Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/wfSwGlF1t0vkpQv0EPvwXGyDpCs.roa
File: wfSwGlF1t0vkpQv0EPvwXGyDpCs.roa (raw, json)
Hash identifier: ySHdsK05XjauvtRyoisCeawdfQMDDvgbuRSQl1w8ubU=
Subject key identifier: C1:F4:B0:1A:51:75:B7:4B:E4:A5:0B:F4:10:FB:F0:5C:6C:83:A4:2B
Certificate issuer: /CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Certificate serial: 01856ED4CF459690BEDED0267E9ED28875B4
Authority key identifier: D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/wfSwGlF1t0vkpQv0EPvwXGyDpCs.roa
Signing time: Sun 01 Jan 2023 19:35:18 +0000
ROA not before: Sun 01 Jan 2023 19:35:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211289
IP address blocks: 5.181.52.0/24 maxlen: 24
2a05:3440::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:cf:45:96:90:be:de:d0:26:7e:9e:d2:88:75:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Validity
Not Before: Jan 1 19:35:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c1f4b01a5175b74be4a50bf410fbf05c6c83a42b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:4f:60:09:ca:4c:fe:d8:32:dd:55:08:e2:2f:
37:18:ba:4c:9c:65:21:5b:84:68:08:83:e2:85:a1:
1d:36:1a:f4:a8:f8:85:83:4b:b0:02:f2:8e:96:86:
fb:6f:9b:0c:92:0c:b7:74:78:6c:b5:c9:bf:4e:60:
f2:14:61:44:81:56:2b:57:be:f4:bb:ce:e0:1f:e3:
9a:0f:78:8e:91:d1:8d:b0:c7:85:d5:01:eb:d9:4c:
26:93:95:2e:36:ec:c4:78:e0:3c:34:ac:c1:a5:3a:
f3:73:bd:00:e3:ca:b7:66:74:33:c0:47:6b:bc:84:
5b:8f:78:7a:08:d7:93:d7:ad:f4:ed:50:a6:e8:7a:
e2:81:5c:a0:62:32:81:66:b7:d9:7a:b9:88:3f:6d:
44:5d:69:a1:34:7c:2f:a8:18:12:67:56:c1:59:1b:
94:06:7e:c8:72:e3:2e:9f:86:23:c4:fc:35:7d:c0:
0f:d9:2f:48:ed:ea:95:97:0b:bd:59:be:90:bf:98:
9f:a0:41:d2:bc:08:6b:73:81:a0:19:34:64:53:86:
42:ae:38:b2:57:a7:c6:a9:3a:b4:b4:4f:95:94:5a:
2f:e9:ca:55:cd:f6:a8:ca:17:9a:05:15:7b:76:26:
31:67:36:73:51:0b:cf:ba:cf:c1:3e:66:73:07:54:
87:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:F4:B0:1A:51:75:B7:4B:E4:A5:0B:F4:10:FB:F0:5C:6C:83:A4:2B
X509v3 Authority Key Identifier:
keyid:D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/wfSwGlF1t0vkpQv0EPvwXGyDpCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.52.0/24
IPv6:
2a05:3440::/29
Signature Algorithm: sha256WithRSAEncryption
81:37:db:be:40:29:01:5c:4c:06:f0:8f:6f:52:3f:2a:65:e3:
01:47:6e:59:08:fa:38:23:85:69:2f:1f:72:7e:15:63:1e:77:
f3:a7:b5:d9:5f:50:70:42:4c:99:0a:01:36:1a:98:e1:8d:55:
a2:22:04:57:ad:6b:ba:59:be:75:e6:6f:a4:e5:74:38:42:b6:
05:fc:61:19:c1:15:ac:6c:4a:b3:93:bd:4c:5a:aa:f2:e2:ed:
fe:07:c1:e3:02:7a:d6:f7:7e:0c:c8:3c:9e:44:47:e7:7f:cf:
ce:83:44:13:33:76:70:27:10:f2:2a:e1:75:b2:ce:9b:ba:b5:
80:48:c9:e7:8a:73:ae:4b:3e:f3:7e:33:ac:a2:a3:5b:55:b2:
5b:c7:48:d7:0d:fc:c9:b4:9f:95:ec:e7:28:cc:83:93:18:93:
d0:9f:94:9f:e1:ca:b9:6e:d7:d7:7e:bb:cd:25:6f:a2:45:0a:
41:28:c7:42:ec:b4:03:34:75:41:16:83:a5:14:87:fd:c4:23:
78:95:70:b6:fd:b7:56:14:da:3b:0d:cd:e6:ed:1d:18:31:2e:
5a:d4:b4:1f:7c:2d:51:0a:1b:92:c3:1f:ae:86:f6:a2:7d:ad:
a6:b1:8b:b5:9c:45:7f:eb:0c:ab:50:c9:a3:ff:b2:e2:e4:0b:
e1:fd:b7:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:42 2024 by rpki-client on console-fra.rpki-client.org