Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/WYqitKtK1ZZmvEWs5wMs4_qWRUg.roa
File: WYqitKtK1ZZmvEWs5wMs4_qWRUg.roa (raw, json)
Hash identifier: xuibbkCkxdiCPvNKRUSv+gx7bPfEozLl/OSeaWZwzGw=
Subject key identifier: 59:8A:A2:B4:AB:4A:D5:96:66:BC:45:AC:E7:03:2C:E3:FA:96:45:48
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 01856ED4BCECC292B95EE11E1B3EB0C5FDF2
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/WYqitKtK1ZZmvEWs5wMs4_qWRUg.roa
Signing time: Sun 01 Jan 2023 19:35:13 +0000
ROA not before: Sun 01 Jan 2023 19:35:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 201.49.189.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:bc:ec:c2:92:b9:5e:e1:1e:1b:3e:b0:c5:fd:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 19:35:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=598aa2b4ab4ad59666bc45ace7032ce3fa964548
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f2:43:40:7c:e5:51:9a:0d:92:ae:01:ee:b7:
e3:04:6a:b0:17:b7:6d:6e:43:cd:57:69:a9:8d:c1:
50:40:57:84:b0:8b:f4:79:27:69:98:3f:56:67:e9:
73:27:f8:ae:dd:29:5d:3f:19:14:c0:84:4d:ec:05:
40:9b:06:20:d5:66:ff:ef:83:ad:dc:7f:31:3c:3e:
50:fd:4d:a2:74:67:8e:67:fc:b0:44:10:84:95:7f:
87:7a:e8:ab:80:2e:17:d5:37:90:75:57:71:59:60:
30:35:a5:25:43:69:7d:7e:4d:4f:dc:89:3a:4a:0c:
d3:e2:ad:c5:e7:b8:a9:b2:de:d1:6f:86:58:1d:43:
db:00:a3:7a:a1:93:61:ac:c2:d1:f3:0d:92:a5:46:
cd:4e:e6:00:14:29:ad:33:75:d9:41:15:91:78:7c:
8b:74:ff:a5:ae:27:d7:34:0d:9a:f6:99:61:f2:6e:
6c:fe:b6:fe:30:94:8d:dc:6f:d8:ed:96:13:b9:df:
2c:eb:ce:1c:8a:96:e2:ac:0d:a9:46:f7:c5:cf:1b:
1e:5e:23:02:21:98:f5:90:ea:a6:01:9b:c6:7d:1b:
33:3d:d0:08:f8:e0:b1:14:8f:3d:02:8c:b8:35:f0:
87:88:11:a4:41:da:61:52:2a:78:bb:4e:ae:5b:73:
78:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:8A:A2:B4:AB:4A:D5:96:66:BC:45:AC:E7:03:2C:E3:FA:96:45:48
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/WYqitKtK1ZZmvEWs5wMs4_qWRUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.49.189.0/24
Signature Algorithm: sha256WithRSAEncryption
be:fe:8e:8b:7e:66:5d:7f:0c:4d:66:bd:5b:e8:72:b6:d1:ec:
2b:ec:b9:90:10:62:30:c1:a7:47:c0:e1:67:97:68:72:86:3e:
00:b5:4a:3c:ea:26:3f:72:2e:82:30:a8:9b:1b:aa:0f:ef:b3:
5f:74:3f:ab:e9:33:d2:1e:2a:a3:51:28:92:19:ed:98:f6:c5:
9b:05:fe:ca:3a:e0:c4:0e:c9:b5:ea:48:bd:e4:35:d1:21:73:
4e:11:4d:2d:97:94:d5:79:b8:ba:ec:3b:4c:e1:a9:34:b6:92:
05:8b:3f:22:fd:2f:6b:53:ea:e4:3e:21:16:67:e1:60:9d:21:
8a:78:ce:05:d0:13:e5:0d:84:90:52:15:f2:17:f4:80:9e:2f:
ea:e6:09:ee:ff:ef:f4:76:18:a4:3d:f3:fe:69:35:1c:6a:9a:
dd:21:6b:5f:8e:08:aa:2d:f5:0c:1f:68:d0:82:5a:91:69:a9:
bd:39:4c:d9:b5:7b:c5:ad:73:e1:fa:db:51:3e:e5:61:65:eb:
02:69:c8:d7:43:72:82:18:33:a2:c7:8f:05:ff:06:ae:ab:6e:
82:a1:ff:ea:8b:bd:fe:b0:13:98:53:b0:e6:3b:f3:dd:35:4f:
6b:be:cd:6f:d8:43:a2:98:74:6c:e3:f8:3e:c5:38:d1:f7:27:
82:5d:6d:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:08 2024 by rpki-client on console-ams.rpki-client.org