Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/WRFd_p1NFl9mRZD1kfJUMGaeMH0.roa
File: WRFd_p1NFl9mRZD1kfJUMGaeMH0.roa (raw, json)
Hash identifier: I8KOBM8n/+dwKPZnQUmpShhrLFcr2ti6FLAaVJOYSM0=
Subject key identifier: 59:11:5D:FE:9D:4D:16:5F:66:45:90:F5:91:F2:54:30:66:9E:30:7D
Certificate issuer: /CN=261b941dbe59651fafbba9724a12775e07edb635
Certificate serial: 018CC2DADA1F537B858B3C8D0CF49FC2F97F
Authority key identifier: 26:1B:94:1D:BE:59:65:1F:AF:BB:A9:72:4A:12:77:5E:07:ED:B6:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JhuUHb5ZZR-vu6lyShJ3XgfttjU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/WRFd_p1NFl9mRZD1kfJUMGaeMH0.roa
Signing time: Mon 01 Jan 2024 02:29:31 +0000
ROA not before: Mon 01 Jan 2024 02:29:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206903
IP address blocks: 185.172.152.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 17 Jan 2024 09:13:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:da:1f:53:7b:85:8b:3c:8d:0c:f4:9f:c2:f9:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=261b941dbe59651fafbba9724a12775e07edb635
Validity
Not Before: Jan 1 02:29:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59115dfe9d4d165f664590f591f25430669e307d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:5f:ae:6d:00:9b:a9:ea:d4:6c:60:e9:f3:1e:
c1:a7:76:94:25:1f:05:b3:a0:2a:5e:a5:e2:27:52:
7d:b8:3e:e1:7e:71:74:3d:e9:a0:70:a6:45:1f:6f:
f6:34:a6:cc:86:b8:85:a8:03:20:14:ba:a2:6a:f9:
de:85:c1:da:89:30:4e:1f:da:b8:c7:c8:76:81:96:
b9:6c:c2:a4:46:8e:4e:c7:68:c1:4f:4f:d0:32:fa:
b7:ce:f1:c4:4b:1e:26:ec:ca:c3:82:0e:e4:ef:89:
d9:15:a3:63:b8:00:12:c9:58:11:75:73:d3:72:7a:
c0:15:ab:4c:ad:26:fc:af:c7:ad:f1:90:bf:0a:ff:
5a:79:d6:67:e8:ae:ab:fd:1f:c0:17:6b:75:1f:b1:
0e:58:11:39:ad:4c:b6:e4:45:76:4f:06:59:73:f3:
0f:a0:f9:86:48:a5:aa:23:64:a8:c5:2a:74:56:00:
fe:1f:1f:ea:22:e9:4d:83:6c:db:b3:47:fb:94:2c:
45:fc:38:e5:02:4f:30:4f:92:8e:7e:22:7f:e0:c4:
e9:ca:00:44:89:37:5a:8d:6e:18:de:66:fe:9f:9d:
5c:9c:e8:04:76:ec:3c:fb:85:27:f8:96:17:18:32:
8e:a8:c4:f2:75:3c:fd:cb:e8:3b:8c:d0:72:a1:a5:
09:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:11:5D:FE:9D:4D:16:5F:66:45:90:F5:91:F2:54:30:66:9E:30:7D
X509v3 Authority Key Identifier:
keyid:26:1B:94:1D:BE:59:65:1F:AF:BB:A9:72:4A:12:77:5E:07:ED:B6:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JhuUHb5ZZR-vu6lyShJ3XgfttjU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/WRFd_p1NFl9mRZD1kfJUMGaeMH0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/JhuUHb5ZZR-vu6lyShJ3XgfttjU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.152.0/22
Signature Algorithm: sha256WithRSAEncryption
c9:88:32:1c:3e:9a:7a:c4:01:3c:7b:8f:04:1b:51:bf:9f:cf:
5e:21:f7:ba:a0:d7:e0:76:53:d3:6b:0d:2d:4f:c1:0a:bc:a2:
fc:d1:fa:25:d7:fe:23:97:8f:7e:e4:08:66:de:48:de:aa:c2:
19:fd:66:e7:17:32:58:6c:0b:ab:33:0f:ef:43:02:b1:cd:4a:
51:ed:df:92:66:f4:58:f9:6f:5f:91:61:8c:9b:d4:52:c9:35:
40:c6:0f:64:f2:d4:b0:b0:da:d2:d8:ac:1d:91:85:4c:7c:d3:
7b:78:17:37:60:a2:3f:e2:b9:f1:93:4d:ed:65:8c:cb:f9:f9:
ce:61:dc:3b:7d:85:81:c2:52:c0:f7:0f:f9:77:4b:8a:39:3d:
e8:1e:be:3d:c4:7d:53:4f:e7:0f:4d:42:55:c5:eb:04:91:a5:
40:37:91:0d:ab:cd:3b:8b:c2:7c:9e:56:1f:43:e1:83:13:e6:
69:59:63:20:5a:7d:af:33:d9:e9:ea:88:d0:f5:07:50:72:66:
f2:fd:fb:4d:62:70:79:25:5b:93:91:e9:7f:48:bc:d8:a9:fb:
16:83:bb:63:d7:07:35:c4:63:04:74:d7:7d:79:a6:70:af:bb:
36:fa:a2:8d:bd:fe:ac:60:18:6c:72:73:88:45:8b:6a:34:9a:
cc:db:7c:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 17 13:08:18 2024 by rpki-client on console-ams.rpki-client.org