Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/WSKGdm89LLvk522Shs-6wgxRqqo.roa
File: WSKGdm89LLvk522Shs-6wgxRqqo.roa (raw, json)
Hash identifier: /sX198L4Gs5LzbyyeR6j0E3rMCDJfa38Ha2iHAACwF0=
Subject key identifier: 59:22:86:76:6F:3D:2C:BB:E4:E7:6D:92:86:CF:BA:C2:0C:51:AA:AA
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 01856C53DABACA4A827D3B99CB57ACBBE516
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/WSKGdm89LLvk522Shs-6wgxRqqo.roa
Signing time: Sun 01 Jan 2023 07:55:12 +0000
ROA not before: Sun 01 Jan 2023 07:55:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212951
IP address blocks: 45.153.10.0/24 maxlen: 24
45.153.11.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:da:ba:ca:4a:82:7d:3b:99:cb:57:ac:bb:e5:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Jan 1 07:55:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=592286766f3d2cbbe4e76d9286cfbac20c51aaaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:f5:1a:26:82:75:7a:45:56:63:6e:91:1a:c9:
b3:55:65:9c:bf:a9:30:17:95:ab:c3:d4:d8:1f:ab:
c1:f5:9c:42:41:29:43:50:e0:0c:d3:a5:54:bb:a0:
e2:20:65:d2:5a:73:8d:6b:58:e5:ea:9c:3b:98:7d:
e1:27:7a:e8:ac:ef:ac:46:65:23:05:fb:e8:b1:94:
14:02:a9:c7:75:4c:54:f3:a6:e9:53:b5:c7:aa:8e:
cf:9d:a3:33:44:65:7b:53:0d:ec:ea:26:e0:64:a2:
97:ea:70:79:d5:1c:af:70:d0:86:5e:cc:79:04:a9:
f6:a1:e4:14:ab:3b:ff:ce:3a:4d:31:81:e5:a4:28:
4a:50:b1:84:86:f0:82:b1:d0:7e:b4:0a:42:c4:42:
15:4d:2f:fe:b8:43:83:ee:bb:f2:4a:59:1c:77:2a:
c7:98:74:77:ca:a9:17:2f:57:ce:27:61:43:04:d1:
36:9b:fb:89:2f:9a:3d:af:b1:a0:bc:47:ba:bf:35:
01:3f:bc:c3:d5:40:a6:f0:bf:b5:32:08:00:25:76:
2b:97:a7:d6:ef:62:88:c6:29:cc:f5:34:e1:d2:f0:
61:21:ff:58:5a:3d:65:79:94:a1:7c:a3:dc:36:a9:
94:74:ee:54:c4:44:bd:11:b5:30:1b:05:fe:dd:c5:
81:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:22:86:76:6F:3D:2C:BB:E4:E7:6D:92:86:CF:BA:C2:0C:51:AA:AA
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/WSKGdm89LLvk522Shs-6wgxRqqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.10.0/23
Signature Algorithm: sha256WithRSAEncryption
52:d1:7f:22:45:7d:72:06:0b:2e:6e:2e:2a:84:bf:14:f5:84:
f0:ff:eb:47:79:ad:55:06:27:fb:e7:c6:73:78:10:dd:b9:ed:
10:15:1a:1c:09:ab:7d:75:ff:2b:da:44:29:30:2d:96:48:91:
a5:8e:1d:2b:3f:14:97:ec:f4:4d:b8:37:6a:95:4c:d5:59:fa:
5f:f6:b4:8f:c3:3a:39:db:86:d4:bc:03:67:e5:bc:ee:f5:1d:
8f:8f:e3:49:6a:79:91:55:b9:41:ea:8f:18:7a:05:97:a8:7b:
2a:1c:dd:e0:07:7e:e7:1f:32:16:9a:4b:3a:3b:b5:ff:f1:c7:
46:7b:72:fc:4d:f0:a7:e0:de:4c:d6:94:e4:ea:3d:20:df:c3:
44:c5:46:07:ee:64:5b:f4:05:10:19:c2:6d:5a:4c:d7:83:f6:
f3:55:49:61:ea:e7:76:29:2c:b0:a2:4c:b8:9f:e2:52:34:ab:
6d:4a:5d:94:e3:66:c4:cd:4d:7c:5f:25:41:c5:a2:51:e7:77:
ff:6e:7b:63:9f:69:e4:7a:6f:fd:69:ba:dd:51:f5:0a:af:4d:
86:aa:b6:9e:a7:53:ba:5c:69:e8:4f:59:23:cb:be:99:c7:78:
8e:42:4e:48:f6:bf:19:8c:c7:4b:fc:4b:29:62:91:35:9d:30:
a1:9e:a9:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:13 2024 by rpki-client on console-fra.rpki-client.org