Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/WK7FkwzUHu3_H2P9gLZGj7KHgcc.roa
File: WK7FkwzUHu3_H2P9gLZGj7KHgcc.roa (raw, json)
Hash identifier: Tj05TuepwIX28o/6ALtp5dzWr29JazhNoM01v8gmDaU=
Subject key identifier: 58:AE:C5:93:0C:D4:1E:ED:FF:1F:63:FD:80:B6:46:8F:B2:87:81:C7
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018CC8DFA1F10E683BE0FA9B51FF78B00A8E
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/WK7FkwzUHu3_H2P9gLZGj7KHgcc.roa
Signing time: Tue 02 Jan 2024 06:32:28 +0000
ROA not before: Tue 02 Jan 2024 06:32:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3223
IP address blocks: 85.92.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Apr 2024 12:18:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:a1:f1:0e:68:3b:e0:fa:9b:51:ff:78:b0:0a:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Jan 2 06:32:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=58aec5930cd41eedff1f63fd80b6468fb28781c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ad:37:eb:56:25:ec:e4:3e:92:ff:9e:f9:e4:
eb:d1:51:66:3a:51:3c:f9:9d:4e:38:7b:d3:02:4c:
71:5d:e2:d1:6f:92:f7:d7:7c:31:93:f0:6b:93:0d:
a1:32:77:3b:7d:8b:db:f1:39:5d:98:e2:98:64:5e:
2b:a8:0a:3a:1a:73:88:01:db:2b:3a:39:79:35:f3:
d9:ee:f4:24:22:e4:0b:a5:83:85:f1:35:f9:6e:b0:
66:1b:7f:f5:88:5f:53:dc:15:6b:b0:ac:88:30:8e:
70:e3:3b:73:8d:51:5e:69:b3:0d:ae:89:3a:7f:70:
fe:19:94:da:c7:9a:de:b3:40:2c:13:27:a4:ee:e7:
59:8d:bc:2e:98:6c:e0:89:ae:72:ad:c8:29:91:17:
02:6a:c8:95:8d:88:56:88:86:87:d4:63:89:ce:4d:
84:36:81:65:99:29:d4:e5:5a:9a:b6:e4:4a:26:31:
7d:6c:49:17:c3:f1:e8:39:0d:59:05:6c:88:56:58:
11:ec:9a:10:20:3f:52:d7:52:fa:da:c7:3a:d0:c2:
7d:cc:98:50:5f:0d:ae:8b:e2:07:78:da:01:1c:ad:
06:7a:be:ee:38:49:a5:52:18:35:9d:89:bb:f7:92:
18:fb:2f:d0:93:a2:4d:2d:24:d2:1a:d8:33:be:81:
23:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:AE:C5:93:0C:D4:1E:ED:FF:1F:63:FD:80:B6:46:8F:B2:87:81:C7
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/WK7FkwzUHu3_H2P9gLZGj7KHgcc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.92.115.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:27:73:a5:6e:d2:80:b8:fc:94:7a:f5:6a:1f:0f:06:d1:81:
d5:cf:d3:43:37:be:96:ae:7d:a1:3d:72:16:b2:ca:da:ee:7c:
78:1c:3b:ed:6e:77:e9:a5:1a:a0:2d:f6:81:fc:a2:fe:ac:9c:
83:c1:db:8a:35:66:70:1d:f6:10:dc:83:c4:11:41:90:4b:f6:
d5:f4:3e:58:5b:07:67:83:00:66:65:b1:18:17:6b:59:06:3a:
bf:24:07:a3:73:4a:08:c1:b8:de:65:74:4a:bc:55:77:85:a9:
87:8f:a1:32:b4:d7:f1:31:e1:1a:13:c4:6b:1c:5b:44:60:38:
28:92:62:74:42:48:a7:04:a7:ca:c1:27:9d:1e:d7:66:23:7e:
9f:d5:37:5b:20:2f:3e:39:94:04:65:30:fb:1d:80:48:34:ad:
56:93:11:d1:8f:87:f7:e8:d3:a8:44:ba:38:d8:36:c2:60:68:
ca:d2:ed:d8:3e:63:49:a6:c7:29:57:fa:2e:69:db:b7:b2:1b:
55:8c:dc:d7:31:02:dc:35:cc:20:67:ee:d1:39:a1:52:e8:48:
11:0e:12:26:fe:d8:f9:e4:0d:60:5f:f7:7c:a0:7e:69:d8:2e:
09:c9:29:2f:ee:7a:b7:94:59:02:6e:b9:ac:b1:1a:2e:0e:b9:
de:ec:ab:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 12 14:50:23 2024 by rpki-client on console-ams.rpki-client.org