Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/WlMZODTh8v9LXLwiEP15UUVEvtA.roa
File: WlMZODTh8v9LXLwiEP15UUVEvtA.roa (raw, json)
Hash identifier: F7Ve4v8fhj1dKwCunNSgRIoUCQS1e4KVS3Uex1nDhTY=
Subject key identifier: 5A:53:19:38:34:E1:F2:FF:4B:5C:BC:22:10:FD:79:51:45:44:BE:D0
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 0192B40BAD4034C83ED14723017B62B4286E
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/WlMZODTh8v9LXLwiEP15UUVEvtA.roa
Signing time: Tue 22 Oct 2024 11:45:17 +0000
ROA not before: Tue 22 Oct 2024 11:45:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61330
IP address blocks: 216.173.121.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:48:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b4:0b:ad:40:34:c8:3e:d1:47:23:01:7b:62:b4:28:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Oct 22 11:45:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a53193834e1f2ff4b5cbc2210fd79514544bed0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:6f:5c:d3:d9:f2:07:26:b4:01:a6:1f:13:f1:
23:62:2c:a7:10:be:d1:b2:b9:ec:ae:08:47:7d:78:
43:54:a9:19:46:81:64:37:6e:ff:72:a1:8d:46:09:
b3:ad:d0:58:4b:c5:90:8d:59:ef:fc:da:23:96:2d:
7d:af:17:e0:0a:4c:d3:68:f8:09:6d:3b:3d:f1:4b:
99:58:d4:90:d6:b7:22:eb:d0:37:45:4b:15:7e:5f:
c8:eb:80:68:6a:12:a6:15:ba:27:e0:2b:07:95:06:
31:cb:e1:fd:ea:f7:37:c5:ee:26:9d:55:e2:46:0a:
ec:7c:7e:ff:26:bb:5b:52:39:2b:44:1a:12:a4:6b:
4d:61:aa:1a:dc:5c:dc:f3:13:a5:ad:1d:66:ec:54:
ea:a5:5c:6e:7b:e7:18:2a:96:c5:c9:f9:d0:38:fb:
6f:43:ac:56:d1:72:fb:0e:23:12:80:32:93:22:1a:
f7:c8:64:b6:2d:6b:b6:85:fa:d4:01:c5:ae:db:d0:
45:8e:cb:fe:65:a1:56:72:e5:49:5a:1f:6c:dd:99:
ca:69:b2:87:ff:b4:9e:a7:a3:37:59:07:06:b8:fd:
db:cb:76:31:e4:77:be:7c:22:07:cf:61:da:9b:61:
32:7c:a2:e6:b0:f0:a2:07:bc:25:d4:e9:7a:23:f1:
0b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:53:19:38:34:E1:F2:FF:4B:5C:BC:22:10:FD:79:51:45:44:BE:D0
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/WlMZODTh8v9LXLwiEP15UUVEvtA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
216.173.121.0/24
Signature Algorithm: sha256WithRSAEncryption
75:b3:78:dc:43:11:7e:53:bf:51:3e:da:28:c3:d7:1a:8f:4b:
30:76:a7:e0:71:6a:09:aa:db:9c:68:f0:09:40:b6:61:c1:49:
99:7d:d7:e3:df:8d:b8:cd:cb:02:bf:93:df:43:fc:04:a0:d4:
62:83:9f:2b:c8:c1:50:fc:ef:7b:f3:23:f5:00:d3:b6:67:02:
10:78:99:c2:7f:43:50:8e:3a:c8:4d:a0:72:b6:ee:1b:2c:3e:
d0:3d:af:b1:1f:02:18:69:e6:e5:b1:a3:3c:1a:2e:43:bd:a5:
5b:54:93:51:5b:a2:8b:a3:02:76:cc:a2:97:69:87:6a:d6:7e:
8a:aa:0e:26:7b:2f:d2:9a:b8:f8:83:87:ae:e4:31:62:56:f1:
3f:d4:e6:fe:a2:e4:c2:ab:1d:94:65:18:94:41:45:30:e6:8d:
db:aa:df:7a:86:0d:ea:fc:a4:2f:19:a2:6a:b3:e7:97:2f:86:
be:5d:70:62:be:a9:99:75:60:63:38:6b:f1:f2:60:bf:a5:f8:
93:f2:d3:45:16:01:25:96:83:4e:c4:7c:d0:40:87:68:62:e5:
aa:cc:c1:4c:37:3c:5d:2e:7e:87:41:8a:5e:ef:e2:b9:2c:97:
db:5e:16:0b:db:f0:ec:62:ee:d0:a5:9a:6c:59:4a:a3:17:7b:
38:fe:46:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:09 2025 by rpki-client