Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/307b98-c222-4835-8381-09c8fe724cd7/1/WH84exWHs5WOiEupnIqoBpd0XaA.roa
File: WH84exWHs5WOiEupnIqoBpd0XaA.roa (raw, json)
Hash identifier: arDlL+h19ELvaX4GkkjS58uDLJ2tkBefaz3xPwNVB7c=
Subject key identifier: 58:7F:38:7B:15:87:B3:95:8E:88:4B:A9:9C:8A:A8:06:97:74:5D:A0
Certificate issuer: /CN=d9f200e2d38683a7cb1ce5cabbee34c068834a0b
Certificate serial: 018877587A41E9C986B98F477D5FF2C173AF
Authority key identifier: D9:F2:00:E2:D3:86:83:A7:CB:1C:E5:CA:BB:EE:34:C0:68:83:4A:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fIA4tOGg6fLHOXKu-40wGiDSgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/307b98-c222-4835-8381-09c8fe724cd7/1/WH84exWHs5WOiEupnIqoBpd0XaA.roa
Signing time: Thu 01 Jun 2023 14:24:27 +0000
ROA not before: Thu 01 Jun 2023 14:24:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43189
IP address blocks: 193.134.240.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 04 Dec 2023 18:02:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:77:58:7a:41:e9:c9:86:b9:8f:47:7d:5f:f2:c1:73:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f200e2d38683a7cb1ce5cabbee34c068834a0b
Validity
Not Before: Jun 1 14:24:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=587f387b1587b3958e884ba99c8aa80697745da0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f1:3f:9d:7d:23:c4:7e:a1:47:46:d1:e6:d4:
09:90:9f:af:aa:1b:b5:0a:ad:72:38:05:21:a5:c9:
fc:44:63:6b:ba:5f:41:6e:6d:8c:64:69:4f:9f:6d:
7b:55:d7:fc:85:84:1b:fe:0b:c4:f2:96:bf:39:a5:
2d:71:40:ac:ac:33:b1:8d:4f:21:88:b8:77:e5:7c:
b9:fb:e6:a9:e1:0c:0c:cb:10:93:0b:c8:06:a1:4c:
78:ab:fd:14:89:ee:1f:95:c1:e2:83:5d:a9:e7:e7:
2b:5f:39:7a:8f:07:fd:d8:8f:3a:37:9c:13:68:bb:
2d:94:5d:d6:75:29:ba:e2:98:48:93:ac:5e:e6:7e:
93:80:01:29:57:65:7e:8c:56:1a:04:01:24:d4:58:
71:5e:fe:41:b3:52:88:6d:b5:99:35:73:dd:2a:63:
36:2e:13:41:be:38:65:90:a8:ac:03:06:15:0f:a6:
06:ea:71:e0:cc:80:8d:ea:69:0a:54:c1:1b:1c:56:
8e:1e:32:03:1e:b1:76:93:55:79:58:ab:95:8b:8d:
56:2f:9d:65:90:f5:20:10:8d:55:f0:10:2f:a9:94:
3c:5d:d1:db:bb:37:da:ac:dd:7b:85:5c:24:6d:6c:
60:4b:82:dc:d1:77:0a:5c:30:28:44:5d:84:19:a1:
b3:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:7F:38:7B:15:87:B3:95:8E:88:4B:A9:9C:8A:A8:06:97:74:5D:A0
X509v3 Authority Key Identifier:
keyid:D9:F2:00:E2:D3:86:83:A7:CB:1C:E5:CA:BB:EE:34:C0:68:83:4A:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fIA4tOGg6fLHOXKu-40wGiDSgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/307b98-c222-4835-8381-09c8fe724cd7/1/WH84exWHs5WOiEupnIqoBpd0XaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/307b98-c222-4835-8381-09c8fe724cd7/1/2fIA4tOGg6fLHOXKu-40wGiDSgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.134.240.0/22
Signature Algorithm: sha256WithRSAEncryption
64:b4:b8:56:2c:2c:3e:e9:34:b9:c6:fd:20:6f:8c:2f:26:52:
30:e4:7a:70:5f:9e:50:3c:70:d8:c0:34:3e:51:d9:95:40:33:
cc:27:08:09:50:fc:07:ec:e7:92:5e:4f:e4:76:60:1f:10:9b:
8c:e2:e3:8e:0f:1e:7e:19:b5:4f:c5:e5:0a:04:7a:f9:17:13:
1f:6f:e2:ee:88:57:0e:a6:d0:ae:3c:d3:83:88:8f:c5:ff:0d:
16:d0:fc:e8:34:5b:79:4b:37:fd:dc:be:ea:26:a0:84:e8:9a:
c7:65:0a:48:40:d6:e6:04:cb:28:32:3d:6a:f6:19:16:bb:2c:
96:2a:ff:18:e0:46:83:7e:04:25:36:5e:fd:90:66:03:d0:84:
2b:d1:8d:c5:b5:d4:25:53:84:4b:1f:d2:d1:cf:d5:b8:c1:79:
30:76:7a:22:20:89:98:00:9c:f8:f0:4f:08:8f:e5:c2:77:c9:
96:a6:b2:bb:0b:73:61:fa:05:69:2b:29:58:d8:a1:9f:73:2b:
09:d8:c6:ee:6a:0b:20:68:65:b9:67:60:b1:17:53:a5:bd:8a:
51:97:de:15:dc:13:a8:70:ef:72:44:c0:79:32:1c:a6:a8:ea:
1b:71:53:57:4d:b5:6b:ea:3b:79:96:8d:d1:6c:a6:de:81:a9:
62:01:cb:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:47 2024 by rpki-client on console-fra.rpki-client.org