Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/WKFbI1WIBY9mZbA5VhsOoE5lko8.roa
File: WKFbI1WIBY9mZbA5VhsOoE5lko8.roa (raw, json)
Hash identifier: jJAhqxKta7Ox0D/iv43XjjofoT+2oOQCH+2TgylUu+U=
Subject key identifier: 58:A1:5B:23:55:88:05:8F:66:65:B0:39:56:1B:0E:A0:4E:65:92:8F
Certificate issuer: /CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9
Certificate serial: 01857067271F2EAC6BF7E0411F28988C1FB0
Authority key identifier: 5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/WKFbI1WIBY9mZbA5VhsOoE5lko8.roa
Signing time: Mon 02 Jan 2023 02:54:46 +0000
ROA not before: Mon 02 Jan 2023 02:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 194.127.172.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:27:1f:2e:ac:6b:f7:e0:41:1f:28:98:8c:1f:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9
Validity
Not Before: Jan 2 02:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58a15b235588058f6665b039561b0ea04e65928f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:e8:67:ae:93:f5:2f:a8:ad:70:c3:f9:ef:90:
9a:a6:46:05:43:5e:93:58:67:33:6d:18:fa:90:6c:
af:fd:42:92:ef:7c:34:7f:ce:44:19:21:09:d9:69:
1e:47:ca:25:20:78:75:1c:e2:d1:a8:ce:2a:c6:50:
6e:97:2e:7e:1f:43:a2:a0:e0:77:98:4d:f7:fe:c7:
8f:2e:66:b0:d9:7d:54:80:a5:20:36:2a:a7:b8:05:
a9:4c:08:0e:53:65:24:7b:6c:4e:94:48:96:ed:a9:
7b:1a:55:dc:06:d0:3f:7e:cd:81:e1:0e:04:c8:63:
d0:bd:c0:41:9c:81:a2:12:76:fc:9e:5f:eb:ef:a5:
15:ab:63:82:d9:3b:96:9b:8c:87:05:a6:37:f6:16:
8b:78:e2:a5:33:03:fe:71:76:d6:ea:09:dd:00:c0:
ac:0d:2e:ee:85:7b:62:a9:b7:c0:d6:5f:67:8d:dd:
12:b8:e3:08:ae:97:1e:21:3d:a2:7a:cc:65:ca:d2:
29:96:41:a4:52:7a:9f:62:11:42:a4:87:1f:2e:cc:
96:27:ae:b0:6b:f7:5a:2c:9c:25:5e:38:e2:ae:b2:
03:b5:16:c9:d6:54:00:3b:72:40:93:a8:8d:25:00:
33:86:c5:c5:09:92:7c:dc:bb:b2:42:d6:c3:ab:92:
28:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:A1:5B:23:55:88:05:8F:66:65:B0:39:56:1B:0E:A0:4E:65:92:8F
X509v3 Authority Key Identifier:
keyid:5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/WKFbI1WIBY9mZbA5VhsOoE5lko8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.127.172.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:f2:43:d7:6f:0c:c9:90:27:37:c8:39:50:3b:d3:da:45:dd:
e9:6b:72:44:f0:a4:83:46:12:4d:b0:b5:00:ae:2c:07:c0:e2:
ac:a1:ed:ad:7e:be:20:e3:f8:82:fc:81:dd:5c:fd:21:1a:81:
9f:7f:ff:31:1c:70:03:19:f2:ee:37:37:5b:68:ab:64:60:5c:
2b:4a:1b:d4:e8:ea:d3:0b:58:7e:6e:7e:43:8b:31:18:f8:df:
6d:db:e5:ed:d5:7b:25:72:25:8c:c3:79:96:d1:62:4e:e4:8b:
75:57:d4:3a:67:fa:c5:e7:d9:f7:c6:5b:b4:7b:db:3c:cb:d5:
6a:ec:e9:b8:7e:aa:b3:4c:13:e4:3c:ec:0d:bb:28:61:f7:54:
55:86:b3:80:74:34:ec:6b:be:8d:1a:ec:60:01:8c:9f:5b:03:
e1:24:43:d1:e5:18:ea:3b:93:0f:6f:33:91:d5:1f:48:7c:64:
e5:e4:2a:de:b1:58:48:32:b2:33:fc:bc:19:36:39:c0:d6:13:
0d:6d:0b:31:be:46:1a:ca:22:ba:44:3e:35:0a:c4:3c:67:c2:
be:a9:0b:94:a8:35:66:34:79:c1:04:18:9c:22:5b:5c:81:6b:
25:8c:d0:56:c1:f5:3a:44:92:47:e5:40:2a:65:ae:75:9a:62:
78:53:eb:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:23 2024 by rpki-client on console-fra.rpki-client.org