Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/wm5OhxSRCua-PmwjwKH3GBC0rno.roa
File: wm5OhxSRCua-PmwjwKH3GBC0rno.roa (raw, json)
Hash identifier: 0g9hNLCTXXVFVa3j4qljMWcu5VeGGNud+m8FHzkZGHU=
Subject key identifier: C2:6E:4E:87:14:91:0A:E6:BE:3E:6C:23:C0:A1:F7:18:10:B4:AE:7A
Certificate issuer: /CN=5f7da568ad027b9e249c13e223d322769881a29f
Certificate serial: 0185719E690484E0CDC6E3BDA30DA253785D
Authority key identifier: 5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/wm5OhxSRCua-PmwjwKH3GBC0rno.roa
Signing time: Mon 02 Jan 2023 08:34:45 +0000
ROA not before: Mon 02 Jan 2023 08:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42945
IP address blocks: 185.192.100.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:69:04:84:e0:cd:c6:e3:bd:a3:0d:a2:53:78:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f7da568ad027b9e249c13e223d322769881a29f
Validity
Not Before: Jan 2 08:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c26e4e8714910ae6be3e6c23c0a1f71810b4ae7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f4:bc:ea:ae:6e:48:d3:03:24:4c:9a:55:d3:
ea:a1:7c:70:ac:1d:15:35:a8:11:3c:27:29:ea:34:
2a:f7:e1:96:cc:ee:34:3c:b3:fe:ff:41:9f:aa:1a:
c5:f7:08:38:2b:e5:11:f3:80:0c:a0:56:be:73:19:
83:1f:ba:ab:22:3c:42:29:ae:1a:8d:98:10:5a:5e:
e1:37:da:28:90:58:6e:33:2c:f4:57:0c:fc:3c:7a:
a5:53:ab:40:13:fc:23:2f:03:a7:9e:64:78:52:81:
15:89:f4:04:cd:65:31:df:dc:03:fa:41:40:54:e2:
e1:ac:8e:65:ab:2a:1b:5c:11:5e:3c:d7:99:f6:ab:
50:29:53:1b:75:03:b9:74:63:28:60:e7:b1:99:a3:
4b:58:84:bd:3f:e8:7f:fa:03:a7:6d:68:d4:31:13:
b1:93:99:43:91:9b:cb:e3:34:a0:ba:73:66:c8:a3:
a5:52:e6:bf:9c:b4:45:08:28:12:4b:e5:c1:9c:50:
7c:15:be:a6:af:e9:6f:b6:2c:1e:7c:7b:62:06:5e:
78:4f:ee:b3:37:50:80:8c:2f:19:c5:e1:04:54:c4:
ea:ea:b2:4c:37:c6:81:81:b4:f4:a7:ff:e1:5b:e5:
41:72:cd:81:7e:28:fe:b9:ed:a8:52:bc:4b:99:99:
8a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:6E:4E:87:14:91:0A:E6:BE:3E:6C:23:C0:A1:F7:18:10:B4:AE:7A
X509v3 Authority Key Identifier:
keyid:5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/wm5OhxSRCua-PmwjwKH3GBC0rno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.100.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:29:fe:c8:b4:9c:e2:51:01:92:ef:50:8d:ef:c8:1d:92:db:
b6:d8:9c:90:3c:7e:83:a9:94:6f:e4:69:8b:96:a5:35:45:68:
16:12:66:c3:0e:dc:45:22:49:c5:8b:ea:c0:9e:f7:7d:93:65:
8b:fa:73:12:ac:1d:18:90:32:bd:2d:23:1b:9c:e0:10:6b:24:
3d:b7:81:3b:b2:f0:91:db:7c:ed:04:5b:31:0b:2a:22:39:ae:
15:73:20:9d:82:18:47:13:ba:3b:32:cf:3d:ed:88:ea:30:3d:
18:7a:01:5e:52:6f:2b:7f:4e:93:ec:f9:46:2f:55:e9:ec:05:
51:df:13:30:5e:1e:8c:67:d7:a8:f4:c2:0c:23:dc:5b:6c:43:
b6:d8:88:5e:0f:ba:f7:f2:46:d8:b3:e7:28:32:2b:b4:56:cd:
2d:5e:5e:6e:87:41:17:e0:80:10:25:09:a7:42:c5:a9:a3:a5:
01:d1:83:49:60:9d:89:9b:e5:c0:5c:51:07:12:48:50:dc:59:
59:6c:dc:61:1c:95:c0:30:00:9a:44:1b:e2:0b:eb:f1:d4:44:
b9:2e:ac:cc:88:b0:8a:ec:73:22:1c:6d:cf:95:10:a8:08:44:
47:3a:c6:c0:3d:1e:26:52:1e:8b:a2:e6:42:24:71:81:bc:04:
5b:e3:64:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:50 2024 by rpki-client on console-ams.rpki-client.org