Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/3155bf-c881-4396-aefd-236ba9ee4056/1/WAJqLoRnFbJMTiZH73jzDbr8raY.roa
File: WAJqLoRnFbJMTiZH73jzDbr8raY.roa (raw, json)
Hash identifier: Y14fd48ooWxRvT19kZyr6gD8/D0vrE/4iLDgs6mufZ0=
Subject key identifier: 58:02:6A:2E:84:67:15:B2:4C:4E:26:47:EF:78:F3:0D:BA:FC:AD:A6
Certificate issuer: /CN=22f960fdeef407355ab7836dcb6b9026f44293ea
Certificate serial: 018B86C4A4EF9C65F6E2A086042714B66E8F
Authority key identifier: 22:F9:60:FD:EE:F4:07:35:5A:B7:83:6D:CB:6B:90:26:F4:42:93:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ivlg_e70BzVat4Nty2uQJvRCk-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/3155bf-c881-4396-aefd-236ba9ee4056/1/WAJqLoRnFbJMTiZH73jzDbr8raY.roa
Signing time: Tue 31 Oct 2023 17:25:16 +0000
ROA not before: Tue 31 Oct 2023 17:25:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205301
IP address blocks: 195.248.90.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:86:c4:a4:ef:9c:65:f6:e2:a0:86:04:27:14:b6:6e:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22f960fdeef407355ab7836dcb6b9026f44293ea
Validity
Not Before: Oct 31 17:25:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58026a2e846715b24c4e2647ef78f30dbafcada6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:70:79:66:ec:db:49:cb:cc:15:1c:57:6b:94:
cd:a9:4b:6e:54:96:19:7a:45:09:0b:da:af:26:11:
c9:cf:c3:7d:36:16:d1:bb:a7:11:87:0b:3e:84:b0:
a0:98:da:24:41:dd:38:50:b0:7b:18:54:a6:de:9d:
60:9f:dd:11:53:f9:09:c8:f4:44:a7:e2:a1:dc:84:
21:b3:38:75:e3:77:06:3f:82:e2:ad:4f:61:23:ab:
19:16:dd:27:26:35:8f:df:0a:a1:0d:71:8b:04:8e:
b5:20:04:70:bb:43:18:ed:18:27:ca:0a:55:95:95:
4c:68:e8:88:46:c9:e2:e2:12:ec:df:62:21:c2:38:
6a:b0:23:84:42:0d:65:c0:87:a8:e5:4a:fb:9f:3a:
8e:90:6e:88:b3:39:00:a1:bd:ba:b7:3f:97:3b:d6:
fe:ad:57:8d:e9:19:9d:84:94:1b:6d:d5:64:46:62:
54:75:9c:8d:3f:e9:83:94:6f:a6:b5:58:67:e2:5c:
b6:d4:da:87:e4:2e:7c:85:b8:64:8b:f0:4b:a6:6a:
af:45:cf:bd:4f:d1:69:42:b8:3f:6f:a2:cf:e3:21:
90:85:cc:16:19:f0:45:5a:67:bf:c8:f5:d4:89:59:
f5:35:ac:74:c0:71:cc:0c:25:10:a4:9a:c6:3c:3d:
77:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:02:6A:2E:84:67:15:B2:4C:4E:26:47:EF:78:F3:0D:BA:FC:AD:A6
X509v3 Authority Key Identifier:
keyid:22:F9:60:FD:EE:F4:07:35:5A:B7:83:6D:CB:6B:90:26:F4:42:93:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ivlg_e70BzVat4Nty2uQJvRCk-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3155bf-c881-4396-aefd-236ba9ee4056/1/WAJqLoRnFbJMTiZH73jzDbr8raY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3155bf-c881-4396-aefd-236ba9ee4056/1/Ivlg_e70BzVat4Nty2uQJvRCk-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.248.90.0/24
Signature Algorithm: sha256WithRSAEncryption
53:7f:26:66:07:95:d4:9a:b0:a0:4c:4c:ff:93:99:a9:90:3f:
9d:31:05:d8:c0:4f:cc:01:44:fe:02:9a:4b:f5:12:0e:d0:56:
f8:84:3b:95:50:ab:1c:b3:0b:ac:36:c9:5c:31:3f:1e:b7:87:
e1:6d:a5:ea:24:7d:b3:59:08:d9:22:cb:2d:e6:e9:ed:29:35:
06:70:1f:0f:37:3c:b3:23:c2:16:b4:da:ed:d9:e1:09:0d:ad:
b8:6b:01:23:39:9d:4f:b1:96:d4:96:37:73:9f:d0:73:24:7c:
19:b7:8d:9c:84:28:7c:64:b1:5a:35:36:1f:68:24:2e:1b:bd:
c6:4d:ce:00:80:d7:6a:61:a9:24:24:ef:78:bc:c8:ff:ba:3f:
d8:b8:ce:07:5a:6e:ca:e8:e3:18:38:43:5b:7d:6c:70:e7:9e:
7f:07:8f:b8:ab:c3:56:61:a6:ac:da:7f:a0:fa:3d:0d:4c:2a:
39:ba:11:0d:94:61:5d:72:9b:53:70:f9:6c:48:48:cf:a0:8a:
43:db:5b:c3:5e:a3:6f:81:e9:dd:bd:e2:aa:e2:ab:56:6f:81:
01:87:65:80:17:64:a5:bf:81:fe:dd:de:a4:6d:41:cc:9c:17:
92:f4:71:44:b5:b4:88:47:35:3f:2d:b4:7b:b6:30:24:a3:a6:
8e:09:34:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:28 2024 by rpki-client on console-ams.rpki-client.org