Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/WiWJ5Y0TArP4Ykoe6jvXFZDgWwM.roa
File: WiWJ5Y0TArP4Ykoe6jvXFZDgWwM.roa (raw, json)
Hash identifier: GzJO4+CblCxNZG/PWj1UaEEZTfej2z+AboAn7JRhLv4=
Subject key identifier: 5A:25:89:E5:8D:13:02:B3:F8:62:4A:1E:EA:3B:D7:15:90:E0:5B:03
Certificate issuer: /CN=ddbe6e0adae8bb478393aab175b638644c74ccb7
Certificate serial: 018571953BEB59EF5602904D6B719097CF5A
Authority key identifier: DD:BE:6E:0A:DA:E8:BB:47:83:93:AA:B1:75:B6:38:64:4C:74:CC:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3b5uCtrou0eDk6qxdbY4ZEx0zLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/WiWJ5Y0TArP4Ykoe6jvXFZDgWwM.roa
Signing time: Mon 02 Jan 2023 08:24:43 +0000
ROA not before: Mon 02 Jan 2023 08:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204229
IP address blocks: 178.212.60.0/22 maxlen: 22
185.191.60.0/23 maxlen: 23
185.191.62.0/23 maxlen: 23
185.241.118.0/23 maxlen: 23
185.241.116.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:3b:eb:59:ef:56:02:90:4d:6b:71:90:97:cf:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddbe6e0adae8bb478393aab175b638644c74ccb7
Validity
Not Before: Jan 2 08:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a2589e58d1302b3f8624a1eea3bd71590e05b03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c6:28:9e:64:bf:a2:72:78:70:4c:93:4e:35:
63:48:fd:b2:bf:5c:1c:02:d2:dd:36:c1:c4:ac:8f:
77:06:b6:5d:f8:cd:57:32:64:e3:27:f6:3e:3d:f4:
63:19:f2:26:6e:d3:54:37:b1:9f:bd:30:81:42:ba:
e2:ad:3c:e1:b3:c3:d5:2f:f7:34:44:f0:32:70:08:
e6:a1:c1:fa:98:66:46:93:8b:5d:cd:5a:87:aa:d7:
b6:c1:ba:d5:d2:72:18:f8:2c:64:7f:fc:32:79:4e:
ae:d1:50:b4:7d:88:5d:ec:63:6d:b8:a3:5b:18:9b:
5e:14:9e:41:61:0a:a3:b6:27:2d:fc:e8:27:50:7c:
fc:8c:e5:4a:f8:b8:1b:5d:62:e8:71:a9:b6:21:64:
35:cd:34:25:dd:36:8d:6a:3e:c0:e4:8d:b9:02:51:
ff:b7:00:bf:d5:75:3f:21:68:f4:06:4d:4d:a8:96:
fa:5c:aa:30:e2:0a:1e:37:14:97:ea:e4:ef:d5:b1:
9c:ae:27:8d:1e:8c:1b:3f:00:fb:8f:41:f2:01:08:
c2:52:c3:38:f1:79:0e:71:1e:20:85:b5:35:b5:a6:
17:da:08:f9:a9:60:48:65:9c:62:e0:60:bf:81:12:
8a:3d:54:2e:5d:87:9f:c6:79:b2:48:84:32:ac:5b:
cf:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:25:89:E5:8D:13:02:B3:F8:62:4A:1E:EA:3B:D7:15:90:E0:5B:03
X509v3 Authority Key Identifier:
keyid:DD:BE:6E:0A:DA:E8:BB:47:83:93:AA:B1:75:B6:38:64:4C:74:CC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b5uCtrou0eDk6qxdbY4ZEx0zLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/WiWJ5Y0TArP4Ykoe6jvXFZDgWwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/3b5uCtrou0eDk6qxdbY4ZEx0zLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.212.60.0/22
185.191.60.0/22
185.241.116.0/22
Signature Algorithm: sha256WithRSAEncryption
37:dd:ae:d8:4e:04:c8:98:bb:55:05:5d:d4:47:4f:81:dc:6f:
5b:21:f9:e5:bc:0d:65:39:1b:c4:d6:59:6f:4c:26:a2:91:dd:
35:62:ed:28:76:d6:df:39:e1:d4:a9:47:db:1f:d4:fd:54:02:
5f:82:ea:c6:c9:10:90:fc:ec:b1:23:bc:f0:5e:33:23:38:ba:
c1:29:d0:7a:c7:49:71:49:43:11:08:c8:99:e7:a1:78:90:17:
db:13:e7:99:e3:08:04:bf:c5:76:74:87:30:3c:bb:90:ec:14:
ed:e2:83:69:84:d3:f5:80:b9:1f:f4:c2:eb:95:ad:75:69:b5:
3e:66:23:00:ae:92:1d:a9:f9:8f:25:22:40:3f:36:9c:65:48:
e9:1b:64:45:eb:9e:f8:c2:ce:45:95:33:35:1f:07:91:05:10:
86:47:b8:ac:e3:93:4b:44:dd:67:dd:0e:8a:91:e9:50:e0:81:
bc:e9:8e:d5:11:53:16:e3:4f:48:2d:e9:09:fa:6c:b6:34:0d:
12:11:55:93:a0:57:6e:a8:06:3c:30:48:1c:28:1e:95:b9:5f:
af:57:b5:99:cf:65:81:60:4e:25:f2:06:2f:72:0e:72:a9:78:
45:d1:5d:cd:42:ae:c5:68:9e:f1:48:fe:f6:61:ba:8d:df:0d:
2e:2c:6e:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:00 2024 by rpki-client on console-ams.rpki-client.org