Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/9d9680-ffbf-43d1-9c05-1be753fad1bf/1/wxRGTywQuxCj58BuYQIbz8t_eJw.roa
File: wxRGTywQuxCj58BuYQIbz8t_eJw.roa (raw, json)
Hash identifier: 31LYLVoeu/ie1Uk4l7dkAv2joDLh8EUggLTe7muJ/BA=
Subject key identifier: C3:14:46:4F:2C:10:BB:10:A3:E7:C0:6E:61:02:1B:CF:CB:7F:78:9C
Certificate issuer: /CN=6c5e4ef5516799ffe0bb1b839317dbd355bb7a9b
Certificate serial: 018AF4801EE0D7E2CFD614C131B0D2BE6864
Authority key identifier: 6C:5E:4E:F5:51:67:99:FF:E0:BB:1B:83:93:17:DB:D3:55:BB:7A:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bF5O9VFnmf_guxuDkxfb01W7eps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/9d9680-ffbf-43d1-9c05-1be753fad1bf/1/wxRGTywQuxCj58BuYQIbz8t_eJw.roa
Signing time: Tue 03 Oct 2023 07:45:51 +0000
ROA not before: Tue 03 Oct 2023 07:45:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60422
IP address blocks: 185.208.212.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f4:80:1e:e0:d7:e2:cf:d6:14:c1:31:b0:d2:be:68:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c5e4ef5516799ffe0bb1b839317dbd355bb7a9b
Validity
Not Before: Oct 3 07:45:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c314464f2c10bb10a3e7c06e61021bcfcb7f789c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8f:eb:93:fd:1b:b7:66:08:d7:01:b8:19:b5:
b2:2e:70:7a:aa:f7:16:8e:3d:c5:fc:00:64:f6:f5:
3f:13:e1:dc:34:03:cf:90:06:70:a1:28:1d:c7:08:
86:20:7d:a6:e2:86:90:4f:c7:92:3e:76:89:ed:21:
c4:ef:a9:42:9a:fc:e7:5b:a9:aa:46:34:68:50:8d:
6d:03:b6:74:9b:bb:b2:4d:b5:47:60:9f:67:7f:70:
06:cb:2f:01:67:15:da:70:3f:51:82:04:1d:ba:36:
56:71:a4:f6:2f:d4:7e:37:d5:0c:92:98:79:3e:09:
bb:59:3a:86:58:d3:d3:29:2b:2d:b6:00:09:9d:56:
63:df:bb:b2:36:17:8f:0a:eb:e2:a0:50:6a:5f:c9:
80:97:4c:9f:fc:00:56:01:ef:da:ba:81:33:41:85:
ee:72:a2:14:6f:46:75:ff:e7:85:5f:17:02:56:f0:
d6:e1:8f:44:06:21:67:77:44:61:2c:d1:d4:e2:20:
84:31:1f:a6:ce:77:d0:94:02:63:ed:01:ca:57:55:
ed:9a:fe:7a:9c:ee:a9:6b:63:08:47:ab:34:3f:31:
26:2d:5e:aa:aa:89:48:cb:0b:91:ad:95:d5:98:85:
20:ed:61:17:72:a7:4f:a6:a2:f6:1e:2c:61:59:83:
d3:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:14:46:4F:2C:10:BB:10:A3:E7:C0:6E:61:02:1B:CF:CB:7F:78:9C
X509v3 Authority Key Identifier:
keyid:6C:5E:4E:F5:51:67:99:FF:E0:BB:1B:83:93:17:DB:D3:55:BB:7A:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bF5O9VFnmf_guxuDkxfb01W7eps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/9d9680-ffbf-43d1-9c05-1be753fad1bf/1/wxRGTywQuxCj58BuYQIbz8t_eJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/9d9680-ffbf-43d1-9c05-1be753fad1bf/1/bF5O9VFnmf_guxuDkxfb01W7eps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.212.0/22
Signature Algorithm: sha256WithRSAEncryption
82:81:a1:1a:38:7e:2d:95:5d:0c:3c:84:5f:82:cb:d1:b3:be:
1b:c4:3a:6d:68:1b:5c:8d:5b:09:85:42:c9:6e:60:bc:5f:57:
0e:0c:c9:5a:58:9d:d1:23:ba:99:33:2b:98:ff:4f:ca:48:04:
00:da:92:38:bc:69:b1:1d:da:94:d6:eb:a0:e5:29:78:2e:08:
a6:1e:71:0e:73:39:e9:34:25:f1:26:62:6a:46:91:97:8d:ef:
96:4c:dd:94:4d:8c:05:b7:39:b4:91:2a:c1:cd:4f:39:4b:47:
a2:ca:01:41:d4:a1:7a:5e:55:10:43:9b:a1:44:07:53:6d:11:
96:a2:14:ec:b1:5e:d6:93:81:f9:45:d6:7d:ba:ec:57:ec:c1:
23:8c:d0:39:28:b0:f8:01:be:c2:01:fb:be:d6:63:d5:90:84:
bc:b5:52:fb:71:69:4a:6e:af:15:41:74:ba:4e:51:fa:31:84:
48:75:2a:82:f2:d5:40:e0:b9:3b:c1:68:37:74:79:96:27:80:
b4:a6:17:92:12:b4:11:2c:25:56:2f:e0:35:eb:5d:d4:ce:48:
b4:fe:fa:37:d0:f3:50:82:b8:aa:45:80:13:3f:90:28:83:1d:
b1:11:4d:2f:38:04:fd:cc:48:0b:9f:ba:00:d6:b2:cb:37:82:
fa:f5:59:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:55 2024 by rpki-client on console-fra.rpki-client.org