Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/WXujNf70C3gapFohe2E8QNeAr4k.roa
File: WXujNf70C3gapFohe2E8QNeAr4k.roa (raw, json)
Hash identifier: T8aAtnq8Cu3Qqnqctp0gGMb4cSHPkBFgqASJVwr+AhI=
Subject key identifier: 59:7B:A3:35:FE:F4:0B:78:1A:A4:5A:21:7B:61:3C:40:D7:80:AF:89
Certificate issuer: /CN=172537601a31697404922d957e74450f5a9cbe73
Certificate serial: 0185703078A3D3A5D33203E40067D764029A
Authority key identifier: 17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/WXujNf70C3gapFohe2E8QNeAr4k.roa
Signing time: Mon 02 Jan 2023 01:55:02 +0000
ROA not before: Mon 02 Jan 2023 01:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61185
IP address blocks: 109.238.160.0/21 maxlen: 24
109.238.168.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Apr 2023 04:34:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:78:a3:d3:a5:d3:32:03:e4:00:67:d7:64:02:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=172537601a31697404922d957e74450f5a9cbe73
Validity
Not Before: Jan 2 01:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=597ba335fef40b781aa45a217b613c40d780af89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a1:40:47:25:5c:a2:c7:5e:a6:69:d6:35:f6:
38:b5:34:c0:6a:93:84:c9:c4:3b:55:f0:5c:2d:db:
6c:41:09:c0:56:a2:07:d9:f8:81:d7:8a:a5:88:66:
e6:28:20:f9:2a:f5:fc:77:24:26:c0:c5:7c:80:03:
26:7e:5a:8a:84:10:7b:dc:6f:ec:1f:a2:d9:5a:1e:
a3:f5:d1:eb:33:60:63:dc:87:5e:e3:01:55:4e:98:
36:a5:f0:80:de:35:f8:bb:ad:9a:3c:6b:e4:dc:fb:
44:f3:5e:a8:46:99:21:41:b3:c6:07:12:f0:44:b9:
bc:d5:28:a7:b1:1a:df:48:57:63:52:5a:87:b4:76:
a8:b4:2d:31:f1:e9:67:ef:56:68:d0:31:4f:5e:e6:
37:65:1a:03:ee:9c:88:8b:d5:ab:25:82:22:cb:a8:
f3:41:a3:65:b8:02:7d:52:83:2f:cc:ac:aa:cd:66:
3b:a8:08:d8:5e:7a:30:8f:7e:66:ba:75:be:84:3e:
7d:b3:9a:79:c8:eb:87:56:bf:ef:41:9a:f0:68:97:
d0:81:a5:76:f9:8e:a9:43:8a:2f:b3:18:89:11:b4:
3a:d2:09:c1:7f:35:db:a2:66:d5:3c:17:b9:98:22:
5b:20:3d:71:2b:8c:05:64:63:23:6a:b6:54:fe:d3:
45:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:7B:A3:35:FE:F4:0B:78:1A:A4:5A:21:7B:61:3C:40:D7:80:AF:89
X509v3 Authority Key Identifier:
keyid:17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/WXujNf70C3gapFohe2E8QNeAr4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/FyU3YBoxaXQEki2VfnRFD1qcvnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.238.160.0/20
Signature Algorithm: sha256WithRSAEncryption
68:0a:7b:6c:65:db:1d:a9:bb:46:68:28:b1:90:8d:b6:97:13:
fc:77:b3:45:6f:ca:e0:88:8b:51:9e:ea:08:9f:03:34:06:00:
fe:e4:e2:c7:bc:62:ac:51:fc:5a:66:ee:60:2a:5f:ec:12:8c:
59:63:7c:a1:fa:4d:b7:44:fc:c4:b7:11:03:04:15:58:7d:84:
fb:5d:d3:ca:28:da:d9:b2:b1:98:73:a7:52:be:46:e1:95:5a:
1b:8b:10:51:4a:68:2e:02:b0:6a:17:a7:61:65:04:8e:34:40:
57:02:a8:4a:46:79:31:76:4a:92:9d:83:12:00:66:06:63:35:
ff:ec:64:c2:26:8c:ec:79:f2:37:59:8d:77:e3:ca:69:6f:be:
da:db:a7:b8:3f:99:50:fc:65:30:94:21:56:30:7a:b8:f2:a8:
b5:14:28:53:cd:c8:77:1c:a0:8a:f2:95:c8:e4:e3:db:51:96:
14:c0:30:be:ae:68:9b:50:67:35:74:bd:95:05:57:ad:45:d5:
26:df:7c:df:8f:93:50:f4:60:5c:34:21:ab:61:70:ca:2f:70:
ba:bb:0a:d5:a6:11:b7:9a:20:87:6f:26:bd:e9:52:e0:f8:d6:
bd:98:3f:5e:3d:f1:ec:a9:c8:a7:22:d5:d9:94:0a:a3:96:7e:
1a:f5:59:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:32 2024 by rpki-client on console-ams.rpki-client.org