Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/WVLQtAp-lKkpbNLxR1Q-UGhmZZo.roa
File: WVLQtAp-lKkpbNLxR1Q-UGhmZZo.roa (raw, json)
Hash identifier: m9+A3bp7e0/oiIMkp+dV/ZDv8VsRBi9xoBUr55yGb8w=
Subject key identifier: 59:52:D0:B4:0A:7E:94:A9:29:6C:D2:F1:47:54:3E:50:68:66:65:9A
Certificate issuer: /CN=95b30111b0b720a209f788c8b90f60380b465c2e
Certificate serial: 018C8BDB5C6DAF7BF79540DB9848354563FA
Authority key identifier: 95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/WVLQtAp-lKkpbNLxR1Q-UGhmZZo.roa
Signing time: Thu 21 Dec 2023 10:10:58 +0000
ROA not before: Thu 21 Dec 2023 10:10:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208619
IP address blocks: 45.92.132.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8b:db:5c:6d:af:7b:f7:95:40:db:98:48:35:45:63:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95b30111b0b720a209f788c8b90f60380b465c2e
Validity
Not Before: Dec 21 10:10:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5952d0b40a7e94a9296cd2f147543e506866659a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:98:56:b7:0a:04:a8:5b:77:98:86:7a:01:8d:
58:da:8d:85:5c:2e:f4:fe:5f:2c:e9:ac:69:0e:bb:
53:3f:84:22:67:60:ef:e5:f2:0e:58:90:63:aa:9a:
5c:6b:94:24:9e:f2:80:59:a5:a7:a1:f2:5c:9d:96:
80:80:2f:81:06:41:5c:cc:17:16:e9:10:6c:e1:14:
00:05:9d:19:43:b5:51:f7:e6:e5:b3:81:d6:4f:98:
2f:92:f6:cd:e9:45:1b:8c:5a:4f:e2:29:3c:66:d7:
c3:b7:d5:4a:72:ec:a8:e1:be:eb:49:68:7e:c6:43:
d5:1c:f8:ef:b6:01:14:9b:20:bc:3f:fa:5f:cb:83:
c1:e0:0f:7f:55:2c:25:1d:ba:8c:f7:25:f7:38:de:
b6:dd:66:3a:4e:67:b3:05:f1:b5:3c:8a:f7:13:89:
29:34:37:79:cd:47:bc:9d:f9:24:6e:74:e3:11:30:
77:52:47:69:b4:39:1d:43:38:37:e9:4e:d9:0c:db:
0c:83:f1:92:25:fe:e8:b8:af:83:04:2c:2b:f8:32:
d4:19:9c:08:6b:0f:7b:77:c5:4b:62:2c:40:6e:0e:
65:c6:ab:ff:b4:8f:84:7c:d8:ab:0e:10:1f:d5:e3:
19:87:72:44:14:ec:b3:f8:d4:74:0c:c2:43:20:d2:
44:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:52:D0:B4:0A:7E:94:A9:29:6C:D2:F1:47:54:3E:50:68:66:65:9A
X509v3 Authority Key Identifier:
keyid:95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/WVLQtAp-lKkpbNLxR1Q-UGhmZZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.132.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:dd:0b:5f:35:2d:e2:3a:f7:c6:f7:ab:23:50:19:8e:6b:0b:
f0:6f:c4:8e:3c:96:75:06:91:ab:60:be:7c:14:26:92:ed:f3:
7b:70:ae:88:0e:2a:07:cb:d1:f9:24:37:b1:38:ba:aa:93:1b:
5f:e5:5d:f8:18:49:05:a7:42:21:01:5f:2f:ba:7b:69:09:f9:
9b:f4:ae:2f:b2:1a:c7:0d:d0:9f:b2:5e:e1:b7:f5:cc:6c:4b:
5f:41:6d:b9:22:16:68:9f:6e:1b:bb:b0:0a:a6:f4:49:9a:6a:
ab:e4:9c:90:5e:1f:ec:ed:2a:03:47:7d:10:d0:db:45:d6:f4:
13:bf:2b:19:6c:c8:a1:5b:3b:31:72:36:0f:17:9f:39:27:67:
24:b8:a7:77:49:c0:0a:c2:7e:a5:c7:87:4e:13:3c:83:8a:48:
53:53:75:7d:a5:d0:53:05:75:66:79:3d:4e:b6:be:0f:a3:02:
c1:1f:3f:91:9b:38:89:7e:01:49:4a:f3:db:f1:73:c1:e2:86:
d8:3f:c3:31:df:14:c6:1a:16:b3:25:89:6a:81:84:cb:9c:47:
7b:91:06:9f:e4:12:b0:0b:3f:5e:27:1d:7e:97:35:d7:97:40:
36:95:19:63:d9:06:4e:72:51:18:b0:07:d1:56:3f:31:65:6c:
43:f1:f3:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:18 2024 by rpki-client on console-fra.rpki-client.org