Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/393842-e7ef-4893-9c1b-1e842118db6f/1/wbVEdNm5_iDI3s8fhAtUFl7C5Nc.roa
File: wbVEdNm5_iDI3s8fhAtUFl7C5Nc.roa (raw, json)
Hash identifier: KSgalj0xYW8uI7rO+lpUi97681Pr+CbEsrbtRoEB8DQ=
Subject key identifier: C1:B5:44:74:D9:B9:FE:20:C8:DE:CF:1F:84:0B:54:16:5E:C2:E4:D7
Certificate issuer: /CN=29b79380fe407439cc2ecd3fac18157db36cf768
Certificate serial: 018572C35A0C7497EE08603E8B910362DF16
Authority key identifier: 29:B7:93:80:FE:40:74:39:CC:2E:CD:3F:AC:18:15:7D:B3:6C:F7:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KbeTgP5AdDnMLs0_rBgVfbNs92g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/393842-e7ef-4893-9c1b-1e842118db6f/1/wbVEdNm5_iDI3s8fhAtUFl7C5Nc.roa
Signing time: Mon 02 Jan 2023 13:54:43 +0000
ROA not before: Mon 02 Jan 2023 13:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206228
IP address blocks: 185.77.252.0/23 maxlen: 23
185.77.254.0/23 maxlen: 23
2a05:6740:40c0::/48 maxlen: 48
2a05:6740:4060::/46 maxlen: 46
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:c3:5a:0c:74:97:ee:08:60:3e:8b:91:03:62:df:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29b79380fe407439cc2ecd3fac18157db36cf768
Validity
Not Before: Jan 2 13:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c1b54474d9b9fe20c8decf1f840b54165ec2e4d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c1:b9:3d:a9:57:f4:2d:46:1b:8b:bf:dd:c4:
95:25:1d:bc:73:a7:17:49:6d:fc:5f:0e:2d:f4:8d:
70:ee:d1:80:e4:8c:79:f5:7c:af:3a:d0:01:24:b8:
9d:95:8a:ff:e2:03:e3:47:21:6d:6a:a9:d0:1a:63:
00:c4:23:d0:8d:7a:a1:26:c3:58:8f:b7:79:80:cb:
b3:1a:a4:de:f1:70:91:9d:a4:df:74:12:c5:ea:fb:
5b:47:18:37:c5:be:1f:5c:b9:99:c3:e7:f3:17:28:
da:d9:80:bd:ff:8d:71:15:a0:be:4c:02:2e:b9:6d:
28:cb:89:88:a7:52:b2:52:aa:58:df:c0:3c:a4:9e:
d4:fa:41:0d:f1:28:cd:93:28:23:5d:18:6a:8f:97:
e4:73:01:36:74:ac:e8:a3:e3:44:81:02:da:0d:28:
4e:00:16:da:05:73:92:a6:42:00:90:0c:b1:03:c1:
f1:2f:65:3e:94:4a:06:a2:c8:26:3b:27:33:20:e4:
71:50:11:f1:8a:fd:9c:b3:54:b4:3d:12:a8:cd:67:
dd:6a:b4:2c:72:ad:5a:cf:2d:fa:88:60:c5:d5:68:
8c:df:b1:15:6c:61:0c:66:a2:4d:5d:9c:69:11:08:
80:b1:3b:a1:28:99:5a:cf:b1:76:c5:a1:21:d6:18:
f5:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:B5:44:74:D9:B9:FE:20:C8:DE:CF:1F:84:0B:54:16:5E:C2:E4:D7
X509v3 Authority Key Identifier:
keyid:29:B7:93:80:FE:40:74:39:CC:2E:CD:3F:AC:18:15:7D:B3:6C:F7:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KbeTgP5AdDnMLs0_rBgVfbNs92g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/393842-e7ef-4893-9c1b-1e842118db6f/1/wbVEdNm5_iDI3s8fhAtUFl7C5Nc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/393842-e7ef-4893-9c1b-1e842118db6f/1/KbeTgP5AdDnMLs0_rBgVfbNs92g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.252.0/22
IPv6:
2a05:6740:4060::/46
2a05:6740:40c0::/48
Signature Algorithm: sha256WithRSAEncryption
82:ba:5d:3d:07:7b:4a:cf:e9:81:c4:e6:6d:98:c7:ab:f6:88:
7c:91:71:8c:ea:cb:49:fd:7a:48:02:7d:d1:36:6d:e1:56:9f:
e4:dc:d8:5a:87:16:09:ef:9a:89:c9:5c:6c:1b:a6:43:20:4b:
ee:05:27:3a:e8:62:09:ac:20:c3:08:17:8f:e4:07:d1:a5:fe:
9b:c6:6c:94:95:a0:70:b3:50:53:13:be:b4:6d:45:4f:cd:6d:
f1:46:2a:af:09:47:3e:b8:36:12:a4:48:61:d5:ce:17:1c:95:
2c:d4:2b:a4:62:7d:bd:b0:02:30:9c:e5:fb:66:7e:2f:79:12:
1d:5e:cb:d2:b9:24:88:46:c1:e6:d7:0b:9a:e3:18:6b:4c:d3:
47:33:e9:07:2e:b1:98:0e:4e:9b:54:0a:d9:e0:ba:db:29:dc:
64:d5:65:49:aa:73:d7:f3:0d:5d:b1:ef:9f:59:66:cf:9d:79:
e8:dd:ea:a2:f0:20:a4:ad:14:25:52:d1:c9:6a:6f:7d:6f:8a:
d0:d8:b1:0c:f4:d6:fc:5b:dc:05:9b:5c:f2:6d:5e:dd:9c:f7:
20:3b:04:96:19:b5:9c:7a:1b:a3:c4:21:17:a4:9f:fe:eb:40:
01:5f:2d:c0:52:9d:dc:f3:85:df:64:85:6a:c1:a9:3c:82:b4:
61:3a:1c:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:01 2024 by rpki-client on console-fra.rpki-client.org