Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/89962e-b11c-4e69-b413-ab63d45f4b6a/1/wyC4pkuORbqv_ozvSAx2sJsda1M.roa
File: wyC4pkuORbqv_ozvSAx2sJsda1M.roa (raw, json)
Hash identifier: Z/TcLuTI9qvfWenrWcfD1ndda1bQmC0yYi9j5lgnC9Q=
Subject key identifier: C3:20:B8:A6:4B:8E:45:BA:AF:FE:8C:EF:48:0C:76:B0:9B:1D:6B:53
Certificate issuer: /CN=4f9131775b3260b11a16240d1d8e76891d7f3732
Certificate serial: 01856FB11ACE2C3E2E08B00798DA09BDE495
Authority key identifier: 4F:91:31:77:5B:32:60:B1:1A:16:24:0D:1D:8E:76:89:1D:7F:37:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5Exd1syYLEaFiQNHY52iR1_NzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/89962e-b11c-4e69-b413-ab63d45f4b6a/1/wyC4pkuORbqv_ozvSAx2sJsda1M.roa
Signing time: Sun 01 Jan 2023 23:35:55 +0000
ROA not before: Sun 01 Jan 2023 23:35:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16276
IP address blocks: 198.49.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Sep 2023 22:04:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:b1:1a:ce:2c:3e:2e:08:b0:07:98:da:09:bd:e4:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9131775b3260b11a16240d1d8e76891d7f3732
Validity
Not Before: Jan 1 23:35:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c320b8a64b8e45baaffe8cef480c76b09b1d6b53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:bd:df:4e:a9:53:3c:9d:d2:5c:e2:db:c1:dd:
7b:a1:3c:82:8e:b8:82:b8:07:17:75:f0:13:cf:df:
80:02:6b:9a:36:ea:a1:d9:53:bf:83:ae:ba:e6:5a:
75:0a:0c:8f:ac:c4:92:de:e1:0d:f7:06:f6:2c:9b:
f9:e3:53:66:50:d4:ab:e4:ac:74:4e:06:bd:be:21:
cd:8d:f0:f7:78:22:fb:fb:1d:b5:9a:be:27:ee:44:
ba:07:0d:be:b8:dd:f4:e2:b7:f8:aa:0b:4f:87:c9:
40:e6:f0:7f:1a:c5:0c:7a:32:0f:d9:86:d3:a2:8f:
01:4d:0c:28:eb:fd:8a:2c:84:05:13:a4:33:f4:6e:
8d:4c:79:61:99:7b:3d:4f:82:98:45:38:d6:d3:4b:
f2:70:6a:40:19:16:eb:cb:60:88:20:ba:dc:bc:18:
ee:45:66:2e:fe:aa:6b:08:84:c9:91:8b:df:aa:b9:
31:8a:85:3d:f9:1d:0b:d1:54:42:6c:72:37:41:ed:
c4:39:23:ae:e3:8d:80:54:24:55:a8:fd:14:91:f3:
56:b8:ca:9d:72:63:98:b8:37:bf:a4:40:f4:81:d3:
a2:fc:cd:96:2c:f7:41:c0:7c:87:f1:93:53:18:a0:
2d:45:1f:55:7e:ac:c6:ff:eb:07:44:90:87:5e:b9:
57:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:20:B8:A6:4B:8E:45:BA:AF:FE:8C:EF:48:0C:76:B0:9B:1D:6B:53
X509v3 Authority Key Identifier:
keyid:4F:91:31:77:5B:32:60:B1:1A:16:24:0D:1D:8E:76:89:1D:7F:37:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5Exd1syYLEaFiQNHY52iR1_NzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/89962e-b11c-4e69-b413-ab63d45f4b6a/1/wyC4pkuORbqv_ozvSAx2sJsda1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/89962e-b11c-4e69-b413-ab63d45f4b6a/1/T5Exd1syYLEaFiQNHY52iR1_NzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
198.49.103.0/24
Signature Algorithm: sha256WithRSAEncryption
dd:f2:42:fc:b9:73:a4:49:ce:dd:9f:92:9e:67:7b:30:7d:19:
96:4a:07:df:49:f9:2d:6f:70:9e:58:f0:35:af:d0:a1:1a:ad:
e6:11:4a:48:52:f1:45:98:bc:ac:ea:81:39:a8:38:71:8d:7d:
1c:1a:ed:aa:52:6c:13:19:d5:71:f9:0c:8e:6b:1c:d7:ec:ba:
e6:e8:57:93:b8:6f:93:ec:53:d5:d5:52:6e:f7:06:51:31:99:
59:4a:c4:ec:9f:57:9f:a5:67:30:e6:61:3a:78:13:04:4c:6f:
81:a9:9c:a5:68:dc:c6:3e:2b:cb:76:20:e5:24:71:b7:82:14:
2f:d4:d7:dc:2b:67:b8:36:89:21:5e:27:cb:92:d8:0d:cd:98:
ac:95:b9:1e:19:8e:0c:31:40:4b:71:1b:9e:f6:bf:8d:84:a0:
cc:0b:32:9f:57:ab:59:ef:a3:5c:13:f2:26:76:2a:0f:e2:c3:
6e:76:c5:2c:3a:eb:65:a8:28:03:52:c3:ba:a3:f1:db:08:13:
b6:ec:b5:00:d0:c5:07:4b:ff:06:a3:36:ec:23:b2:b7:6b:7a:
44:17:dd:f4:e5:6f:7b:0d:4b:6b:42:39:e5:6a:c8:45:d7:fd:
95:ca:db:91:89:50:8f:38:cd:6f:3f:f2:23:6d:bf:bf:6f:7a:
3c:f7:c7:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:08 2024 by rpki-client on console-ams.rpki-client.org