Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/e5a2c7-0453-48ba-b10c-0ba9679de2e6/1/WSzXJxZgxuBYWDE8J_vgpKOt1YY.roa
File: WSzXJxZgxuBYWDE8J_vgpKOt1YY.roa (raw, json)
Hash identifier: NuIxm/6kvWpCCj+qHOQBrRV0eW5gY3Jeo90HvuReGXs=
Subject key identifier: 59:2C:D7:27:16:60:C6:E0:58:58:31:3C:27:FB:E0:A4:A3:AD:D5:86
Certificate issuer: /CN=5fc24743304b7fd9a065d22cd89cda95045e269c
Certificate serial: 01856ED4C2ABB06921B3A1CDBAA4D4B168E5
Authority key identifier: 5F:C2:47:43:30:4B:7F:D9:A0:65:D2:2C:D8:9C:DA:95:04:5E:26:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X8JHQzBLf9mgZdIs2JzalQReJpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/e5a2c7-0453-48ba-b10c-0ba9679de2e6/1/WSzXJxZgxuBYWDE8J_vgpKOt1YY.roa
Signing time: Sun 01 Jan 2023 19:35:15 +0000
ROA not before: Sun 01 Jan 2023 19:35:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201659
IP address blocks: 185.61.160.0/22 maxlen: 22
2a02:7ae0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:c2:ab:b0:69:21:b3:a1:cd:ba:a4:d4:b1:68:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fc24743304b7fd9a065d22cd89cda95045e269c
Validity
Not Before: Jan 1 19:35:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=592cd7271660c6e05858313c27fbe0a4a3add586
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:08:86:26:82:d1:67:76:82:cd:99:9c:5b:bc:
d2:e1:bd:9c:08:3c:8e:90:9c:13:8b:2a:50:00:1e:
d0:6c:af:74:74:1f:fe:17:99:e5:c9:78:d2:c9:31:
53:f0:29:a3:f0:c4:ed:b6:bc:06:d7:2b:25:db:d9:
a3:57:7b:92:53:7a:cd:04:ce:f1:1d:00:d0:93:5c:
1a:00:92:4f:32:9e:e8:8b:e2:90:cd:59:0b:ac:f9:
a5:3b:c5:b5:4b:83:55:a8:74:4c:82:56:17:ca:b2:
9e:bc:a5:f7:a0:2b:28:a8:53:28:e7:6d:76:47:bc:
ec:b2:9c:91:1b:4c:a3:26:3f:74:59:ac:4b:cd:e8:
66:6f:61:f8:fb:2d:ee:7a:ea:5b:02:c4:79:dd:f0:
9e:e6:0f:1f:e9:40:c7:68:f3:67:e4:e2:41:f6:75:
07:c2:d1:10:fc:bb:f6:ff:b6:01:e1:f2:83:09:00:
1d:d2:bf:64:0b:1f:eb:5d:62:d7:ad:9f:8b:fb:6c:
c5:34:b5:4b:47:35:7a:7d:65:56:62:91:af:6e:92:
07:10:2f:28:58:64:dc:b0:61:eb:62:96:11:d4:f0:
db:79:c5:72:36:cd:4f:4e:cc:eb:cb:7f:b9:97:43:
82:66:f8:ee:0d:b2:ae:22:75:84:79:63:2c:95:f7:
8b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:2C:D7:27:16:60:C6:E0:58:58:31:3C:27:FB:E0:A4:A3:AD:D5:86
X509v3 Authority Key Identifier:
keyid:5F:C2:47:43:30:4B:7F:D9:A0:65:D2:2C:D8:9C:DA:95:04:5E:26:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X8JHQzBLf9mgZdIs2JzalQReJpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/e5a2c7-0453-48ba-b10c-0ba9679de2e6/1/WSzXJxZgxuBYWDE8J_vgpKOt1YY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/e5a2c7-0453-48ba-b10c-0ba9679de2e6/1/X8JHQzBLf9mgZdIs2JzalQReJpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.61.160.0/22
IPv6:
2a02:7ae0::/32
Signature Algorithm: sha256WithRSAEncryption
41:86:1c:52:5f:8c:8e:e5:c6:03:8e:07:e1:9b:40:87:ea:dc:
08:14:6d:a8:f6:00:a2:ba:27:64:52:0f:6d:08:29:d9:b0:55:
11:05:b3:31:1c:ce:e5:3e:1b:a1:72:bd:14:56:9f:01:b2:d7:
9b:9c:eb:03:e6:a2:78:77:d6:3b:7b:3a:ed:a3:0c:bd:46:18:
12:76:e8:9d:18:db:15:15:a9:92:d7:76:ef:ea:a7:5e:b5:f2:
19:35:92:6d:33:c8:ca:5b:aa:1a:62:20:79:ab:45:aa:6f:cd:
f0:a7:92:a3:ad:ca:43:c0:35:f5:59:31:7f:75:d2:ad:00:d5:
34:34:9b:3a:b1:cc:3e:97:f6:00:29:00:6c:e4:dd:88:1d:56:
86:4a:f2:65:5a:7a:6e:9a:27:62:b9:9c:11:af:eb:5a:3d:27:
90:9b:3f:26:cb:58:5c:25:6c:31:a8:27:0a:99:7c:1e:32:4c:
f1:b2:98:85:cc:db:b7:b5:18:96:d9:d9:a2:b5:1b:e5:7b:95:
c0:1b:e2:2c:33:cd:2d:1e:c8:da:c0:c0:45:56:fd:b6:db:8c:
ed:ef:66:7f:ea:20:49:88:ee:bb:7a:04:59:67:83:d6:c2:7d:
0d:15:59:5a:54:39:bf:22:4d:ae:91:0c:96:4f:78:e0:39:be:
9e:74:d1:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:12 2024 by rpki-client on console-ams.rpki-client.org