Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WmXL2N3-6g6PsieJ4UTRO7iM_g4.roa
File: WmXL2N3-6g6PsieJ4UTRO7iM_g4.roa (raw, json)
Hash identifier: sexNZLM58/+u7F0S/0W+8JPt2hRfzS7mkOFnH13Een8=
Subject key identifier: 5A:65:CB:D8:DD:FE:EA:0E:8F:B2:27:89:E1:44:D1:3B:B8:8C:FE:0E
Certificate issuer: /CN=583d76051017d0afa915fcfb790a00f4667b0a88
Certificate serial: 018B7E7D31E7D82F0F5DAD3BEC67550DE0D0
Authority key identifier: 58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WmXL2N3-6g6PsieJ4UTRO7iM_g4.roa
Signing time: Mon 30 Oct 2023 02:50:15 +0000
ROA not before: Mon 30 Oct 2023 02:50:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59441
IP address blocks: 194.225.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:7e:7d:31:e7:d8:2f:0f:5d:ad:3b:ec:67:55:0d:e0:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=583d76051017d0afa915fcfb790a00f4667b0a88
Validity
Not Before: Oct 30 02:50:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a65cbd8ddfeea0e8fb22789e144d13bb88cfe0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:22:8b:d7:88:df:e6:8d:cb:99:0b:c1:1d:0d:
cf:d3:49:1f:bf:8f:40:b4:e1:b0:68:da:73:b0:9f:
1c:93:94:f3:bb:dc:13:8a:b3:47:a2:96:1a:09:6f:
82:a5:ce:9b:59:fc:57:2d:8b:52:88:35:f1:1b:66:
1f:b7:7f:3a:52:a3:c0:95:3f:56:e9:4b:98:61:26:
84:c5:ab:4d:67:fd:36:08:ee:27:17:d0:43:42:a4:
09:a6:cd:90:4f:c5:20:26:91:22:82:50:87:55:85:
ce:e4:7b:1f:74:91:92:07:f7:53:1e:a3:cd:f0:b3:
d9:70:2a:20:eb:28:cd:0f:95:20:27:7c:00:67:8a:
6c:18:91:24:f5:fc:9b:68:16:26:d5:f8:5e:c0:4e:
17:49:63:a9:a0:c1:3c:2b:1d:33:53:41:60:67:ec:
fd:2b:a9:5d:6f:bf:5c:e9:ae:89:f3:25:61:93:8a:
6a:0f:64:07:8b:a4:01:cf:68:d0:9d:a9:99:22:0d:
50:1f:1b:dd:b3:ae:0e:9c:8c:cc:f9:92:d8:31:29:
e2:55:2c:d7:f4:90:9a:7d:9e:b9:72:9d:d7:fc:ec:
f0:68:0e:f9:ab:f9:45:29:29:84:5e:6d:30:cd:cb:
cf:ae:8f:f1:ed:28:cf:62:e5:5f:5c:0f:a1:55:14:
c4:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:65:CB:D8:DD:FE:EA:0E:8F:B2:27:89:E1:44:D1:3B:B8:8C:FE:0E
X509v3 Authority Key Identifier:
keyid:58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WmXL2N3-6g6PsieJ4UTRO7iM_g4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WD12BRAX0K-pFfz7eQoA9GZ7Cog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.225.78.0/24
Signature Algorithm: sha256WithRSAEncryption
58:f2:1a:95:43:07:00:cd:5a:cd:2d:6f:51:74:6d:b5:3b:a4:
df:80:87:db:e9:d6:57:d9:77:25:64:62:14:d6:d5:3f:9b:0c:
f1:b7:ba:e3:7c:99:18:1d:92:28:ed:8f:f2:ae:b8:61:1e:70:
ba:ee:a2:d1:95:cd:3f:36:9c:19:fb:b4:ef:a7:3d:69:53:10:
f6:0f:24:ba:18:5e:db:f5:7e:b8:67:4c:f4:5a:21:0d:9e:dd:
13:0f:73:a9:b8:4d:b0:64:94:93:e0:15:6f:5f:a6:4d:ce:a2:
2f:d6:43:de:f8:85:6e:43:c2:67:68:dd:f4:03:91:88:0d:34:
5c:69:3f:e7:7e:6b:ad:94:54:07:94:5c:a9:ce:70:fc:24:3f:
11:c6:57:08:fd:7e:36:46:90:6f:a5:15:f8:dd:a5:2c:20:27:
8c:49:46:22:04:2e:7e:7e:56:3b:0f:f7:a0:b5:5e:77:7a:ac:
1e:25:52:78:3e:aa:77:a2:e5:10:4f:9e:6c:8e:3f:67:61:ed:
2f:f8:ee:18:e9:db:f6:5c:16:5c:3e:a6:a5:61:df:65:aa:ed:
54:19:a9:60:78:df:f6:58:36:f3:a0:82:9a:81:40:fb:53:62:
71:f1:c9:99:9c:49:7f:cd:40:0d:01:b2:0c:57:d7:90:60:10:
f8:65:23:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:11 2024 by rpki-client on console-ams.rpki-client.org