Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/d62d22-82f2-4b20-bac4-601a725a00f5/1/wzGks-UJrUJxziLtLcZGsRhQwp4.roa
File: wzGks-UJrUJxziLtLcZGsRhQwp4.roa (raw, json)
Hash identifier: IUOaiY+He9bFaFajz4qKBggRAbgTrHHKqkHX42cfSxw=
Subject key identifier: C3:31:A4:B3:E5:09:AD:42:71:CE:22:ED:2D:C6:46:B1:18:50:C2:9E
Certificate issuer: /CN=e91f272b13c750143c7ec87e0c802aead8ac6e07
Certificate serial: 0185724C7D0C3322DE1E831C8E7CE9E5D03C
Authority key identifier: E9:1F:27:2B:13:C7:50:14:3C:7E:C8:7E:0C:80:2A:EA:D8:AC:6E:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6R8nKxPHUBQ8fsh-DIAq6tisbgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/d62d22-82f2-4b20-bac4-601a725a00f5/1/wzGks-UJrUJxziLtLcZGsRhQwp4.roa
Signing time: Mon 02 Jan 2023 11:44:53 +0000
ROA not before: Mon 02 Jan 2023 11:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206945
IP address blocks: 185.203.164.0/22 maxlen: 24
185.171.8.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:4c:7d:0c:33:22:de:1e:83:1c:8e:7c:e9:e5:d0:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e91f272b13c750143c7ec87e0c802aead8ac6e07
Validity
Not Before: Jan 2 11:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c331a4b3e509ad4271ce22ed2dc646b11850c29e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b3:3c:4e:ae:24:17:dc:33:67:8a:da:66:f2:
e5:fc:e3:57:53:b9:71:63:cb:a6:41:3f:f0:4f:9c:
d7:38:29:92:e8:5e:67:61:d0:c4:61:44:71:d1:fb:
70:94:19:0a:97:c9:09:c8:24:11:8b:5c:05:cf:72:
ea:e9:72:5e:30:69:c5:f1:45:a0:e8:3c:2b:ee:de:
90:8a:ec:45:1d:5a:64:dd:9b:68:2f:bb:af:c6:e1:
78:53:91:87:b0:2c:8e:d0:07:73:fc:6a:ed:bd:d3:
c6:18:6f:80:b8:75:e8:4b:67:6c:d7:9f:cc:6e:6b:
e6:04:56:44:36:46:17:55:0e:1b:24:02:ec:d4:a1:
af:28:f9:0c:78:73:ec:e2:cf:82:1b:d6:c2:46:b4:
ce:55:97:99:c9:1f:49:ee:8d:14:20:c8:76:c7:df:
75:a6:c1:35:06:d8:dd:51:1d:32:f3:cb:8c:ad:24:
28:f6:63:ca:47:38:38:07:b7:61:33:01:20:a8:71:
27:4e:c7:f9:33:7d:f4:d7:be:ba:c5:56:3d:1d:f4:
95:4c:0f:37:e9:d4:25:6c:5e:21:d3:30:3f:74:6b:
b6:b5:61:a2:d8:53:82:ab:4a:1c:05:cd:4a:7f:9a:
98:8f:44:88:af:1f:2b:80:9b:6f:7a:05:cf:94:7b:
17:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:31:A4:B3:E5:09:AD:42:71:CE:22:ED:2D:C6:46:B1:18:50:C2:9E
X509v3 Authority Key Identifier:
keyid:E9:1F:27:2B:13:C7:50:14:3C:7E:C8:7E:0C:80:2A:EA:D8:AC:6E:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6R8nKxPHUBQ8fsh-DIAq6tisbgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d62d22-82f2-4b20-bac4-601a725a00f5/1/wzGks-UJrUJxziLtLcZGsRhQwp4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d62d22-82f2-4b20-bac4-601a725a00f5/1/6R8nKxPHUBQ8fsh-DIAq6tisbgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.171.8.0/22
185.203.164.0/22
Signature Algorithm: sha256WithRSAEncryption
75:31:43:3a:a5:a3:ff:fc:99:84:5c:a3:89:92:4d:ff:7a:99:
8c:f8:e7:7b:54:15:c7:db:33:ec:ff:fd:64:51:99:77:e1:ab:
b6:b7:09:3b:3b:c8:78:69:73:fa:a2:28:bb:43:75:aa:8e:7e:
8a:03:f1:25:d8:ba:75:b6:26:f1:d4:59:5b:1d:68:fb:0a:5a:
72:95:d2:24:d1:1d:6c:93:f0:b5:1a:eb:76:60:ba:c4:ee:7f:
36:ef:87:4b:2e:f0:86:e2:b7:47:77:f5:f6:54:1c:c4:a3:24:
42:e1:b9:a4:2e:14:f3:37:98:bc:03:82:9e:7c:5f:13:c6:72:
20:38:64:44:67:bf:c4:97:62:ce:29:6d:bd:43:2c:5f:73:c3:
35:fa:27:9f:15:0e:91:ae:00:a4:cc:68:ca:ed:fe:c1:e6:33:
bb:c5:b8:e0:cc:f8:6c:01:f8:36:30:30:b1:32:e9:2a:d3:a1:
3f:42:b5:e4:e0:8d:8d:35:90:73:fe:57:f3:87:32:d7:00:bb:
7a:70:90:44:3c:26:10:6c:9d:16:91:a3:0a:53:68:b5:3d:64:
d1:07:54:f4:f8:aa:87:e5:2f:79:76:69:8f:ac:e3:07:e8:40:
f1:18:7f:2f:49:0d:ec:12:df:63:c0:7c:a8:4a:7a:cc:59:ff:
50:ef:02:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:42 2024 by rpki-client on console-fra.rpki-client.org