Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/WL2vbmTkO3pl1QKhK1Hy6mP8XDs.roa
File: WL2vbmTkO3pl1QKhK1Hy6mP8XDs.roa (raw, json)
Hash identifier: OrQFQ3heGufAaeMPisWXnpjseSAIlPVSCgcuvceAbT0=
Subject key identifier: 58:BD:AF:6E:64:E4:3B:7A:65:D5:02:A1:2B:51:F2:EA:63:FC:5C:3B
Certificate issuer: /CN=cced992030531e7e8b518aefd9e267cc528eda9a
Certificate serial: 01856FCB842BF5D90C234A26710A5DB24B32
Authority key identifier: CC:ED:99:20:30:53:1E:7E:8B:51:8A:EF:D9:E2:67:CC:52:8E:DA:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zO2ZIDBTHn6LUYrv2eJnzFKO2po.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/WL2vbmTkO3pl1QKhK1Hy6mP8XDs.roa
Signing time: Mon 02 Jan 2023 00:04:46 +0000
ROA not before: Mon 02 Jan 2023 00:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 195.170.163.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:84:2b:f5:d9:0c:23:4a:26:71:0a:5d:b2:4b:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cced992030531e7e8b518aefd9e267cc528eda9a
Validity
Not Before: Jan 2 00:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58bdaf6e64e43b7a65d502a12b51f2ea63fc5c3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:0c:fc:29:87:92:ae:2f:2b:42:22:5b:f6:13:
3e:da:0b:56:13:ce:75:24:e1:56:f3:6f:0e:33:15:
b8:90:02:a8:2f:ae:3a:a7:e6:49:e5:9d:0f:75:e3:
e3:73:1f:9d:03:cf:c3:24:88:79:9e:88:55:52:42:
16:06:61:f7:4d:37:be:9d:ea:98:17:bb:58:c8:fa:
9b:5a:40:d2:dc:ed:1b:83:49:04:08:f1:5d:86:0f:
61:b3:f3:b6:dc:d3:4b:e0:6e:ac:4f:fc:0d:27:57:
9b:b0:2c:b2:70:97:52:ba:87:cc:c2:9e:6a:07:4e:
fd:0e:d4:74:6d:d6:52:f5:10:c5:ff:49:f9:73:62:
f7:c2:5b:39:d4:c6:3c:b8:f0:c6:87:8a:eb:cc:82:
e7:3c:82:a7:78:bb:7f:d6:9b:a9:6b:c6:54:1c:ac:
b8:ab:3e:22:5a:18:6c:4b:b9:75:cd:02:ed:b1:0b:
7f:ab:23:74:80:87:d3:20:c8:4d:dd:2e:72:b8:21:
65:31:cc:8b:f7:f6:c2:8c:3c:6a:b9:d1:ee:a6:94:
de:a3:b5:23:e4:aa:7a:72:1f:0b:df:59:3e:5a:d3:
86:28:65:5a:ae:5e:22:cf:63:4f:72:90:c4:f1:66:
14:ca:6f:a9:94:41:c7:7d:07:43:ad:47:0e:43:c3:
6b:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:BD:AF:6E:64:E4:3B:7A:65:D5:02:A1:2B:51:F2:EA:63:FC:5C:3B
X509v3 Authority Key Identifier:
keyid:CC:ED:99:20:30:53:1E:7E:8B:51:8A:EF:D9:E2:67:CC:52:8E:DA:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zO2ZIDBTHn6LUYrv2eJnzFKO2po.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/WL2vbmTkO3pl1QKhK1Hy6mP8XDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/zO2ZIDBTHn6LUYrv2eJnzFKO2po.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.170.163.0/24
Signature Algorithm: sha256WithRSAEncryption
02:a4:76:c5:96:8e:57:0f:67:b0:87:d1:ae:6f:b6:0b:71:12:
71:00:76:a2:59:ef:3d:9d:90:bb:3f:a2:bf:94:c3:7e:90:20:
71:7e:12:a8:ea:19:12:df:ca:5e:dc:78:4f:eb:e2:c7:38:62:
67:ba:ff:3e:32:67:93:46:98:2d:7e:3d:93:93:d4:73:d9:58:
16:a1:b8:cf:69:3b:20:b3:8c:a1:85:2a:f1:17:0b:8c:c2:07:
18:41:4e:7a:9f:ca:7d:95:b3:61:45:7d:90:ed:d4:82:0f:16:
73:af:e3:15:ce:cb:12:02:a7:bd:fe:70:0e:8b:1f:75:18:bb:
09:2e:24:b1:9d:4f:06:c7:3a:61:a6:16:14:c7:de:5a:b2:12:
05:37:e2:ea:e2:8f:c8:76:dc:8d:fe:c1:97:d1:cc:6c:0b:9a:
ff:9f:0f:3e:61:84:34:1b:ba:f0:e2:8e:0a:6d:1d:40:af:0c:
fa:c0:20:6a:d9:a6:c0:c8:66:76:25:47:66:53:b4:c7:32:b9:
f6:ef:94:b3:fd:25:68:3b:98:42:76:8b:80:b4:f2:c5:59:1e:
eb:65:9a:6f:3c:3f:54:f3:3a:26:f5:11:1c:43:b6:cd:f0:91:
7b:82:c1:79:af:e3:e6:50:94:b8:d3:91:8a:db:7d:7d:f4:5a:
3d:af:46:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:53 2023 by rpki-client on console-fra.rpki-client.org