Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/WkDLG8C3h-3I9a4sP4IG3TKmqtc.roa
File: WkDLG8C3h-3I9a4sP4IG3TKmqtc.roa (raw, json)
Hash identifier: aWPJFVb5XuqSNiCFSAiAABmLl/v0qBFX7UkV8sBlHcM=
Subject key identifier: 5A:40:CB:1B:C0:B7:87:ED:C8:F5:AE:2C:3F:82:06:DD:32:A6:AA:D7
Certificate issuer: /CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Certificate serial: 01887DA56778A59C2E884F07768C316BF6C6
Authority key identifier: 3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/WkDLG8C3h-3I9a4sP4IG3TKmqtc.roa
Signing time: Fri 02 Jun 2023 19:46:11 +0000
ROA not before: Fri 02 Jun 2023 19:46:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.147.117.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:7d:a5:67:78:a5:9c:2e:88:4f:07:76:8c:31:6b:f6:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Validity
Not Before: Jun 2 19:46:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a40cb1bc0b787edc8f5ae2c3f8206dd32a6aad7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:74:aa:4b:d5:20:2f:bb:7f:df:52:1a:b4:92:
f8:8f:81:eb:6b:49:1b:04:cc:8b:c6:db:ba:e5:8b:
45:86:bf:ca:4f:88:91:46:18:2f:79:6d:81:64:63:
6e:9f:cb:6a:92:f5:b3:00:ca:7d:d5:fb:29:f8:dc:
12:f0:79:3a:75:db:cd:e0:1d:69:41:73:ea:c3:3f:
b2:78:de:a4:0b:fa:16:a2:d6:d2:d4:b9:2d:bb:66:
c2:c3:9a:0e:50:6f:03:0d:67:86:ef:bd:dc:0f:24:
87:25:f5:80:97:85:3c:69:1e:30:8b:be:ea:1e:44:
dc:41:cd:2e:4b:f4:21:fc:3f:8b:e1:37:8f:28:5e:
cc:86:fd:9b:6a:df:9f:78:67:04:1d:d0:53:aa:19:
59:2c:15:2f:04:ab:04:d7:e9:69:d6:86:ad:b0:92:
f6:5c:91:17:4a:11:66:0a:22:10:dc:a0:4c:ec:1a:
77:9a:b4:6a:98:b9:7b:32:57:d8:f4:8d:63:e7:bb:
1f:b6:e9:78:28:b2:ec:55:c2:f0:54:8f:ac:ea:33:
3f:8e:59:e1:0c:40:f5:bb:f1:83:04:ca:6d:d6:2d:
55:0f:c4:b9:48:00:f5:22:2c:8b:a2:97:f7:7c:60:
13:f6:fe:27:87:a3:cf:dc:3e:67:a0:66:bf:50:4e:
21:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:40:CB:1B:C0:B7:87:ED:C8:F5:AE:2C:3F:82:06:DD:32:A6:AA:D7
X509v3 Authority Key Identifier:
keyid:3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/WkDLG8C3h-3I9a4sP4IG3TKmqtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.147.117.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:d1:3a:16:62:45:99:cf:a3:a5:ff:ec:7a:fb:dd:dd:63:d4:
89:53:a9:70:cd:3e:bb:d9:85:60:fb:56:d2:9f:f0:8a:96:88:
f7:17:c7:b1:a6:5c:32:24:47:35:f8:71:b3:df:94:2b:29:3f:
21:b3:1c:c5:12:f6:a3:c6:4f:4c:df:5c:47:31:fd:0b:98:ac:
41:ff:04:5b:25:a7:aa:55:f7:a5:9a:36:0a:87:a6:ed:48:f8:
d2:d6:a2:14:50:af:cc:1a:96:db:35:25:94:2a:7c:8a:bb:e5:
14:d2:2c:2e:02:2c:9f:33:03:37:20:33:cc:7b:00:37:58:38:
66:ea:c7:6a:aa:38:a3:99:49:82:f2:3f:10:d0:24:e3:a2:f6:
6c:f8:fd:3d:5c:95:62:29:c1:b6:97:be:7c:7b:de:a5:87:07:
de:e8:1d:fc:81:a1:68:23:95:7b:71:a4:f6:e9:c1:f2:4f:a0:
9e:6b:2a:64:0e:87:16:7f:e5:d4:74:a1:3d:0c:03:3f:a5:f8:
a6:4f:c9:ed:47:a7:cf:53:c0:9d:1e:19:25:b4:4c:38:c7:01:
aa:e8:05:e5:05:4c:74:d4:4e:a9:19:47:0a:b0:c6:4f:56:cf:
03:da:a7:83:5b:e9:d5:fb:bf:aa:f7:09:d0:a1:b7:e5:73:39:
97:79:7d:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:09 2023 by rpki-client on console-fra.rpki-client.org