Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/WpwQufpeB4ywVateJoSdocx8g3I.roa
File: WpwQufpeB4ywVateJoSdocx8g3I.roa (raw, json)
Hash identifier: UELJDKrMDLBe5xH2jjUiVN6Mki4ic9nEV+BcCAvgKRY=
Subject key identifier: 5A:9C:10:B9:FA:5E:07:8C:B0:55:AB:5E:26:84:9D:A1:CC:7C:83:72
Certificate issuer: /CN=747cb366ff6e23df6c097f60adc7fa8075598191
Certificate serial: 0187F769E6E92501884B13154F30D8148F26
Authority key identifier: 74:7C:B3:66:FF:6E:23:DF:6C:09:7F:60:AD:C7:FA:80:75:59:81:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/WpwQufpeB4ywVateJoSdocx8g3I.roa
Signing time: Sun 07 May 2023 18:12:05 +0000
ROA not before: Sun 07 May 2023 18:12:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200232
IP address blocks: 194.31.131.0/24 maxlen: 24
2a13:6ec0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:f7:69:e6:e9:25:01:88:4b:13:15:4f:30:d8:14:8f:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=747cb366ff6e23df6c097f60adc7fa8075598191
Validity
Not Before: May 7 18:12:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a9c10b9fa5e078cb055ab5e26849da1cc7c8372
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e6:fd:72:51:2c:c4:cc:74:d9:a4:cb:fd:59:
09:a6:f4:d7:2a:8f:1b:44:2f:29:a1:8c:56:17:57:
db:67:c4:e3:37:1d:1b:0c:45:68:7d:3d:47:95:64:
20:ec:40:fc:b6:ee:b1:2e:34:01:66:8b:b5:5d:bc:
8b:78:64:9e:df:2b:c3:cc:83:a2:82:62:04:8a:34:
df:8a:ba:5f:06:85:ce:d9:37:48:ca:e3:c4:d7:c3:
4c:c3:44:60:b4:be:b2:d6:ca:d6:05:11:11:27:d2:
91:65:e0:38:1a:d1:f5:68:db:b9:c6:94:c6:d7:a9:
27:ce:5d:9f:25:e8:8f:5b:76:2f:fb:3b:87:44:a7:
72:78:6e:ed:09:a7:c6:80:3d:fb:3c:91:04:a2:39:
53:ae:75:52:a4:43:4a:b8:00:0b:0d:c0:fe:84:0a:
5b:67:09:6d:26:65:94:57:3b:07:fe:49:39:24:19:
1c:aa:0b:b4:56:1f:f6:4a:c2:51:7a:ab:11:e9:20:
2e:9d:ec:70:9e:66:45:0c:fc:52:5f:75:48:84:8e:
69:c1:6e:c1:24:ac:d1:d4:4d:99:6b:2e:bd:e2:9f:
86:5b:6c:f4:1f:30:06:d0:10:98:f5:7a:08:e9:f8:
b6:9a:d1:a8:51:50:7c:f1:7f:55:6a:1d:81:cc:af:
f8:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:9C:10:B9:FA:5E:07:8C:B0:55:AB:5E:26:84:9D:A1:CC:7C:83:72
X509v3 Authority Key Identifier:
keyid:74:7C:B3:66:FF:6E:23:DF:6C:09:7F:60:AD:C7:FA:80:75:59:81:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/WpwQufpeB4ywVateJoSdocx8g3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.131.0/24
IPv6:
2a13:6ec0::/32
Signature Algorithm: sha256WithRSAEncryption
28:d5:f2:f8:9f:4a:66:92:c1:36:55:19:02:f6:45:14:20:e7:
c0:79:0b:25:5e:cd:27:f3:f7:35:1d:19:81:d5:e7:c6:d2:ec:
87:75:c5:cf:ab:22:ee:a9:95:5e:7c:8c:05:ca:64:43:04:58:
e9:98:41:37:c5:ec:38:0e:c5:7c:da:99:26:98:74:07:37:7a:
49:80:a4:a8:76:71:d0:af:d6:25:53:7c:6a:7b:05:82:ec:58:
45:56:38:32:9e:40:6e:97:b6:1d:1f:59:10:83:6c:bf:f0:ac:
f8:60:3e:f4:b9:af:ed:08:af:9a:6d:db:64:f4:29:b5:51:e0:
3f:6d:ef:d7:2f:7e:59:8f:4e:c1:2c:fd:a9:32:0b:0e:bb:96:
73:31:79:b8:55:fd:84:f5:d9:1f:47:13:3e:e3:18:5e:37:b4:
25:5f:fd:49:56:2b:32:b3:fd:ef:b2:1f:ee:37:65:24:07:d5:
4b:ce:90:b8:54:c5:46:62:f7:9c:5f:c2:40:84:68:3b:ea:d9:
a6:b5:e3:64:d2:fa:1a:4f:8d:91:d1:a6:9a:1b:8d:76:21:10:
c7:49:9c:f8:0b:76:95:8d:ae:d5:69:51:f4:8f:de:02:6c:7f:
dd:46:f5:bc:04:4b:3a:7d:c0:b0:ca:af:89:b5:21:2f:a7:cd:
79:9c:ef:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:17 2024 by rpki-client on console-fra.rpki-client.org