Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/WW9wcz7Wbkoddw8WhM-smYKS8xA.roa
File: WW9wcz7Wbkoddw8WhM-smYKS8xA.roa (raw, json)
Hash identifier: Bi06bp6zWyZMLXrr55+ckHIcMtRQGxao75bgUQOL+og=
Subject key identifier: 59:6F:70:73:3E:D6:6E:4A:1D:77:0F:16:84:CF:AC:99:82:92:F3:10
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 01864C885F0F9CDF8A19573C24F8F7F44BCA
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/WW9wcz7Wbkoddw8WhM-smYKS8xA.roa
Signing time: Mon 13 Feb 2023 20:47:30 +0000
ROA not before: Mon 13 Feb 2023 20:47:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33387
IP address blocks: 194.28.128.0/24 maxlen: 24
188.255.134.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4c:88:5f:0f:9c:df:8a:19:57:3c:24:f8:f7:f4:4b:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Feb 13 20:47:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=596f70733ed66e4a1d770f1684cfac998292f310
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8c:5b:0a:f2:0b:8c:ec:41:13:3f:30:b3:b3:
4a:0d:2d:b4:90:79:7f:eb:84:62:bf:73:b4:ad:a2:
58:b0:7c:a4:6e:37:16:cd:30:91:5e:4b:cd:d0:87:
3d:19:7b:c0:ec:f1:2f:b8:a0:73:16:a9:c0:87:f9:
a1:7a:d0:96:03:0a:4b:48:1e:a4:0f:c9:35:f8:58:
15:06:ec:bf:5e:3f:d2:10:9c:ff:d3:ee:44:7b:92:
d4:70:52:b3:98:b5:d8:bf:12:f6:dd:fc:1f:5d:1d:
6d:64:28:a7:bc:66:9e:54:5e:a7:e1:ee:1d:7e:aa:
d0:25:fa:29:eb:f0:16:24:28:7b:b6:7f:b8:5f:d2:
ac:60:c6:8e:e2:b9:b6:06:dd:59:ff:f3:bc:ef:43:
2f:c5:34:8c:a6:07:c0:d5:c7:98:f8:60:c9:c7:38:
4d:84:9f:ec:08:29:ea:a7:01:08:60:cb:fe:70:57:
90:f1:86:60:70:f0:c0:15:62:26:9c:30:b5:ec:60:
4e:6f:b9:22:11:61:fd:b9:59:01:d1:cb:ce:50:9d:
87:7f:ae:8a:06:15:a4:51:e5:bf:ae:9f:46:d5:9c:
94:5e:cc:ff:e7:48:18:8e:90:c7:75:a7:88:e9:66:
28:8e:0b:91:48:89:6a:51:28:93:3f:18:ea:62:b9:
63:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:6F:70:73:3E:D6:6E:4A:1D:77:0F:16:84:CF:AC:99:82:92:F3:10
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/WW9wcz7Wbkoddw8WhM-smYKS8xA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.255.134.0/24
194.28.128.0/24
Signature Algorithm: sha256WithRSAEncryption
85:4e:43:df:71:64:a8:f9:c0:72:a2:e0:92:60:25:d3:3f:86:
2a:01:42:72:c1:f5:33:60:b6:b6:fd:ce:95:81:33:18:6e:cb:
db:bd:61:3f:f0:03:26:7e:aa:98:89:3d:70:60:f1:1b:0d:f0:
aa:4f:02:6d:06:91:72:fa:76:45:c3:7d:c0:81:26:be:5e:34:
74:31:31:8c:10:a6:b0:b9:41:74:e5:9f:f7:eb:83:06:66:bd:
a4:b9:02:60:66:ba:4f:29:45:1d:22:cb:64:f8:a2:a1:76:1e:
7c:4f:c8:32:1d:1c:d1:7d:0e:87:4c:5c:aa:8a:c7:49:a2:26:
69:55:a4:f6:b8:ba:18:18:6e:05:cb:72:bf:b0:54:87:c6:61:
4b:00:ae:6e:f9:64:b3:d7:6d:c5:ab:ef:e1:0f:e4:8d:fe:3d:
51:45:c0:d5:26:50:6e:5f:fa:e7:62:0b:95:49:a7:48:7a:6c:
e5:5e:3e:9d:83:21:52:e9:27:8c:ca:a1:d9:65:20:5c:97:ff:
16:4f:99:d5:b4:7c:db:52:6b:65:28:1c:99:59:36:fb:7f:f3:
b4:22:9a:f0:a5:83:e7:d6:5c:83:8b:da:0c:b6:43:26:2d:c0:
e0:49:da:1d:20:5f:9e:00:a9:fc:3d:3a:fc:94:59:12:b2:01:
d9:a1:e2:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:19 2023 by rpki-client on console-ams.rpki-client.org