Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/wnqRYkBrHcH0_GrA6s5uXoEmP-4.roa
File: wnqRYkBrHcH0_GrA6s5uXoEmP-4.roa (raw, json)
Hash identifier: YfAJF1FQ+5KJwYLemFDKlJ9CEWxWDzkQD59xIIa7q4g=
Subject key identifier: C2:7A:91:62:40:6B:1D:C1:F4:FC:6A:C0:EA:CE:6E:5E:81:26:3F:EE
Certificate issuer: /CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Certificate serial: 01896E642F276A7483FBE6E06C400E605F8C
Authority key identifier: 64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/wnqRYkBrHcH0_GrA6s5uXoEmP-4.roa
Signing time: Wed 19 Jul 2023 13:43:26 +0000
ROA not before: Wed 19 Jul 2023 13:43:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 89.43.34.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6e:64:2f:27:6a:74:83:fb:e6:e0:6c:40:0e:60:5f:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Validity
Not Before: Jul 19 13:43:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c27a9162406b1dc1f4fc6ac0eace6e5e81263fee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a6:b7:c7:e5:ea:b9:3c:a4:38:84:ce:8e:77:
0f:c2:d4:82:55:32:25:84:6c:8f:5a:94:95:92:5c:
dd:a6:14:89:3a:1a:86:14:6b:40:cb:5c:69:76:54:
fa:49:a4:7c:28:b8:ad:a8:33:e6:7f:11:2c:03:1c:
64:2c:bf:ae:aa:b8:23:40:93:96:b4:e8:35:c2:47:
8d:9d:3f:b0:a0:94:a1:16:b9:14:4e:40:ed:cf:e1:
ea:1c:f3:e8:3d:48:2c:c6:d8:e3:fb:9c:58:f0:15:
88:04:fa:ac:ba:de:ae:c0:42:82:5b:fb:8f:ca:af:
9c:41:08:79:89:e2:86:a5:d1:65:e0:06:56:c8:d2:
b2:c5:0d:cc:c4:f6:cd:7d:6b:4d:9c:e8:8b:28:e4:
0a:5f:30:9a:71:34:a2:18:0c:54:b8:7b:1e:0d:aa:
44:d7:48:42:93:37:be:03:5e:c3:b3:3e:0a:8c:8f:
41:9b:d9:c3:57:52:e1:03:be:ca:9e:46:80:be:b2:
33:c2:e7:02:24:1d:59:52:dd:9d:13:dd:9b:6d:05:
0e:40:c8:f3:61:b4:6d:c6:05:65:93:cc:ac:3e:5d:
4c:5e:c1:9d:de:a9:34:f5:73:cf:80:36:00:55:e3:
24:aa:ba:ec:ee:80:da:dd:bf:52:3f:94:8c:57:cf:
f5:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:7A:91:62:40:6B:1D:C1:F4:FC:6A:C0:EA:CE:6E:5E:81:26:3F:EE
X509v3 Authority Key Identifier:
keyid:64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/wnqRYkBrHcH0_GrA6s5uXoEmP-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/ZPpm-4SngaBYT9DRwt85vaR2BRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.43.34.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:cb:f5:07:66:c4:d5:14:45:60:49:70:ae:b9:cb:0d:f5:81:
a1:e5:1f:7c:f0:7f:13:75:69:bc:4a:3d:ec:4a:32:65:cd:a6:
ff:a0:47:52:a0:eb:35:ce:40:97:76:72:b6:6d:9f:18:d3:8f:
3c:10:97:42:c1:46:30:68:22:83:7f:8c:40:30:80:df:b4:90:
de:df:0d:b3:65:4d:0b:4d:2e:4d:87:16:8a:5e:22:c5:a9:b6:
d7:19:b1:b7:24:0f:bd:0d:b3:64:7c:cd:a9:15:90:cd:00:6c:
b1:f4:91:f3:31:fa:ed:b4:37:e8:72:79:5b:7d:8a:9f:d5:92:
66:42:4b:69:3b:40:5c:6f:e5:69:8a:d9:ca:28:8d:bc:56:eb:
47:5f:95:3b:b6:6f:72:af:8e:4a:eb:e2:bf:ea:d5:a3:b9:98:
ad:a9:75:af:42:5f:cc:a0:44:31:eb:42:68:5b:66:7a:a6:cf:
8b:a7:d0:a6:bb:87:ce:6f:04:70:f6:2d:63:aa:03:52:f2:4a:
3e:82:28:41:4a:4d:49:5a:68:4d:d4:cc:b2:0d:95:bd:a8:ad:
5c:6a:52:2d:5c:9a:8c:14:56:5e:30:09:68:63:e9:1b:34:64:
2a:ae:15:52:e4:d8:40:eb:ee:d7:5e:eb:2d:38:33:95:30:b3:
28:4f:86:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:10:55 2024 by rpki-client on console-ams.rpki-client.org