Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/31f8a0-7e95-4fe2-8809-f78bdb6f60c2/1/wigokK8XLPVaN92dbRbNM_HNN3M.roa
File: wigokK8XLPVaN92dbRbNM_HNN3M.roa (raw, json)
Hash identifier: +dqPc+dfZp/rnLoh+AM6g8mZ2BFIOr4pv/H6cdos+Vk=
Subject key identifier: C2:28:28:90:AF:17:2C:F5:5A:37:DD:9D:6D:16:CD:33:F1:CD:37:73
Certificate issuer: /CN=80ebaf2cba8359438e434123dda7a5a396f5f519
Certificate serial: 01856D540010A4025F705AC623C27C5B02EC
Authority key identifier: 80:EB:AF:2C:BA:83:59:43:8E:43:41:23:DD:A7:A5:A3:96:F5:F5:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gOuvLLqDWUOOQ0Ej3aelo5b19Rk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/31f8a0-7e95-4fe2-8809-f78bdb6f60c2/1/wigokK8XLPVaN92dbRbNM_HNN3M.roa
Signing time: Sun 01 Jan 2023 12:34:59 +0000
ROA not before: Sun 01 Jan 2023 12:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42926
IP address blocks: 37.205.2.0/24 maxlen: 24
37.205.1.0/24 maxlen: 24
37.205.0.0/24 maxlen: 24
37.205.4.0/24 maxlen: 24
37.205.3.0/24 maxlen: 24
37.205.7.0/24 maxlen: 24
37.205.6.0/24 maxlen: 24
37.205.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:54:00:10:a4:02:5f:70:5a:c6:23:c2:7c:5b:02:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80ebaf2cba8359438e434123dda7a5a396f5f519
Validity
Not Before: Jan 1 12:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2282890af172cf55a37dd9d6d16cd33f1cd3773
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:15:d5:72:81:37:2f:a6:ab:ed:bd:42:43:e7:
f0:cc:a7:e8:98:19:54:2f:5b:74:32:a5:2f:2d:0a:
a2:17:c5:c8:a3:98:9b:8c:52:cd:36:79:91:c9:f7:
87:f3:25:19:94:32:58:4f:4a:b5:9b:7a:fa:a6:a7:
ab:eb:50:54:54:dc:93:65:48:2e:f4:35:18:ab:db:
ab:23:da:08:4e:ea:89:ff:4b:2f:8e:13:3b:2b:35:
fb:b2:41:12:b0:44:7e:fa:a1:1b:ae:ce:96:c4:cd:
d1:4b:2d:ca:36:c0:3b:63:f5:f4:e0:9b:4d:15:df:
c6:50:3f:e7:fe:37:7a:9f:0a:38:19:5c:12:65:b4:
b0:7b:62:3f:cb:70:bf:8f:96:73:64:fe:2d:1c:34:
5f:38:1f:e4:0e:74:dd:7a:e0:72:cc:09:39:35:41:
3a:53:fb:64:43:86:35:0e:15:a2:a8:cf:96:80:5e:
49:3e:b0:ca:6c:b3:65:15:4e:29:a2:b6:69:1b:ff:
47:fb:d2:87:21:18:21:94:b9:0e:6a:4b:03:29:50:
4b:c6:85:c0:b6:b9:9e:06:0d:46:e1:c1:ea:61:8a:
85:71:88:b1:b8:77:b0:05:23:54:ca:c9:af:ab:53:
ad:23:e3:2b:3a:b1:d3:1c:3d:5d:38:dc:bd:d4:fa:
6b:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:28:28:90:AF:17:2C:F5:5A:37:DD:9D:6D:16:CD:33:F1:CD:37:73
X509v3 Authority Key Identifier:
keyid:80:EB:AF:2C:BA:83:59:43:8E:43:41:23:DD:A7:A5:A3:96:F5:F5:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gOuvLLqDWUOOQ0Ej3aelo5b19Rk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/31f8a0-7e95-4fe2-8809-f78bdb6f60c2/1/wigokK8XLPVaN92dbRbNM_HNN3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/31f8a0-7e95-4fe2-8809-f78bdb6f60c2/1/gOuvLLqDWUOOQ0Ej3aelo5b19Rk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.205.0.0/21
Signature Algorithm: sha256WithRSAEncryption
2f:bc:3d:fb:f9:45:2c:b5:90:1d:fd:9f:6e:7d:3a:52:0f:6a:
35:a8:78:35:98:94:a8:65:1b:05:5e:50:72:78:4f:34:7c:f4:
09:16:02:da:55:8f:9d:fb:92:6c:91:d7:11:6c:eb:33:cc:3d:
53:ac:8a:1f:1a:f1:61:65:9d:9c:86:65:2c:14:02:34:a8:61:
fd:27:53:e7:8b:0e:57:8a:42:7c:b4:f8:37:6d:1d:cc:99:82:
87:06:3c:64:56:7d:eb:ac:d8:66:a9:4c:e4:c1:7e:e6:9d:d6:
1f:1d:66:e5:5a:53:b2:8d:9e:e1:f8:cd:cd:91:0b:2f:9f:02:
d9:7f:39:20:19:76:6e:8c:58:60:13:ad:70:ed:0e:c0:3a:7c:
c1:10:0a:cc:29:d6:61:60:45:48:79:67:ec:33:5f:28:86:76:
8a:05:49:fb:b3:af:65:ec:9f:a3:d5:4b:5a:b0:4b:b2:c5:96:
a1:6d:a9:89:2e:fa:20:fb:0b:ab:5e:f1:08:99:36:e7:6d:d1:
31:34:dd:b1:76:b5:5d:10:45:2f:94:df:47:52:4c:2d:6e:4d:
ce:ff:40:03:79:29:4b:21:1d:5c:f4:6d:19:f8:a8:37:b3:7b:
55:bb:34:a3:fa:2f:6e:28:b5:a2:5a:25:5b:cb:83:d9:bf:01:
0d:47:27:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:32 2024 by rpki-client on console-ams.rpki-client.org