Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/843820-deac-4a0a-bf32-93190d3e1d98/1/wxr2d1jt76mQ5FCpq1chDrR6SWw.roa
File: wxr2d1jt76mQ5FCpq1chDrR6SWw.roa (raw, json)
Hash identifier: jlGE4e+7PWfGO/OktWRJ8PQJHLTmrL1Uky7d8nwZ9eQ=
Subject key identifier: C3:1A:F6:77:58:ED:EF:A9:90:E4:50:A9:AB:57:21:0E:B4:7A:49:6C
Certificate issuer: /CN=844f7e66995c994a30d08687110bfd6a9a056134
Certificate serial: 018BA512D2AE85342D1D03165C102F7F3B26
Authority key identifier: 84:4F:7E:66:99:5C:99:4A:30:D0:86:87:11:0B:FD:6A:9A:05:61:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hE9-ZplcmUow0IaHEQv9apoFYTQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/843820-deac-4a0a-bf32-93190d3e1d98/1/wxr2d1jt76mQ5FCpq1chDrR6SWw.roa
Signing time: Mon 06 Nov 2023 14:39:15 +0000
ROA not before: Mon 06 Nov 2023 14:39:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203777
IP address blocks: 194.104.121.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a5:12:d2:ae:85:34:2d:1d:03:16:5c:10:2f:7f:3b:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=844f7e66995c994a30d08687110bfd6a9a056134
Validity
Not Before: Nov 6 14:39:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c31af67758edefa990e450a9ab57210eb47a496c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:57:2e:d6:ee:67:ce:7a:b2:88:b8:88:95:a6:
a0:e8:c2:ba:34:17:70:62:86:5c:f6:1e:e2:04:a3:
17:7c:a9:b6:8d:f2:5d:d0:59:9f:72:f1:5e:91:da:
5e:41:3f:f0:5d:36:ca:b1:89:f2:20:e1:10:d8:ed:
c3:ec:33:fd:df:a1:06:c4:f3:e5:7e:9e:4b:b4:ef:
e1:27:a4:a5:a6:7b:85:a3:94:c5:fa:e8:10:dd:c0:
a4:c2:4c:d1:c7:06:a8:69:dd:45:59:41:a7:f3:6e:
4a:d7:1d:c8:e4:a3:bf:33:b9:3b:f5:5b:e1:a6:7d:
6e:c2:25:4f:e5:7c:75:0b:1b:c2:88:ef:17:f5:dc:
ba:4a:7e:80:a1:0e:2a:21:18:fc:eb:9f:b4:74:10:
aa:0f:16:29:ba:01:f2:26:be:06:8a:e5:65:58:f4:
29:72:9e:64:e2:ca:e0:6d:8e:4c:3e:06:e8:3f:7c:
06:f8:b9:cb:68:da:84:6d:c3:83:95:ad:17:5a:af:
66:2c:b7:90:c6:a2:96:b0:9e:82:cf:bf:9e:6a:bf:
71:07:62:ef:2a:0c:b1:3e:db:53:ba:17:87:3d:48:
53:dd:8e:cf:d1:ef:d7:e3:ba:79:28:fb:5b:7f:47:
77:cc:a8:10:8d:47:f7:c4:5b:e3:5d:9e:39:ce:ba:
ae:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:1A:F6:77:58:ED:EF:A9:90:E4:50:A9:AB:57:21:0E:B4:7A:49:6C
X509v3 Authority Key Identifier:
keyid:84:4F:7E:66:99:5C:99:4A:30:D0:86:87:11:0B:FD:6A:9A:05:61:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hE9-ZplcmUow0IaHEQv9apoFYTQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/843820-deac-4a0a-bf32-93190d3e1d98/1/wxr2d1jt76mQ5FCpq1chDrR6SWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/843820-deac-4a0a-bf32-93190d3e1d98/1/hE9-ZplcmUow0IaHEQv9apoFYTQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.121.0/24
