Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/WIKxmy0o-N-FhuM9KRV3dPNxO3A.roa
File: WIKxmy0o-N-FhuM9KRV3dPNxO3A.roa (raw, json)
Hash identifier: gvX+30O5KpNrObJ4Iq6xNv2t+bmgLBC1e/EyXO7nXOg=
Subject key identifier: 58:82:B1:9B:2D:28:F8:DF:85:86:E3:3D:29:15:77:74:F3:71:3B:70
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 018B375126C8C48F716084E4CF362EFEDFF8
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/WIKxmy0o-N-FhuM9KRV3dPNxO3A.roa
Signing time: Mon 16 Oct 2023 07:09:07 +0000
ROA not before: Mon 16 Oct 2023 07:09:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212369
IP address blocks: 193.35.154.0/24 maxlen: 24
193.223.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:37:51:26:c8:c4:8f:71:60:84:e4:cf:36:2e:fe:df:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Oct 16 07:09:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5882b19b2d28f8df8586e33d29157774f3713b70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:3c:57:8f:5b:02:0f:13:fe:4b:b5:d3:68:6a:
ca:a5:1e:06:df:3a:73:96:0d:cf:01:31:c5:18:9c:
09:c4:d8:fe:c8:86:a2:c2:49:80:7c:bc:03:37:55:
d5:f6:6e:7a:82:3b:c3:35:21:c7:f6:24:00:e9:17:
51:61:3b:c5:96:39:6e:90:d9:d7:bb:01:ad:af:f0:
7f:ed:b2:e3:f4:71:fc:d0:7b:ce:75:3f:a1:f0:f7:
69:6f:7b:97:39:19:74:fa:81:30:8f:3c:19:17:7a:
af:a6:29:31:2a:3f:fa:18:22:0c:85:03:dd:0d:d9:
ae:72:ce:9c:fb:57:c1:83:08:2a:0e:a3:cf:53:e3:
45:94:16:d4:1d:7f:2a:20:10:10:a1:11:e6:d9:b4:
8a:19:53:9f:6a:be:a3:4f:0a:f3:17:35:86:2c:a7:
d2:49:da:0f:ad:47:60:e5:17:a6:7a:55:8e:f6:13:
29:77:f8:df:81:60:b6:16:0e:96:3b:10:28:4c:a3:
03:49:d1:cc:a2:da:5d:9d:6a:4a:ee:6d:1f:ba:5f:
36:ac:fa:b5:38:4c:2d:a2:1e:e5:3e:9a:5a:f5:dd:
d6:48:fa:74:24:ce:73:b6:3f:0b:fe:09:c7:57:c2:
5c:87:64:32:60:82:86:9e:07:e4:c3:39:03:ea:0a:
6c:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:82:B1:9B:2D:28:F8:DF:85:86:E3:3D:29:15:77:74:F3:71:3B:70
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/WIKxmy0o-N-FhuM9KRV3dPNxO3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.35.154.0/24
193.223.107.0/24
Signature Algorithm: sha256WithRSAEncryption
22:9f:6c:fc:9b:6d:19:f0:d9:c4:98:92:39:6e:77:7d:f6:d9:
8e:48:3c:64:9d:8b:ed:8f:65:93:04:c1:5b:ee:1b:55:e4:f8:
84:86:5b:88:64:42:e0:32:8d:94:97:9b:2b:fe:48:ef:f5:1e:
51:f2:aa:c1:58:6b:f5:56:d7:8b:62:67:0e:3c:6a:c7:54:53:
c9:2d:1e:93:d3:3d:df:d8:d2:c8:70:b3:02:e4:bc:d8:3a:5b:
9f:35:d7:31:eb:8b:52:7b:fe:e4:77:8f:6c:2d:06:15:29:e1:
27:f8:b5:3e:d2:e6:40:93:61:3f:63:e3:9c:50:0c:79:47:0d:
5c:77:4d:76:a9:e8:25:d0:69:40:c7:db:c3:3c:37:08:1b:8d:
1a:d6:5c:1d:c3:df:85:f9:56:7b:c5:a9:5c:db:4f:60:db:03:
6f:5b:92:8e:4a:37:30:cc:0c:dc:b0:82:6c:02:c5:7e:19:c4:
87:33:1e:3c:52:0f:4d:99:75:c6:40:a8:76:a6:fb:05:b1:07:
0c:11:d3:5d:97:79:1d:78:c7:f3:89:c0:3b:b9:bb:b7:81:b9:
8b:fb:86:f0:82:2d:a0:c6:64:3b:1a:f1:3c:a3:9f:2d:ec:4f:
df:61:42:c6:93:dd:f3:d2:81:77:83:f7:d6:14:16:67:69:69:
1f:4e:02:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:49 2024 by rpki-client on console-fra.rpki-client.org