Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/WygQNrkePnUCuxLM_fBmWCUMmg4.roa
File: WygQNrkePnUCuxLM_fBmWCUMmg4.roa (raw, json)
Hash identifier: aGjb8j8KMh2iAqhW/keY0RPnj6lsMZ12wKod3xUw2ZQ=
Subject key identifier: 5B:28:10:36:B9:1E:3E:75:02:BB:12:CC:FD:F0:66:58:25:0C:9A:0E
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 018ECC4A0653E1F843A56A1FCE44A1B27D30
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/WygQNrkePnUCuxLM_fBmWCUMmg4.roa
Signing time: Thu 11 Apr 2024 08:33:07 +0000
ROA not before: Thu 11 Apr 2024 08:33:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 27176
IP address blocks: 37.16.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Apr 2024 19:59:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:cc:4a:06:53:e1:f8:43:a5:6a:1f:ce:44:a1:b2:7d:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Apr 11 08:33:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b281036b91e3e7502bb12ccfdf06658250c9a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f0:f9:e9:cd:f0:58:51:6d:10:17:e4:44:e5:
92:65:ed:e4:7e:b1:22:f9:91:b8:c5:3d:fe:d2:9f:
68:88:8e:0d:3b:d1:58:0a:8e:eb:3a:b4:48:f4:38:
20:ca:1b:a0:07:83:d6:6e:ac:22:7a:4d:f8:40:ab:
24:52:2a:18:2d:0f:df:2c:7a:84:01:41:a9:23:5e:
72:85:1e:91:28:0f:d6:84:3c:27:79:96:d1:ff:59:
63:b3:97:15:1c:ce:cc:65:70:7c:c0:b8:61:a2:7d:
7d:02:9c:50:8e:1d:3f:f7:13:f5:1b:62:dc:7a:99:
0a:b1:86:80:d5:98:b2:a9:d1:19:f2:23:e8:0e:30:
ac:79:1e:76:0b:27:69:a4:16:fc:45:55:9f:d8:e6:
71:34:8c:33:0f:ef:13:cc:f8:9b:cb:44:50:a9:a6:
1b:e4:c0:5e:3c:07:44:da:9a:4a:2d:ff:24:02:93:
5d:54:2a:36:6f:5d:7e:86:f7:6e:7d:ab:d6:ba:3f:
7f:1d:10:d4:d1:66:da:33:61:92:cf:0f:29:8c:b8:
91:c3:bd:19:ba:fd:5f:aa:2d:b9:9c:5a:5c:14:e2:
38:0f:b7:42:4d:82:c9:b3:32:46:07:29:ec:a7:ae:
be:e3:98:ad:95:ce:78:6d:3a:83:c1:58:b1:46:7c:
54:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:28:10:36:B9:1E:3E:75:02:BB:12:CC:FD:F0:66:58:25:0C:9A:0E
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/WygQNrkePnUCuxLM_fBmWCUMmg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.16.76.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:89:8d:cd:b3:c1:96:83:0a:4b:64:25:f5:39:c9:f8:47:c9:
07:cc:f3:2f:a0:81:72:0c:d6:57:84:6f:c0:bd:e1:8d:69:cf:
30:82:da:3c:d8:d7:b2:cf:90:e8:f0:8d:39:7d:cf:a2:ba:0a:
00:8f:ab:33:ea:cc:1b:b7:1e:f7:e3:1f:ce:f8:2f:5b:85:8a:
36:9e:86:f5:7c:4d:84:45:f9:03:a0:0d:4e:02:ec:65:df:7f:
c8:94:f8:10:54:c2:82:38:cb:36:dd:b6:cd:88:6d:8a:8a:2b:
f7:7c:fc:50:1f:c3:34:e0:d1:88:c3:47:f4:28:95:88:91:c4:
47:ad:43:96:8f:e8:39:43:34:df:d0:a3:81:88:fd:4b:77:e4:
c7:f4:8d:5a:1f:37:ee:36:2d:ad:7d:7b:e3:f3:a9:e5:03:96:
24:e2:3b:23:c2:9b:be:f9:57:17:ae:e9:4b:9e:19:0f:cf:df:
83:72:3a:ba:e0:59:ce:b3:e8:83:61:b5:74:23:84:88:57:12:
73:60:c4:6f:34:ac:29:3f:55:0a:ad:54:75:d3:30:3f:ca:05:
3c:a3:48:5a:a2:2e:e8:4c:34:a0:82:30:85:8f:f5:35:53:66:
14:cb:8c:3d:5b:03:56:7b:33:80:fc:85:08:c2:ca:bd:e4:23:
16:ed:8e:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:08 2024 by rpki-client on console-fra.rpki-client.org