Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/wgL5m_ECuv7Npom3xZpDhQyJo4Y.roa
File: wgL5m_ECuv7Npom3xZpDhQyJo4Y.roa (raw, json)
Hash identifier: KrmlT7FLyef1U9YsE7NDzI55vgJuu0LdqbLsr4lKuo0=
Subject key identifier: C2:02:F9:9B:F1:02:BA:FE:CD:A6:89:B7:C5:9A:43:85:0C:89:A3:86
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0192246AC2727847C77BCDC72728E8AA5E76
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/wgL5m_ECuv7Npom3xZpDhQyJo4Y.roa
Signing time: Tue 24 Sep 2024 14:23:49 +0000
ROA not before: Tue 24 Sep 2024 14:23:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50043
IP address blocks: 93.170.136.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:49:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:24:6a:c2:72:78:47:c7:7b:cd:c7:27:28:e8:aa:5e:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Sep 24 14:23:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c202f99bf102bafecda689b7c59a43850c89a386
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9d:70:ef:10:d9:68:a5:40:c0:33:cd:44:51:
8f:d5:70:6b:24:20:f0:49:71:3f:32:1f:80:fd:ca:
99:47:1c:bb:81:99:0e:7c:28:68:7e:c6:4d:22:84:
e9:10:97:30:c6:e2:2d:22:ee:17:36:af:81:cd:26:
7c:fc:8a:a9:53:4a:c4:4b:83:41:e1:fb:a9:c4:5f:
a5:3d:7f:45:2e:bc:fa:b9:1a:45:a1:53:1e:3a:94:
fe:5a:d8:99:57:b0:c7:a3:a4:40:69:91:8e:82:fa:
16:07:37:b3:96:99:e7:d9:2b:fe:df:fe:09:4b:6f:
a4:cf:a5:52:36:07:51:bc:fb:4b:d0:af:37:31:17:
1b:9a:46:f7:b4:0d:60:33:a8:61:62:af:33:65:11:
bb:b1:b1:2b:fb:bd:10:d8:11:b3:e0:9e:cf:13:10:
d8:c7:b4:09:2f:1b:92:0a:55:4c:69:ad:40:18:5b:
7b:a4:5e:86:6b:fe:1a:dd:cb:14:81:a3:e7:95:39:
fe:4b:02:f3:7c:ce:49:27:69:14:e5:46:be:09:43:
30:6e:f8:65:70:73:86:92:60:05:61:95:69:20:50:
34:43:b0:31:7d:ec:6f:b5:e5:74:e6:2b:a7:87:9b:
73:ef:15:b0:11:9a:04:fc:bc:4f:43:49:28:26:17:
75:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:02:F9:9B:F1:02:BA:FE:CD:A6:89:B7:C5:9A:43:85:0C:89:A3:86
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/wgL5m_ECuv7Npom3xZpDhQyJo4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.136.0/23
Signature Algorithm: sha256WithRSAEncryption
40:27:b0:ff:1c:5f:10:87:d1:18:4f:7c:80:c2:67:61:20:bd:
bc:0a:0c:e2:30:63:31:b6:a8:b2:c6:2e:93:e3:85:2f:a4:5d:
fa:18:e1:02:e7:12:11:60:bd:d7:9a:12:7d:62:f4:cf:95:af:
f9:d5:c4:f1:7d:8c:19:9c:fb:a3:84:a3:e1:7b:d5:c1:ea:bc:
60:37:40:92:cc:5d:f1:8e:67:4a:3f:a7:fc:5f:79:21:6b:7a:
02:de:51:7d:43:3e:c0:57:e7:8e:c4:26:ff:c7:d7:e5:3e:b0:
44:37:99:ad:b4:ce:cb:16:5a:96:f3:bd:dc:78:6a:3b:ff:b6:
d3:cb:31:41:db:d8:01:54:9e:d9:86:c0:a7:3c:7b:f4:bd:00:
e4:5b:f5:4c:eb:85:e4:46:c9:d2:3c:c3:f8:cb:90:05:5f:86:
f7:af:57:9c:76:ad:81:17:24:3f:df:48:aa:6e:49:eb:1e:ec:
c6:e7:89:3c:a2:d6:86:35:bb:56:97:62:54:7d:36:3f:ee:30:
b8:ef:3b:0c:a7:0d:3b:94:23:db:3a:a7:62:0d:a7:22:6e:3a:
01:2e:33:57:72:22:51:b2:0f:67:32:49:0f:12:08:1c:0e:8c:
43:d3:1f:17:4a:23:8a:73:ee:4e:f9:19:62:91:7c:9d:43:c4:
3b:39:d5:de
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZIkasJyeEfHe83HJyjoql52MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh
YWVmNDIwHhcNMjQwOTI0MTQyMzQ5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMjAyZjk5YmYxMDJiYWZlY2RhNjg5YjdjNTlhNDM4NTBjODlhMzg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnZ1w7xDZaKVAwDPNRFGP1XBrJCDw
SXE/Mh+A/cqZRxy7gZkOfChofsZNIoTpEJcwxuItIu4XNq+BzSZ8/IqpU0rES4NB
4fupxF+lPX9FLrz6uRpFoVMeOpT+WtiZV7DHo6RAaZGOgvoWBzezlpnn2Sv+3/4J
S2+kz6VSNgdRvPtL0K83MRcbmkb3tA1gM6hhYq8zZRG7sbEr+70Q2BGz4J7PExDY
x7QJLxuSClVMaa1AGFt7pF6Ga/4a3csUgaPnlTn+SwLzfM5JJ2kU5Ua+CUMwbvhl
cHOGkmAFYZVpIFA0Q7AxfexvteV05iunh5tz7xWwEZoE/LxPQ0koJhd1cwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMIC+ZvxArr+zaaJt8WaQ4UMiaOGMB8GA1UdIwQY
MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt
MDYyYzY5MzNhYmVkLzEvd2dMNW1fRUN1djdOcG9tM3hacERoUXlKbzRZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk
LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBXaqIMA0G
CSqGSIb3DQEBCwUAA4IBAQBAJ7D/HF8Qh9EYT3yAwmdhIL28CgziMGMxtqiyxi6T
44UvpF36GOEC5xIRYL3XmhJ9YvTPla/51cTxfYwZnPujhKPhe9XB6rxgN0CSzF3x
jmdKP6f8X3kha3oC3lF9Qz7AV+eOxCb/x9flPrBEN5mttM7LFlqW873ceGo7/7bT
yzFB29gBVJ7ZhsCnPHv0vQDkW/VM64XkRsnSPMP4y5AFX4b3r1ecdq2BFyQ/30iq
bknrHuzG54k8otaGNbtWl2JUfTY/7jC47zsMpw07lCPbOqdiDacibjoBLjNXciJR
sg9nMkkPEggcDoxD0x8XSiOKc+5O+RlikXydQ8Q7OdXe
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:55:32 2025 by rpki-client