Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/4be222-6482-4db9-9a5f-752e9b8b0756/1/WVSvTkGQJ8Z0ocVES2qRd3vLPu4.roa
File: WVSvTkGQJ8Z0ocVES2qRd3vLPu4.roa (raw, json)
Hash identifier: z2Wp/MZCx0ni5XdlLqx+hYalc0Lp3QOf9s5auN50nb0=
Subject key identifier: 59:54:AF:4E:41:90:27:C6:74:A1:C5:44:4B:6A:91:77:7B:CB:3E:EE
Certificate issuer: /CN=70fee176f51ce8fd81424ff73a5417341279c0f1
Certificate serial: 0185720C47AECE290720CEF94C04B3FB2C49
Authority key identifier: 70:FE:E1:76:F5:1C:E8:FD:81:42:4F:F7:3A:54:17:34:12:79:C0:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cP7hdvUc6P2BQk_3OlQXNBJ5wPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/4be222-6482-4db9-9a5f-752e9b8b0756/1/WVSvTkGQJ8Z0ocVES2qRd3vLPu4.roa
Signing time: Mon 02 Jan 2023 10:34:45 +0000
ROA not before: Mon 02 Jan 2023 10:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208802
IP address blocks: 185.85.184.0/22 maxlen: 22
2a05:b100::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:47:ae:ce:29:07:20:ce:f9:4c:04:b3:fb:2c:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70fee176f51ce8fd81424ff73a5417341279c0f1
Validity
Not Before: Jan 2 10:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5954af4e419027c674a1c5444b6a91777bcb3eee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:16:56:6f:f5:6c:d0:f0:83:8b:c2:b1:32:e4:
e9:bf:1d:79:c4:5f:70:15:c1:30:90:13:37:22:f2:
d2:dc:90:05:57:65:89:22:29:cb:a5:19:77:f5:8e:
04:9f:20:99:dc:69:01:5f:15:8b:f7:61:5a:ac:fc:
71:70:43:19:23:38:d9:74:56:f3:ba:a8:20:de:25:
c0:f0:e6:0a:5d:c7:54:80:dd:cf:6c:86:f4:a0:aa:
34:a2:ce:5f:6e:f2:59:11:15:99:c8:dc:3c:7d:cc:
74:fa:c0:63:2a:95:22:f3:ee:c1:0e:05:1e:ee:27:
07:ee:ca:16:24:c6:cd:30:09:e4:50:bd:af:4c:fe:
08:63:ea:89:7d:69:a4:55:84:9a:bb:4c:e3:83:22:
55:ef:b5:e1:14:66:47:a9:cb:48:5d:92:e8:41:b1:
45:2f:27:c2:b2:b6:71:a2:e0:7f:77:80:df:ba:91:
53:2f:3c:77:a1:75:cd:ba:76:cd:0e:a3:f7:39:44:
51:59:83:e4:2c:b2:86:6b:ce:03:d3:90:28:59:ee:
4f:b9:47:40:84:42:52:3e:ea:b8:00:9a:67:3e:b4:
35:97:61:56:77:41:26:a9:1e:bc:b1:a0:b1:23:93:
71:32:04:30:c6:3c:c9:42:97:c9:55:ec:ac:e5:cc:
3e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:54:AF:4E:41:90:27:C6:74:A1:C5:44:4B:6A:91:77:7B:CB:3E:EE
X509v3 Authority Key Identifier:
keyid:70:FE:E1:76:F5:1C:E8:FD:81:42:4F:F7:3A:54:17:34:12:79:C0:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cP7hdvUc6P2BQk_3OlQXNBJ5wPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/4be222-6482-4db9-9a5f-752e9b8b0756/1/WVSvTkGQJ8Z0ocVES2qRd3vLPu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/4be222-6482-4db9-9a5f-752e9b8b0756/1/cP7hdvUc6P2BQk_3OlQXNBJ5wPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.85.184.0/22
IPv6:
2a05:b100::/29
Signature Algorithm: sha256WithRSAEncryption
94:2a:8a:2b:d3:e7:51:2e:79:5d:d9:51:49:32:15:6f:14:c2:
2b:cc:b7:1d:c8:5c:60:98:12:ad:a6:1e:e0:59:86:fa:b4:66:
6a:81:fd:cd:73:e6:70:18:02:58:71:8b:78:f5:ba:47:b8:31:
b0:bb:bc:12:ef:e0:78:de:f0:80:37:06:e3:b3:74:ea:f3:34:
cf:98:a5:9f:da:ce:57:0c:d5:db:a3:59:4b:de:db:d8:3b:87:
00:58:c8:38:f4:65:b8:29:1a:54:9b:92:53:54:d4:1f:2f:86:
00:9b:6d:3f:e6:c7:c6:a7:c6:4d:70:78:85:e4:57:2c:6c:21:
e2:69:f7:5e:b7:85:d1:13:d5:18:bc:ea:42:c7:d4:04:7e:a6:
76:de:d1:4a:83:52:1f:89:04:aa:8c:ea:15:b8:d1:eb:d9:eb:
f0:80:e7:4c:24:fa:eb:be:9c:c4:34:19:b0:0b:a9:26:3f:aa:
e4:52:c3:e4:8e:91:49:d1:9d:de:49:01:66:ad:21:bc:2e:13:
d7:2a:b7:3e:7c:a9:8a:6c:b7:1e:0d:b1:9c:99:4e:c1:73:70:
cd:30:b8:e6:2b:c5:6a:c2:64:62:29:c2:36:68:f1:7a:5b:c5:
0b:a9:a3:e0:10:00:09:5f:9b:ff:09:23:de:79:38:c6:5f:60:
a3:40:d2:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:14 2024 by rpki-client on console-ams.rpki-client.org