Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/WfAos7ZvWn_nU_0BkLJzpzlg5Kk.roa
File: WfAos7ZvWn_nU_0BkLJzpzlg5Kk.roa (raw, json)
Hash identifier: i9IGO5OiDMDZCoC5AnibLmsafEuhqL3Ny4CqfBP7fnk=
Subject key identifier: 59:F0:28:B3:B6:6F:5A:7F:E7:53:FD:01:90:B2:73:A7:39:60:E4:A9
Certificate issuer: /CN=95a5adf6af1fcc0570adf858fd5bfbe28791a186
Certificate serial: 018C8D4155F7F6D4F506B451449E76321293
Authority key identifier: 95:A5:AD:F6:AF:1F:CC:05:70:AD:F8:58:FD:5B:FB:E2:87:91:A1:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/laWt9q8fzAVwrfhY_Vv74oeRoYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/WfAos7ZvWn_nU_0BkLJzpzlg5Kk.roa
Signing time: Thu 21 Dec 2023 16:41:58 +0000
ROA not before: Thu 21 Dec 2023 16:41:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47264
IP address blocks: 185.144.108.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8d:41:55:f7:f6:d4:f5:06:b4:51:44:9e:76:32:12:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95a5adf6af1fcc0570adf858fd5bfbe28791a186
Validity
Not Before: Dec 21 16:41:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59f028b3b66f5a7fe753fd0190b273a73960e4a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c6:ae:9e:32:bf:b2:4a:78:5a:1e:ee:83:29:
a1:62:7c:ec:76:19:81:31:52:40:a8:8e:9b:3f:16:
ad:bc:63:62:e4:5d:44:37:f5:4d:ae:a4:46:08:b0:
7c:35:ae:1c:6f:59:af:97:2e:99:48:83:ca:8f:77:
e7:57:b9:b5:43:2a:5a:1f:ed:bc:e0:3f:ae:60:39:
1d:5d:b8:88:5f:54:e6:3e:74:59:e7:89:69:ad:43:
ec:f8:25:d9:55:66:8f:e6:89:d7:61:6e:1c:9e:1e:
21:c5:22:b3:48:95:d1:88:5d:f3:e4:39:01:14:60:
6f:cc:29:08:96:01:42:d9:08:19:b2:45:3b:a5:50:
9e:32:b7:4d:d4:db:e2:9a:2f:f2:3a:c4:a9:c3:42:
a4:b5:d1:10:36:7c:d4:7b:d9:89:14:68:0e:61:53:
db:46:8e:4d:9b:65:de:0f:5b:53:f3:10:59:e4:71:
a5:3b:4c:e6:b9:65:33:69:80:92:a7:0c:d0:d2:20:
53:cc:12:0d:58:bf:63:1e:e0:ac:94:d9:d0:43:0e:
54:39:50:b1:0a:21:b5:e2:78:8b:88:5c:52:2e:01:
dd:d6:66:a6:93:de:0c:ec:bc:5b:bc:ae:eb:73:03:
a1:52:fc:58:22:f8:99:d6:60:b3:ae:76:52:e8:1c:
d7:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:F0:28:B3:B6:6F:5A:7F:E7:53:FD:01:90:B2:73:A7:39:60:E4:A9
X509v3 Authority Key Identifier:
keyid:95:A5:AD:F6:AF:1F:CC:05:70:AD:F8:58:FD:5B:FB:E2:87:91:A1:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/laWt9q8fzAVwrfhY_Vv74oeRoYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/WfAos7ZvWn_nU_0BkLJzpzlg5Kk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/laWt9q8fzAVwrfhY_Vv74oeRoYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.108.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:47:63:03:24:7b:92:4a:28:ba:cf:50:a1:1e:c5:27:07:83:
cf:53:9a:01:21:42:d9:5d:60:ce:25:03:9d:65:63:64:22:1c:
3a:ab:6a:ee:8c:d5:09:dd:1a:60:96:7e:a3:11:18:72:ff:b9:
39:b8:c0:32:f4:38:31:dd:58:2c:74:c7:c4:c4:55:24:b8:3d:
81:e5:74:38:2d:82:35:6f:5c:57:9d:94:63:24:5c:2d:b1:b4:
68:d8:bd:6e:f6:4a:60:8a:73:fa:6b:93:de:d2:36:38:90:a6:
36:0d:aa:0a:34:67:91:00:6a:29:5d:1c:cd:e4:c3:e1:2e:f1:
76:c8:f2:5f:94:6c:43:96:a0:f7:a4:51:9b:66:f2:21:8d:d8:
bb:de:ac:3f:d0:d4:59:da:40:03:ac:48:db:5e:ae:53:0b:39:
71:ce:de:ba:9b:11:d6:fe:de:70:5e:51:22:45:e5:a6:2e:73:
06:23:f5:51:0f:08:0d:de:1e:a6:f2:84:81:93:a0:b4:61:74:
68:84:e4:4e:24:56:f6:3e:45:ec:81:8f:25:21:aa:74:8f:94:
47:12:23:05:93:0f:b0:5f:50:90:1d:d1:aa:3f:07:c5:ea:06:
7d:ad:48:5e:a7:e1:13:f9:99:43:1d:c5:ab:8a:be:75:08:58:
2c:2d:ad:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:32 2024 by rpki-client on console-fra.rpki-client.org