Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/WFRdVx6YdcFjp7B2SJgO_3VSmK0.roa
File: WFRdVx6YdcFjp7B2SJgO_3VSmK0.roa (raw, json)
Hash identifier: fRkCuX6z2BOV7adVPe2Y3g66zOezCR5CCdiC27vYQi4=
Subject key identifier: 58:54:5D:57:1E:98:75:C1:63:A7:B0:76:48:98:0E:FF:75:52:98:AD
Certificate issuer: /CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Certificate serial: 01856E26928D6342E3E47759A5E6584A4466
Authority key identifier: 70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/WFRdVx6YdcFjp7B2SJgO_3VSmK0.roa
Signing time: Sun 01 Jan 2023 16:24:59 +0000
ROA not before: Sun 01 Jan 2023 16:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 680
IP address blocks: 132.252.0.0/16 maxlen: 16
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:92:8d:63:42:e3:e4:77:59:a5:e6:58:4a:44:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Validity
Not Before: Jan 1 16:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58545d571e9875c163a7b07648980eff755298ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:92:df:a5:0a:fe:c8:af:34:e2:62:91:41:aa:
0d:cc:84:7e:e9:aa:c4:84:0d:3a:8f:8d:92:92:b2:
13:b8:6b:a6:ad:ee:dc:da:bc:99:d2:23:4f:d3:3e:
82:af:ec:a2:5f:ac:0d:0a:cb:7d:2d:ad:23:72:f9:
08:dc:c8:50:7c:f0:2e:75:24:70:34:c2:b1:91:d5:
e0:89:56:5a:05:d6:86:72:33:70:b7:1b:9b:c4:76:
ae:a6:30:06:9b:32:54:f8:44:e9:18:6a:69:a9:52:
48:8e:cd:7b:f0:6f:ec:1f:19:1f:af:11:5b:fb:76:
f2:49:26:b3:a7:36:0c:33:98:9d:4a:54:63:b9:a0:
e5:d6:32:ab:74:20:0d:d6:ea:56:fd:bd:1f:07:e8:
24:b7:6d:0e:fd:04:de:d1:a3:07:ad:7a:96:66:4a:
08:b5:bc:46:33:aa:32:0f:84:5e:a6:27:cf:aa:0b:
f7:cd:29:65:2c:0d:76:8e:53:83:bc:e7:03:a8:8a:
1f:55:aa:ef:e0:89:e5:8a:50:66:78:c0:91:cc:b6:
6c:8f:39:b9:01:55:93:f1:e7:23:e2:b0:37:87:df:
c8:26:8c:f2:15:45:2b:6b:4d:70:d6:28:4e:59:9a:
1d:34:4e:2e:4b:d9:e0:75:8b:97:68:6f:6a:b9:bb:
5e:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:54:5D:57:1E:98:75:C1:63:A7:B0:76:48:98:0E:FF:75:52:98:AD
X509v3 Authority Key Identifier:
keyid:70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/WFRdVx6YdcFjp7B2SJgO_3VSmK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.252.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5b:e9:75:20:35:ab:21:10:0a:bb:c9:6d:7a:97:10:3d:96:bb:
70:e4:4e:0a:5c:83:c9:c1:a2:f0:46:98:17:72:18:c6:47:24:
f8:2c:51:0f:15:53:b4:40:35:c4:64:b3:64:31:9d:e3:46:23:
0b:dd:2c:0c:85:f7:85:d6:b2:20:4c:ee:73:f5:f4:cc:d4:46:
29:be:d8:c8:b9:33:5a:b3:c6:dd:af:de:ee:f7:07:8d:91:03:
0c:9a:49:a7:b3:43:6c:fd:66:b1:45:d7:61:8c:4a:71:8f:c1:
de:93:e6:ff:86:2c:94:e5:00:4f:c3:46:c2:05:ee:b0:ef:bd:
d7:9e:57:74:00:6d:b6:fb:3b:83:d0:99:49:b0:a8:53:ac:64:
37:cb:a7:45:a8:b0:7f:7a:5c:28:9a:3a:21:61:9d:6d:d4:22:
32:27:99:5f:79:45:c6:44:dc:a9:30:0f:66:d4:46:d4:13:a8:
a4:43:4c:ac:2a:e6:ea:f2:f3:33:80:d6:b9:a0:fc:0e:a6:be:
cd:75:92:91:b3:c4:9a:11:c6:3a:53:cf:7a:75:ff:96:7c:00:
f2:9d:d6:40:d1:fc:37:7e:76:e7:d4:d4:15:7a:7f:7d:8a:c5:
7f:56:f2:b3:f8:b4:9a:4e:67:bc:40:e0:6a:6c:5a:e8:b1:b7:
6c:6c:d0:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:18 2024 by rpki-client on console-fra.rpki-client.org