Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/WeHFASW-QfvRhBkSnHPuc4MYsCA.roa
File: WeHFASW-QfvRhBkSnHPuc4MYsCA.roa (raw, json)
Hash identifier: tiA9BmMy3NaSgvYV/jKJcPBsCJYHl2aQt8g48gwy+wE=
Subject key identifier: 59:E1:C5:01:25:BE:41:FB:D1:84:19:12:9C:73:EE:73:83:18:B0:20
Certificate issuer: /CN=37fb004e397ddf04e7d05f3643a036f21836ff10
Certificate serial: 01856D6617CAC8577BA56A409B7B7907EC7A
Authority key identifier: 37:FB:00:4E:39:7D:DF:04:E7:D0:5F:36:43:A0:36:F2:18:36:FF:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N_sATjl93wTn0F82Q6A28hg2_xA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/WeHFASW-QfvRhBkSnHPuc4MYsCA.roa
Signing time: Sun 01 Jan 2023 12:54:45 +0000
ROA not before: Sun 01 Jan 2023 12:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19905
IP address blocks: 185.102.76.0/22 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:66:17:ca:c8:57:7b:a5:6a:40:9b:7b:79:07:ec:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37fb004e397ddf04e7d05f3643a036f21836ff10
Validity
Not Before: Jan 1 12:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59e1c50125be41fbd18419129c73ee738318b020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:36:85:b5:00:47:a1:8c:55:17:b4:ff:5a:6c:
6a:fd:45:f7:9e:ce:e5:a2:b5:e2:25:d3:63:f6:08:
b0:82:f7:b8:a1:9b:c7:76:ce:a2:11:27:2e:ee:bc:
04:e9:40:47:ff:db:3f:0c:05:a9:00:b8:3d:01:20:
c7:3c:b6:8e:f1:7c:c1:5e:48:89:1c:8e:bd:1f:c5:
0a:46:ee:29:a7:ce:85:8c:e4:bf:85:61:57:04:42:
1b:e8:ee:0a:e2:45:d0:80:1a:5f:16:af:a1:62:ec:
3f:65:60:3d:27:c5:14:5c:e2:3f:d8:5c:a4:7e:b5:
9a:70:1f:37:41:d4:cd:85:b5:60:9d:63:57:5d:ba:
6d:fc:23:05:46:17:f6:18:f8:c3:ed:6c:0b:b8:8d:
d8:fe:cc:e7:bc:52:1f:31:aa:2f:73:4b:15:ec:6b:
b4:61:87:8f:48:3a:c0:cd:77:ae:97:52:e6:a6:8f:
6c:b1:90:0b:50:75:7f:81:70:37:b9:04:81:83:e8:
22:ed:e7:ae:4b:0e:8f:b2:e3:b9:d5:c6:47:7a:42:
04:d0:0b:d0:f0:15:5c:f2:86:f9:35:4d:76:de:01:
6d:9f:64:ab:0d:fd:48:42:a7:98:74:0b:38:43:d6:
a3:e6:71:68:96:2b:d7:6a:9b:e3:80:6f:62:b3:8c:
2c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:E1:C5:01:25:BE:41:FB:D1:84:19:12:9C:73:EE:73:83:18:B0:20
X509v3 Authority Key Identifier:
keyid:37:FB:00:4E:39:7D:DF:04:E7:D0:5F:36:43:A0:36:F2:18:36:FF:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N_sATjl93wTn0F82Q6A28hg2_xA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/WeHFASW-QfvRhBkSnHPuc4MYsCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/N_sATjl93wTn0F82Q6A28hg2_xA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.76.0/22
Signature Algorithm: sha256WithRSAEncryption
18:25:f9:94:ce:6d:b5:56:3e:7a:56:41:8a:d8:e5:00:44:7f:
14:2a:33:55:db:42:65:83:ab:88:0a:3d:60:70:e0:cf:70:dd:
fa:6a:84:08:ca:d4:d3:5b:16:5b:55:af:0c:2d:97:d6:e3:88:
bb:4b:50:59:05:bc:69:e0:bc:b8:15:fc:0b:50:f6:53:4f:a3:
3c:dd:2e:dc:a7:4f:ce:de:8f:40:fa:9c:a0:83:f3:dd:d5:ec:
97:2f:d8:6d:e6:a4:52:62:fd:ef:04:de:0e:83:93:93:2f:1c:
de:18:49:d7:0f:ac:b6:91:c4:a9:0c:df:09:21:4b:47:2b:47:
6f:92:4f:cd:83:cc:87:d6:1c:53:5c:7a:9a:71:5f:89:10:9c:
a1:28:de:b5:24:47:7f:04:2f:ee:53:f9:3e:47:dd:d0:f5:16:
0b:2a:55:f3:c7:3c:64:66:22:48:03:cd:bd:10:db:66:44:a8:
f0:d5:0f:5f:1f:7d:0b:56:48:43:68:80:ba:40:ab:41:68:f2:
26:b7:0e:d5:83:9c:66:79:05:69:8d:31:c6:3c:59:54:bf:f5:
b6:e0:ce:04:f3:57:94:b9:4f:32:d3:c2:16:09:20:56:66:fa:
53:73:ca:fc:59:2f:02:f4:41:df:11:14:3a:38:5d:c4:f5:18:
47:67:8b:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:56 2024 by rpki-client on console-ams.rpki-client.org