Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/wSZJq82xhTmSk0Ylx_3IKVpod50.roa
File: wSZJq82xhTmSk0Ylx_3IKVpod50.roa (raw, json)
Hash identifier: Wf+7Nn0SFboJBhM8+67tyXq5y619Z9acAsruRQPBfdg=
Subject key identifier: C1:26:49:AB:CD:B1:85:39:92:93:46:25:C7:FD:C8:29:5A:68:77:9D
Certificate issuer: /CN=172537601a31697404922d957e74450f5a9cbe73
Certificate serial: 018A62ECDBF0CD71E76339A5DE65539144AC
Authority key identifier: 17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/wSZJq82xhTmSk0Ylx_3IKVpod50.roa
Signing time: Tue 05 Sep 2023 01:20:04 +0000
ROA not before: Tue 05 Sep 2023 01:20:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61185
IP address blocks: 109.238.160.0/21 maxlen: 24
109.238.168.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:62:ec:db:f0:cd:71:e7:63:39:a5:de:65:53:91:44:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=172537601a31697404922d957e74450f5a9cbe73
Validity
Not Before: Sep 5 01:20:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c12649abcdb1853992934625c7fdc8295a68779d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:1a:11:8d:d0:eb:a9:7d:9e:47:9b:f3:aa:48:
58:de:26:5f:d1:ea:c4:c3:b5:71:59:33:af:95:f9:
57:ca:7a:e0:5b:c4:85:79:69:7f:1d:83:06:fa:00:
9d:34:b6:12:ae:57:cc:50:1b:09:8b:d8:17:48:8c:
fe:c8:6d:a0:ae:a1:13:04:ec:ae:2d:1c:85:58:31:
ac:2a:f2:6d:58:eb:02:eb:b2:a0:d6:fd:94:88:20:
42:b4:14:08:a5:ee:bd:df:4b:cf:a0:69:6a:8e:d4:
f5:f6:1c:6f:8e:b7:35:b5:d5:7f:f0:0a:bd:fd:dd:
8d:77:e2:5a:d6:c8:1e:64:39:9d:63:89:c0:e0:a8:
d3:99:64:38:9c:b5:0c:fe:8d:0e:b0:e8:26:00:d6:
6d:a7:0a:e6:3b:8e:42:10:dc:e0:de:3a:21:65:6c:
e6:e6:7f:f6:d2:6b:df:53:12:4f:8d:75:d6:de:83:
fa:fe:5a:2b:7c:bd:b2:c4:6d:68:1e:fc:18:15:a8:
93:e4:ae:c2:19:8a:55:74:3a:09:76:ac:9e:92:cd:
52:a0:c0:ee:96:a2:68:00:25:e7:fb:6d:32:46:b1:
28:d8:c6:18:f4:08:dd:0a:a2:d9:04:86:eb:c8:bc:
f7:ff:cb:e7:47:7a:90:f8:ce:1f:bf:91:77:9e:bc:
fb:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:26:49:AB:CD:B1:85:39:92:93:46:25:C7:FD:C8:29:5A:68:77:9D
X509v3 Authority Key Identifier:
keyid:17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/wSZJq82xhTmSk0Ylx_3IKVpod50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/FyU3YBoxaXQEki2VfnRFD1qcvnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.238.160.0/20
Signature Algorithm: sha256WithRSAEncryption
5a:df:a0:6e:2f:97:97:bd:ee:4c:17:7e:67:a4:4b:ed:f2:6e:
1b:9d:e4:45:ef:13:45:f6:72:4b:53:d2:e5:b4:dd:80:4e:44:
5d:d7:5d:35:07:e0:db:54:e9:a0:8b:2f:34:28:e9:2b:b1:0d:
12:0a:93:d2:29:1c:80:8e:71:c4:40:8c:f2:2f:94:e3:79:eb:
9f:47:82:65:64:bf:6a:69:a9:d8:ef:8e:af:23:43:e8:85:e0:
f0:ab:24:3a:33:dc:26:c3:70:fd:63:26:59:de:c7:e4:05:bc:
97:99:96:ed:f6:19:fc:f7:24:6f:48:dc:5a:30:f7:d0:a9:85:
83:e8:b6:fb:70:eb:ef:44:97:51:da:39:95:9b:d0:cc:02:ff:
ce:4c:0f:a9:75:2f:fd:e1:ac:be:f4:79:e4:b2:de:0d:02:db:
1c:2b:62:23:76:67:2a:c9:3a:11:a8:24:ba:e6:e9:7d:e8:c8:
a3:85:a4:50:f5:30:28:b8:96:2e:04:01:59:b1:e5:ac:7c:70:
cd:dd:e8:46:b2:55:bf:d0:92:3a:3d:aa:1b:a6:ff:84:95:aa:
3a:70:ac:56:1e:e1:77:15:ce:6c:21:e2:25:f7:59:6c:f6:70:
38:c7:03:94:31:54:70:b1:27:25:a0:0e:7b:49:d0:55:6f:6b:
c4:83:21:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 6 04:38:41 2023 by rpki-client on console-ams.rpki-client.org