:39:
c6:0d:67:55:ef:71:9e:36:87:29:0e:22:47:cb:7c:75:a1:cc:
b2:af:46:ff:c7:ca:8e:b7:ab:2e:7a:a3:ec:0e:24:3b:ef:65:
e6:2d:be:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:45 2024 by rpki-client on console-fra.rpki-client.org