Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/wHMJv6Wdy78JDNfzo67E_t3SDTE.roa
File: wHMJv6Wdy78JDNfzo67E_t3SDTE.roa (raw, json)
Hash identifier: YghwLtMnD2ny1T6PW8vhFcBA+TRs5ngFnvrIOCmqel4=
Subject key identifier: C0:73:09:BF:A5:9D:CB:BF:09:0C:D7:F3:A3:AE:C4:FE:DD:D2:0D:31
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01896DF1C22AED8233E2640FE63F50A696E9
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/wHMJv6Wdy78JDNfzo67E_t3SDTE.roa
Signing time: Wed 19 Jul 2023 11:38:27 +0000
ROA not before: Wed 19 Jul 2023 11:38:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61218
IP address blocks: 31.42.183.0/24 maxlen: 24
2a0e:97c0:4b00::/40 maxlen: 48
Validation: Failed, certificate revoked on Wed 09 Aug 2023 14:12:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6d:f1:c2:2a:ed:82:33:e2:64:0f:e6:3f:50:a6:96:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jul 19 11:38:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c07309bfa59dcbbf090cd7f3a3aec4feddd20d31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5e:09:51:ba:9c:c6:fb:ca:25:4c:ae:1a:ad:
07:4c:80:64:ab:9c:f4:3b:3f:62:5f:5d:1b:bc:1d:
19:de:2b:19:be:d7:fc:66:03:7d:cd:63:a1:98:34:
6e:e3:08:23:5e:e5:cf:42:e8:b7:1a:f8:b8:64:35:
f7:18:39:7b:44:b3:05:9f:c2:94:da:e8:71:9c:2b:
9b:54:d9:5d:33:11:c6:d1:cf:24:a1:52:bd:de:fe:
12:7e:ee:30:88:7e:9c:c6:5a:ed:a6:57:7a:c4:b6:
f9:0a:dc:90:1d:3a:45:3e:32:08:19:bf:64:8f:c1:
d3:31:53:b2:b8:9a:3d:d2:bb:a3:a6:0b:66:27:ea:
63:de:08:01:49:da:ca:3a:c8:17:ff:af:db:fc:34:
be:d4:ca:ff:34:e2:90:ee:af:1f:0a:a5:7f:3e:73:
53:ce:5b:2b:3f:e7:9c:42:4a:57:d9:dc:8a:ee:5e:
9f:5e:96:e2:5f:67:fc:a6:ff:96:ea:60:7e:c2:bc:
38:d0:5d:83:75:86:6e:1a:94:85:b4:d2:82:34:d7:
25:a9:08:6a:9e:e8:cb:25:87:3d:66:a3:3b:c4:86:
36:6b:b6:b9:53:42:cc:2b:b2:de:e0:5e:16:d6:82:
fb:8c:80:91:10:20:c9:5d:74:a4:2f:a0:d2:72:44:
96:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:73:09:BF:A5:9D:CB:BF:09:0C:D7:F3:A3:AE:C4:FE:DD:D2:0D:31
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/wHMJv6Wdy78JDNfzo67E_t3SDTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
IPv6:
2a0e:97c0:4b00::/40
Signature Algorithm: sha256WithRSAEncryption
50:f2:95:75:d4:57:58:d8:ae:5c:23:b8:0c:f8:0e:c9:12:b1:
e1:b9:49:da:d1:42:a9:12:92:08:1c:e2:df:9b:4e:a6:01:95:
a4:63:ba:00:d5:23:b5:2f:41:35:14:23:c2:3e:df:e1:08:65:
47:c4:07:f9:97:57:e7:26:8c:03:ea:a2:72:da:7a:6c:08:97:
10:db:0f:f9:d8:bf:af:70:73:3a:cf:91:a1:cf:90:c1:dd:3d:
f4:bb:e7:c5:56:f9:eb:b0:fd:87:44:8a:5c:98:ad:b4:fd:0f:
6b:2e:16:9a:2e:e1:0b:08:19:47:ce:7d:67:b5:a8:23:3c:75:
69:56:4e:25:43:fb:95:0e:a8:17:a9:33:11:22:b9:2c:ee:25:
6e:30:c6:8c:9c:2e:78:e5:50:1e:53:83:b8:dc:18:ad:d9:c8:
0c:a7:4c:35:54:5b:67:ed:42:24:bc:08:c8:81:55:78:11:a5:
1a:27:2c:22:d5:d1:56:5d:62:64:4a:4b:3f:d8:8a:2d:37:39:
fa:75:ce:f3:93:e5:98:10:67:a4:8b:75:03:b5:8b:e8:4c:02:
cc:d0:4e:db:aa:d2:0d:0a:01:f0:14:c0:6a:6f:e1:1b:51:31:
3a:fe:2f:ce:7a:46:02:30:85:15:d6:8f:28:5f:4d:fb:39:6f:
a1:dd:b4:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:34 2024 by rpki-client on console-ams.rpki-client.org