Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/WLgqNQckRXPZFc0hIqJ1Y97xsms.roa
File: WLgqNQckRXPZFc0hIqJ1Y97xsms.roa (raw, json)
Hash identifier: PhrX8FVl39d/3dW08vTw2lL655wm8ri9ZCIHctrSfpc=
Subject key identifier: 58:B8:2A:35:07:24:45:73:D9:15:CD:21:22:A2:75:63:DE:F1:B2:6B
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 01916D9982EF1D905F3EE5511A9B40017FE9
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/WLgqNQckRXPZFc0hIqJ1Y97xsms.roa
Signing time: Tue 20 Aug 2024 02:24:22 +0000
ROA not before: Tue 20 Aug 2024 02:24:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214857
IP address blocks: 89.42.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Oct 2024 05:09:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6d:99:82:ef:1d:90:5f:3e:e5:51:1a:9b:40:01:7f:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Aug 20 02:24:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=58b82a3507244573d915cd2122a27563def1b26b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:aa:d4:79:e2:f7:65:04:85:a3:51:b3:7d:be:
01:3a:de:ba:2d:0e:54:cb:5c:c3:7f:48:36:2c:a9:
03:5e:ff:f0:37:0d:7e:8a:96:35:80:fc:75:a1:c1:
6f:68:b1:29:51:30:6f:ac:50:af:88:10:52:11:47:
66:42:82:15:1d:40:1b:2a:b9:31:6b:97:4d:c9:c2:
9d:0d:79:63:9d:97:ab:0a:44:1f:d8:85:27:b2:c0:
cb:b5:24:7e:a7:2b:24:88:13:42:48:cd:27:14:83:
6b:02:50:bf:b6:89:df:9f:ec:9a:09:7d:da:7d:f6:
15:72:2f:f8:ad:56:23:7e:74:8f:15:39:03:3a:61:
af:1a:c1:ee:5f:6b:93:7a:bd:e2:ad:25:e0:d4:65:
63:fb:13:ad:15:58:79:b1:39:8d:50:81:7d:8c:7a:
ff:7d:20:a5:89:7c:e6:fc:73:27:f7:75:79:b4:9b:
12:4a:8e:c3:ab:74:c3:2d:ae:94:45:f2:d1:15:23:
6e:9d:c9:85:b0:f9:1a:38:e9:6b:c8:e1:e9:53:6d:
5e:6d:39:6a:cb:f4:7f:e9:fd:d5:7a:3f:a4:90:ed:
77:22:3d:63:d7:2f:93:6f:0d:14:e0:42:2f:3e:46:
02:60:35:56:e9:51:cb:fc:44:ec:54:2d:c1:b6:84:
b1:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:B8:2A:35:07:24:45:73:D9:15:CD:21:22:A2:75:63:DE:F1:B2:6B
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/WLgqNQckRXPZFc0hIqJ1Y97xsms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.42.47.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:d0:08:f5:05:06:ae:a3:e7:16:49:7e:43:55:ef:f0:e1:eb:
5a:31:a9:10:13:ee:bf:75:42:03:bb:fc:56:e9:6d:00:85:a9:
47:28:00:2d:1d:d5:d0:ff:8c:36:b8:96:9f:f9:c1:8b:92:44:
3e:26:2e:94:c0:60:c7:9a:2c:f0:a3:fb:6b:0f:77:81:0e:10:
db:88:c0:37:4f:05:c0:7f:36:90:76:10:a9:b8:61:dc:91:1d:
43:a8:0a:7c:df:d9:d8:0a:7f:7c:cd:62:a6:e4:8e:07:f1:55:
e5:70:50:ea:a6:4e:c3:f6:5a:4a:98:a5:53:ac:89:e4:09:26:
f7:f7:66:6c:92:00:1c:c6:08:c2:4d:fd:66:aa:de:a9:f9:7f:
41:97:0a:92:22:f0:f4:8f:5e:7f:11:e5:78:ee:78:b8:07:a3:
e2:c6:d0:54:ab:37:0a:06:f3:82:4c:24:be:00:de:bb:1b:42:
ae:ce:e3:f1:a7:8a:a2:ba:03:71:8f:06:b8:63:db:cf:3d:b1:
ed:de:e3:13:49:c5:7d:e7:1e:8b:91:ab:d1:66:8c:91:e7:68:
ca:48:4d:d8:e7:c4:c0:98:d8:c0:91:4d:a4:b5:b8:43:fe:ac:
40:6e:cb:a2:e6:31:ef:e2:34:f1:61:dc:fb:b1:5b:7b:f9:65:
09:fe:4f:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 05:50:32 2024 by rpki-client on console-fra.rpki-client.org