Signature Algorithm: sha256WithRSAEncryption
24:58:f5:89:93:5d:6c:c4:50:de:fe:6e:a9:55:81:52:32:b0:
d5:4a:20:e2:63:75:06:75:39:81:de:07:8e:c6:82:cc:06:c5:
09:a4:67:58:7d:61:b9:4e:81:42:b4:3b:72:ee:db:d6:3b:2c:
19:b6:58:37:bb:89:af:72:22:0a:9b:8e:fd:f5:03:90:13:44:
6b:48:ff:31:e1:df:26:d0:2b:06:28:18:08:08:b8:b4:f7:cb:
25:6a:66:d1:80:04:b8:59:65:13:d5:73:f7:49:e6:89:49:4c:
ff:52:44:30:88:bc:b2:9e:97:c0:68:df:39:3f:6a:83:e5:57:
ff:01:7a:c7:f0:8b:ae:bb:60:7e:e7:96:20:26:e0:c1:6e:66:
fa:ce:19:a9:96:cd:06:11:fa:04:e5:17:45:48:bd:b1:71:6b:
3f:38:b5:f2:a7:aa:6c:4b:85:a9:0c:e0:d0:b2:43:77:a8:b9:
d0:00:2d:f1:13:b0:07:04:f5:25:90:7a:33:01:bc:63:11:69:
61:3f:44:70:2d:c8:33:ff:da:30:9c:e6:18:28:a3:58:6c:1c:
63:8f:8c:4b:17:67:66:98:fc:d9:1a:8a:af:e5:c3:1a:67:42:
f7:3b:fd:c8:4b:e3:76:bf:85:10:42:06:51:ce:03:08:26:59:
a5:83:da:1a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYulEtKuhTQtHQMWXBAvfzsmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0NGY3ZTY2OTk1Yzk5NGEzMGQwODY4NzExMGJmZDZhOWEw
NTYxMzQwHhcNMjMxMTA2MTQzOTE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMzFhZjY3NzU4ZWRlZmE5OTBlNDUwYTlhYjU3MjEwZWI0N2E0OTZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2lcu1u5nznqyiLiIlaag6MK6NBdw
YoZc9h7iBKMXfKm2jfJd0FmfcvFekdpeQT/wXTbKsYnyIOEQ2O3D7DP936EGxPPl
fp5LtO/hJ6SlpnuFo5TF+ugQ3cCkwkzRxwaoad1FWUGn825K1x3I5KO/M7k79Vvh
pn1uwiVP5Xx1CxvCiO8X9dy6Sn6AoQ4qIRj865+0dBCqDxYpugHyJr4GiuVlWPQp
cp5k4srgbY5MPgboP3wG+LnLaNqEbcODla0XWq9mLLeQxqKWsJ6Cz7+ear9xB2Lv
KgyxPttTuheHPUhT3Y7P0e/X47p5KPtbf0d3zKgQjUf3xFvjXZ45zrquHQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMMa9ndY7e+pkORQqatXIQ60eklsMB8GA1UdIwQY
MBaAFIRPfmaZXJlKMNCGhxEL/WqaBWE0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEU5LVpwbGNtVW93MElhSEVRdjlhcG9GWVRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My84NDM4MjAtZGVhYy00YTBhLWJmMzIt
OTMxOTBkM2UxZDk4LzEvd3hyMmQxanQ3Nm1RNUZDcHExY2hEclI2U1d3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My84NDM4MjAtZGVhYy00YTBhLWJmMzItOTMxOTBkM2UxZDk4
LzEvaEU5LVpwbGNtVW93MElhSEVRdjlhcG9GWVRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwmh5MA0G
CSqGSIb3DQEBCwUAA4IBAQAkWPWJk11sxFDe/m6pVYFSMrDVSiDiY3UGdTmB3geO
xoLMBsUJpGdYfWG5ToFCtDty7tvWOywZtlg3u4mvciIKm4799QOQE0RrSP8x4d8m
0CsGKBgICLi098slambRgAS4WWUT1XP3SeaJSUz/UkQwiLyynpfAaN85P2qD5Vf/
AXrH8Iuuu2B+55YgJuDBbmb6zhmpls0GEfoE5RdFSL2xcWs/OLXyp6psS4WpDODQ
skN3qLnQAC3xE7AHBPUlkHozAbxjEWlhP0RwLcgz/9ownOYYKKNYbBxjj4xLF2dm
mPzZGoqv5cMaZ0L3O/3IS+N2v4UQQgZRzgMIJlmlg9oa
-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:26 2024 by rpki-client on console-fra.rpki-client.org