Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/wlsHaZvBowFEhVhFWCbYtSuYNJo.roa
File: wlsHaZvBowFEhVhFWCbYtSuYNJo.roa (raw, json)
Hash identifier: 0kESwKWT/NB2eFqmIohAVYxkdh+rYAR2frknnyUHaOs=
Subject key identifier: C2:5B:07:69:9B:C1:A3:01:44:85:58:45:58:26:D8:B5:2B:98:34:9A
Certificate issuer: /CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Certificate serial: 01880E920127D73C5F81A604859DCB0103F7
Authority key identifier: 1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/wlsHaZvBowFEhVhFWCbYtSuYNJo.roa
Signing time: Fri 12 May 2023 06:07:09 +0000
ROA not before: Fri 12 May 2023 06:07:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.213.174.0/24 maxlen: 24
91.213.186.0/24 maxlen: 24
91.213.200.0/24 maxlen: 24
45.150.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Jun 2023 13:38:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0e:92:01:27:d7:3c:5f:81:a6:04:85:9d:cb:01:03:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Validity
Not Before: May 12 06:07:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c25b07699bc1a301448558455826d8b52b98349a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:76:b6:51:91:6f:53:f1:97:32:53:68:5b:a9:
11:c1:2f:d1:4a:c7:3b:30:15:83:db:b6:89:36:64:
87:04:00:d6:d4:e1:0f:29:99:74:05:be:9a:53:78:
25:cd:27:e1:3d:8d:6e:79:84:1b:75:ad:fb:4e:ba:
76:9f:a0:1a:71:f4:41:63:77:62:83:a7:34:6c:3a:
3e:03:f5:0a:e0:bb:4c:e1:2b:e0:17:ae:fa:18:3e:
57:32:84:77:e4:f4:a1:d3:35:28:4c:1d:a0:db:9f:
e5:d3:e6:84:a9:38:b8:98:71:9f:ab:5e:20:e2:e3:
fa:45:57:f0:86:6d:4a:ca:16:66:9d:3f:08:a0:95:
df:63:69:a6:eb:71:69:d5:ea:2c:6c:b2:c7:30:d4:
92:97:7a:fa:91:cc:6c:9c:9e:bd:5f:0e:1b:92:a6:
4e:2d:33:92:94:4c:74:03:fa:37:81:c9:4c:be:31:
b2:31:fe:d0:30:5f:aa:e2:9b:9e:09:87:a0:37:e1:
9f:17:5a:f9:19:47:ba:f5:0e:ac:99:c0:7c:72:44:
9a:0d:99:55:83:33:4f:27:6c:13:50:d5:ae:53:0c:
78:97:26:a3:53:8f:92:73:e0:9d:9e:c6:b5:0c:f0:
a6:e9:a5:0b:01:eb:d3:02:d6:ba:75:48:a6:ff:7c:
00:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:5B:07:69:9B:C1:A3:01:44:85:58:45:58:26:D8:B5:2B:98:34:9A
X509v3 Authority Key Identifier:
keyid:1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/wlsHaZvBowFEhVhFWCbYtSuYNJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.197.0/24
91.213.174.0/24
91.213.186.0/24
91.213.200.0/24
Signature Algorithm: sha256WithRSAEncryption
03:64:52:d4:fd:a8:8e:69:0a:3e:e1:9d:3f:15:da:9d:17:f7:
07:c3:ac:87:eb:79:9e:ad:f2:30:27:ad:ce:00:2e:db:0e:30:
27:5b:62:92:91:71:59:db:e0:34:b5:75:15:43:2f:16:5a:d3:
65:07:70:62:e9:74:f7:d7:b8:54:fc:ba:ad:17:01:8b:7a:7c:
2d:3b:dd:1f:6e:37:f8:4b:86:44:28:ca:a5:80:b0:d1:40:c7:
a6:ed:14:be:51:69:0d:55:bc:14:4f:a8:b9:f0:fe:c5:88:8e:
89:47:36:77:4e:8b:ad:47:41:a6:42:01:06:48:b6:45:51:41:
6e:fb:00:21:02:f3:2a:5c:47:ee:84:80:6f:00:47:bb:26:66:
cb:9e:2a:d9:b1:c1:6f:33:79:e5:34:76:af:50:5a:e0:19:8d:
47:c7:a4:0b:6a:59:40:6e:7a:06:3b:f8:62:cc:76:b2:fc:5f:
7f:44:9a:b1:82:d9:48:39:14:14:88:d2:29:7d:47:3e:ea:68:
b7:e9:fd:8e:f6:10:b8:fd:96:cd:5d:3f:50:4c:a5:18:58:2b:
6a:fd:ca:a9:f8:de:04:2f:e0:22:f0:ee:fa:41:ca:af:b5:59:
9a:13:fe:3b:ca:2f:06:ae:2d:4b:9d:1a:52:f5:53:9c:94:23:
8e:8b:7c:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:13 2024 by rpki-client on console-fra.rpki-client.org