Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/wyUWSPFnI7LDpzEeTMUnNqSTcD0.roa
File: wyUWSPFnI7LDpzEeTMUnNqSTcD0.roa (raw, json)
Hash identifier: vYBnbskfiUwwSX/LeR19Zyug+fStXeCukVfh5YH4aJk=
Subject key identifier: C3:25:16:48:F1:67:23:B2:C3:A7:31:1E:4C:C5:27:36:A4:93:70:3D
Certificate issuer: /CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Certificate serial: 018E410AB757FA2CE5ED12D484F732CC5718
Authority key identifier: 57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/wyUWSPFnI7LDpzEeTMUnNqSTcD0.roa
Signing time: Fri 15 Mar 2024 07:36:44 +0000
ROA not before: Fri 15 Mar 2024 07:36:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57043
IP address blocks: 194.4.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Mar 2024 07:37:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:41:0a:b7:57:fa:2c:e5:ed:12:d4:84:f7:32:cc:57:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Validity
Not Before: Mar 15 07:36:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c3251648f16723b2c3a7311e4cc52736a493703d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:85:62:98:11:01:21:56:e4:cd:9f:85:56:29:
d6:bf:d1:3a:7a:04:dd:23:21:35:f6:6f:22:66:a6:
e0:0c:89:c5:88:a1:24:6a:3f:34:4e:e8:e6:62:08:
45:02:50:73:4f:6a:97:1e:ee:3b:bf:95:95:9b:06:
54:55:60:ab:36:2b:17:f5:77:d2:25:32:f6:37:33:
e6:a8:a6:08:57:68:a9:90:98:ba:e4:7b:8f:fa:ad:
7b:c2:7a:49:54:0d:8f:31:c7:82:14:d3:a3:42:fd:
55:4b:92:1c:d9:c9:5a:0a:e5:36:b2:4c:1e:3f:dd:
6b:6d:d0:5b:73:7d:a8:db:a9:c6:da:93:66:14:7d:
cd:2d:7a:10:2b:3e:06:65:09:a8:e5:ee:3e:25:93:
55:87:9c:d1:26:2a:db:8b:3e:9a:74:a4:d6:d7:cb:
27:77:7a:31:9a:60:ff:85:4b:df:13:d9:18:be:48:
c1:2a:b0:f9:8e:cf:37:81:0c:75:bf:17:56:59:9b:
47:28:c7:40:dc:7a:02:7b:6f:ad:42:8e:91:13:04:
5a:1b:01:50:9e:73:2b:fb:21:f2:f7:9d:46:17:82:
60:d5:e5:6a:7b:2e:c1:91:38:e3:7f:b6:a2:5e:c8:
c5:c2:ba:ee:5e:96:5b:24:79:35:6b:2c:23:62:65:
ea:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:25:16:48:F1:67:23:B2:C3:A7:31:1E:4C:C5:27:36:A4:93:70:3D
X509v3 Authority Key Identifier:
keyid:57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/wyUWSPFnI7LDpzEeTMUnNqSTcD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/Vw-w8di4wZiw3IYVivvLxSnPFr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.4.52.0/24
Signature Algorithm: sha256WithRSAEncryption
52:88:a1:7b:52:c6:d1:49:c8:fa:fb:01:8d:71:5f:ea:b2:c6:
79:d4:7d:a1:e3:32:c1:10:11:fc:5f:44:2c:b5:81:31:47:55:
b5:90:14:82:2c:32:cf:32:ad:8c:dc:9b:11:fd:70:12:c5:79:
e9:96:f2:9b:30:66:f2:8e:b7:1a:c8:54:ad:e6:1a:42:97:2d:
c1:0a:53:f7:f1:7e:83:6c:cb:4b:65:ab:4c:02:89:a1:20:31:
db:8a:c1:52:c9:21:0c:fe:b0:9f:23:b7:7a:91:c1:8b:24:28:
f0:c2:d4:cb:83:12:ea:b8:7d:00:0e:78:81:9d:67:f1:77:d4:
e0:20:ca:70:46:ab:81:ff:d9:18:8b:8f:f1:20:54:bf:44:63:
0e:b2:78:03:7d:6b:38:6d:38:36:67:8f:e8:00:0d:06:80:68:
e0:ce:86:bc:8f:16:f0:d0:d2:42:bf:0d:52:b1:b0:bf:12:8a:
80:13:39:8b:86:fe:f0:df:96:19:cc:23:ca:31:51:e6:2c:56:
58:ef:9a:f0:87:6e:e0:eb:18:b4:c9:86:10:65:1b:22:7c:0f:
d2:94:41:37:3f:dc:08:00:12:f8:75:d7:4f:43:94:38:63:5b:
50:c7:55:7c:a8:71:cb:90:4b:13:c5:d2:e1:04:3a:43:77:fd:
27:24:14:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 21 10:30:37 2024 by rpki-client on console-ams.rpki-client.org