Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/WFoseJBaZJpbIJleMXUKmqkQ598.roa
File: WFoseJBaZJpbIJleMXUKmqkQ598.roa (raw, json)
Hash identifier: PrwhknOjmbuH82D2+z4/3HMgjhcs6VpLqi30yekxncU=
Subject key identifier: 58:5A:2C:78:90:5A:64:9A:5B:20:99:5E:31:75:0A:9A:A9:10:E7:DF
Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40
Certificate serial: 0186DB2DC0EA027DCCFD1D70D51433C4EEFA
Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/WFoseJBaZJpbIJleMXUKmqkQ598.roa
Signing time: Mon 13 Mar 2023 13:34:14 +0000
ROA not before: Mon 13 Mar 2023 13:34:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61138
IP address blocks: 141.226.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Jun 2023 14:49:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:db:2d:c0:ea:02:7d:cc:fd:1d:70:d5:14:33:c4:ee:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40
Validity
Not Before: Mar 13 13:34:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=585a2c78905a649a5b20995e31750a9aa910e7df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:71:46:97:14:f2:99:ec:a8:df:cb:dd:d0:20:
92:a8:2c:0d:41:18:ba:37:3a:59:97:6c:7f:8e:0a:
e4:8e:a4:0b:55:87:2e:9a:47:35:aa:97:bb:16:ce:
a1:26:04:d5:da:62:9f:23:51:08:bd:3e:aa:c1:c8:
9e:b0:eb:a9:cd:8c:ac:62:68:5e:a5:3a:24:8c:29:
c6:4e:29:52:7d:78:70:02:37:32:16:ef:a4:27:41:
a8:f6:f7:db:85:f1:0d:a4:d8:b3:59:2d:0c:71:f7:
45:1e:fd:44:d2:bf:ce:5a:46:d5:50:2b:22:17:7d:
52:29:b7:1b:1a:50:a3:75:42:0c:a9:c5:f7:f2:12:
0d:ac:b6:19:29:61:8c:12:c4:4d:17:60:b7:95:68:
e5:aa:6a:b1:ad:d4:8c:5c:ce:7e:d8:aa:67:b9:97:
83:63:64:5d:8a:05:d4:cf:aa:84:ff:1d:3c:29:b8:
34:14:10:67:d6:ba:3b:3c:d4:22:1f:80:ec:c8:a9:
db:e8:44:75:c7:ea:f9:e4:af:b1:3e:42:0f:50:d7:
c2:29:48:a5:33:6d:02:54:97:1e:af:87:f0:a5:cd:
4e:07:20:ad:eb:df:9d:69:33:65:db:a8:d0:0b:ba:
eb:8c:2d:eb:a8:ed:1e:57:0a:98:e0:46:e5:5b:b5:
11:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:5A:2C:78:90:5A:64:9A:5B:20:99:5E:31:75:0A:9A:A9:10:E7:DF
X509v3 Authority Key Identifier:
keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/WFoseJBaZJpbIJleMXUKmqkQ598.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.226.243.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:5b:30:ac:8a:50:1f:87:b3:12:63:ec:32:7b:c8:41:11:8d:
29:bb:ee:74:3d:94:eb:04:4b:64:63:1b:3c:e8:b0:ec:ce:6a:
6d:94:7e:39:0f:b1:df:d2:9f:e4:cc:c7:56:04:6e:3f:83:da:
30:b5:d1:52:e8:06:73:db:d8:85:68:68:0b:be:bd:d9:c5:5d:
fe:1b:92:24:ac:35:66:a7:17:8c:2d:3f:fa:07:40:0b:3a:dc:
d9:63:7f:2f:e0:05:84:26:47:e1:c3:0d:d1:d2:73:87:81:11:
92:1c:da:8b:bc:54:23:c1:bc:e4:89:e6:cc:e3:bf:cd:33:0c:
d7:f3:84:a5:4b:dc:90:f4:42:02:07:8a:23:f6:13:26:dc:c4:
52:6a:66:e0:76:63:90:69:0d:ee:e9:9e:63:01:96:7c:88:0c:
ab:db:3c:ce:bc:3b:44:68:de:a6:ba:fd:6b:ff:b2:aa:92:f7:
4d:f7:d3:56:45:95:e0:5a:c4:cf:6d:bb:62:90:61:40:7f:80:
07:7d:ed:50:e1:36:4d:68:a8:2b:64:2e:bb:20:1c:56:d7:a8:
25:0a:78:b4:24:11:39:8a:25:15:22:5f:14:5a:1d:ce:1e:36:
42:26:19:fe:84:f0:0b:f4:ea:25:ea:0c:f9:0c:74:d5:f9:40:
44:a9:95:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:38 2024 by rpki-client on console-ams.rpki-client.org