Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/WCclhvFkLJ2biIRQLbJKh1BMhSk.roa
File: WCclhvFkLJ2biIRQLbJKh1BMhSk.roa (raw, json)
Hash identifier: X3nvpjNHrjSxuj/V/9xHtkuigP4x9CK4LR29EmruD8I=
Subject key identifier: 58:27:25:86:F1:64:2C:9D:9B:88:84:50:2D:B2:4A:87:50:4C:85:29
Certificate issuer: /CN=81fa48f40bc84540c46bd23be9b90897aa184f4d
Certificate serial: 01856E2FCBC4EB6524CDC672F6BA00590743
Authority key identifier: 81:FA:48:F4:0B:C8:45:40:C4:6B:D2:3B:E9:B9:08:97:AA:18:4F:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gfpI9AvIRUDEa9I76bkIl6oYT00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/WCclhvFkLJ2biIRQLbJKh1BMhSk.roa
Signing time: Sun 01 Jan 2023 16:35:03 +0000
ROA not before: Sun 01 Jan 2023 16:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41229
IP address blocks: 195.64.252.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:cb:c4:eb:65:24:cd:c6:72:f6:ba:00:59:07:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81fa48f40bc84540c46bd23be9b90897aa184f4d
Validity
Not Before: Jan 1 16:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58272586f1642c9d9b8884502db24a87504c8529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e9:2b:69:5e:88:cc:28:28:7c:3c:cf:ce:ce:
f4:0e:75:4f:8b:14:06:30:91:7b:1f:83:99:19:af:
47:69:ab:42:5f:bb:d8:80:f5:06:96:dd:7d:02:c1:
0f:cc:f2:4e:14:bd:51:bb:b2:fc:7e:71:ba:9b:2d:
a5:e7:28:e2:93:6a:ff:a7:36:88:55:49:82:fd:27:
c9:ff:1f:c5:00:5e:b6:fc:57:95:84:6d:3f:62:71:
14:b9:72:6d:b2:6e:49:7c:6f:f0:9e:48:1c:ea:db:
c3:30:e6:b8:2d:f6:8e:67:d4:32:33:9a:a6:1d:92:
24:ac:65:64:92:5a:0a:ff:98:fc:f4:90:07:46:e5:
f5:e9:68:dc:5d:58:e2:c8:7e:c5:7b:5c:5e:70:f6:
c4:7d:1d:b7:f8:9f:1d:fe:1e:69:53:d1:7c:97:82:
68:05:b7:a2:63:09:cc:f2:ab:01:b0:93:b1:87:fc:
91:f0:df:56:2e:9f:99:a1:e1:e5:b1:89:28:9b:21:
19:80:e3:b8:7d:a1:58:ac:28:bf:88:a4:df:72:46:
36:f7:c0:61:f5:a2:3a:15:74:28:4d:4f:e6:11:bb:
10:92:3c:06:17:3d:e3:e5:a8:00:c1:4c:91:1e:27:
91:a0:b8:28:be:d7:9c:87:51:3f:8b:d8:70:83:ad:
a9:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:27:25:86:F1:64:2C:9D:9B:88:84:50:2D:B2:4A:87:50:4C:85:29
X509v3 Authority Key Identifier:
keyid:81:FA:48:F4:0B:C8:45:40:C4:6B:D2:3B:E9:B9:08:97:AA:18:4F:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gfpI9AvIRUDEa9I76bkIl6oYT00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/WCclhvFkLJ2biIRQLbJKh1BMhSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/gfpI9AvIRUDEa9I76bkIl6oYT00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.252.0/24
Signature Algorithm: sha256WithRSAEncryption
02:3f:45:69:a0:17:c4:17:a3:b5:87:07:0b:07:bd:12:99:ec:
62:7c:cf:9a:0e:ff:ef:a7:6e:71:3e:6a:2c:08:2c:b2:99:28:
a0:a4:df:83:fe:2d:a8:83:c7:40:07:f4:73:06:99:0f:b5:06:
37:e3:3c:ea:1f:1b:50:50:15:a5:af:34:b0:75:44:d9:2f:10:
52:5b:2c:c0:c3:27:62:e1:1d:83:81:fb:bb:9a:77:d2:67:3e:
72:3e:fe:90:c2:49:24:99:a3:76:a1:ad:28:8d:cc:60:a0:e7:
47:8d:ef:5f:af:e7:d0:6a:e1:ff:1c:52:7d:35:b6:32:06:0a:
5d:bc:0c:43:2a:73:96:e1:c0:af:95:60:88:d0:c6:5c:71:fc:
62:40:cf:1b:86:00:f7:a5:9d:cd:4d:af:5a:4c:ac:67:e3:7e:
61:d0:c7:03:91:fd:0a:6f:47:71:ec:d7:f0:e7:b4:00:73:e9:
60:d5:9e:e5:e3:bc:bb:dd:73:34:e2:83:e8:2b:13:ad:ad:c0:
6d:45:b0:1f:98:a2:dd:48:61:e2:42:f1:1b:62:75:63:e3:a8:
de:1b:aa:42:89:19:33:c1:3f:cb:c8:fb:58:55:e8:01:43:ee:
42:75:63:da:e0:7a:c7:8d:87:26:37:15:57:18:ff:1d:9d:66:
f9:51:43:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:15 2024 by rpki-client on console-fra.rpki-client.org