Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/WM7B1w87nOTh_2LIoixIVfHLk9Y.roa
File: WM7B1w87nOTh_2LIoixIVfHLk9Y.roa (raw, json)
Hash identifier: ngh+8IlbgTMe5Nf86m6Q5AlvRThRqQywSGjuJH2LLOo=
Subject key identifier: 58:CE:C1:D7:0F:3B:9C:E4:E1:FF:62:C8:A2:2C:48:55:F1:CB:93:D6
Certificate issuer: /CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2
Certificate serial: 018CA6F53A60135659DE77B1F90EF4BCD7B9
Authority key identifier: AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/WM7B1w87nOTh_2LIoixIVfHLk9Y.roa
Signing time: Tue 26 Dec 2023 16:28:58 +0000
ROA not before: Tue 26 Dec 2023 16:28:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207369
IP address blocks: 45.140.26.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a6:f5:3a:60:13:56:59:de:77:b1:f9:0e:f4:bc:d7:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2
Validity
Not Before: Dec 26 16:28:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58cec1d70f3b9ce4e1ff62c8a22c4855f1cb93d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7c:b9:e9:0f:4e:f1:4a:d1:a6:63:70:ed:53:
cb:35:78:38:b2:ff:30:d2:e0:1f:d1:70:47:17:0f:
c9:e5:af:b8:ad:fc:36:0c:fa:c8:90:d6:47:b4:bd:
7f:64:f8:94:51:4c:39:8a:2b:45:b4:79:ea:34:fa:
d2:89:11:6c:67:27:3f:42:39:29:58:7b:72:bf:9f:
60:12:cc:e0:e8:62:8f:15:79:56:0c:87:ab:ab:b8:
62:38:1b:28:ee:72:53:c5:19:f4:e7:9f:a6:f0:d3:
05:31:8a:9f:41:a2:36:4c:d4:c9:34:5f:e1:f4:05:
3f:c6:1e:9e:bd:a1:ca:a1:7c:20:e2:a8:25:c8:81:
48:14:4a:20:fe:60:de:be:e1:71:e0:eb:7c:c0:5d:
88:14:fc:83:8f:81:51:c5:6d:70:d9:b6:e9:96:59:
c8:92:e7:2f:0d:fa:df:88:17:74:c6:b6:f9:03:15:
ae:5e:76:10:4e:d0:0e:e0:dc:51:a9:f0:28:13:7a:
27:4c:13:86:90:16:5a:c1:b6:d7:99:53:59:54:f4:
d9:84:d2:27:75:be:ec:a8:8f:62:1f:f6:23:66:b8:
01:3b:23:c4:7f:68:c0:68:45:d7:d7:f4:7d:8a:6a:
2b:d2:7e:1c:f7:69:53:e8:6c:af:da:75:14:44:ce:
41:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:CE:C1:D7:0F:3B:9C:E4:E1:FF:62:C8:A2:2C:48:55:F1:CB:93:D6
X509v3 Authority Key Identifier:
keyid:AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/WM7B1w87nOTh_2LIoixIVfHLk9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/r16T-QI1TOSAS0ywSc9osg92rrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.26.0/23
Signature Algorithm: sha256WithRSAEncryption
04:dd:5d:84:85:fe:ea:58:c8:01:d5:6c:50:cc:e7:01:2e:7c:
74:28:6a:12:4f:9f:56:04:e3:f0:41:c1:69:44:e6:e0:51:7a:
c7:92:c5:d9:76:9d:9d:1a:65:fa:90:17:d1:62:a2:92:f0:d7:
4b:cd:95:51:6e:46:12:4d:f8:8f:3c:62:58:64:7f:8a:f0:de:
a4:61:e3:62:db:7f:0a:50:81:51:23:bc:2e:ff:a8:d6:4f:97:
ca:f6:2c:22:a9:8b:be:bb:e4:a9:42:70:99:bf:53:93:05:b0:
3c:7d:7d:9d:7b:f0:fd:73:19:cb:53:ad:76:d7:fd:6d:84:15:
12:81:b3:7a:98:43:93:7d:13:d1:f6:16:71:32:37:8b:4c:de:
e9:fe:fc:fb:f3:ea:c8:d9:12:7b:3c:24:34:95:d6:32:cc:46:
8c:06:8f:c5:23:56:a0:b5:95:32:9b:82:9c:8f:0d:25:ef:31:
32:38:4f:f2:9e:fd:e5:d8:a0:a7:15:a5:38:e8:02:af:e2:bf:
eb:5b:5f:8e:74:17:11:fd:ad:00:80:73:36:14:72:cd:ca:8e:
4a:3f:18:9a:3b:62:fc:06:44:15:6a:37:f3:cc:12:cd:1f:db:
9b:1c:b0:27:6b:5a:48:eb:01:e5:c0:19:9a:8b:f9:dc:fe:87:
b2:cd:0b:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:30 2024 by rpki-client on console-ams.rpki-client.org