Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/W8KXbiZdOcCs0LgjfCXCyLVxEtA.roa
File: W8KXbiZdOcCs0LgjfCXCyLVxEtA.roa (raw, json)
Hash identifier: 5jB04HgUkWcAlEKv7Iz055o4t2z6z/5rE8BvXXRwKnc=
Subject key identifier: 5B:C2:97:6E:26:5D:39:C0:AC:D0:B8:23:7C:25:C2:C8:B5:71:12:D0
Certificate issuer: /CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Certificate serial: 01856B9C697AFA84D0A290E419675C857613
Authority key identifier: D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/W8KXbiZdOcCs0LgjfCXCyLVxEtA.roa
Signing time: Sun 01 Jan 2023 04:34:50 +0000
ROA not before: Sun 01 Jan 2023 04:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208652
IP address blocks: 185.72.51.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:9c:69:7a:fa:84:d0:a2:90:e4:19:67:5c:85:76:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Validity
Not Before: Jan 1 04:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5bc2976e265d39c0acd0b8237c25c2c8b57112d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6e:52:9e:f5:fa:cc:ba:c1:20:b0:eb:92:46:
bd:11:14:75:d1:ef:32:10:d9:66:bd:44:15:11:22:
07:76:d0:3d:29:e3:96:44:7e:14:8e:03:13:ec:14:
bc:f2:fe:46:4c:02:34:d1:ae:77:be:ab:27:25:22:
1f:bc:ba:9e:80:7e:6d:50:f3:50:b1:84:27:8e:a9:
00:39:cf:e6:bd:4a:3c:80:d5:fd:24:7a:7c:31:8a:
cf:7b:af:d3:f3:c0:2d:50:92:76:ee:bd:53:ba:65:
6f:b9:59:14:54:14:a3:cb:1b:d4:00:54:02:23:a8:
f5:16:a1:25:e9:c1:a3:90:f5:40:4d:31:f8:87:a4:
06:3d:16:8d:d8:ec:f4:00:03:4f:86:03:8d:79:20:
bc:f6:6d:ac:5d:cc:cd:e8:cf:53:dc:00:66:e3:ec:
62:31:f2:50:ea:41:f3:2c:73:f6:bc:c6:07:51:6c:
2d:d5:f3:ff:c0:c8:f2:76:44:77:d6:98:53:05:17:
2b:74:b9:d4:7b:78:a5:08:ec:be:a4:11:cc:a9:4a:
2d:9e:97:f4:dd:07:00:74:6c:b7:0d:c4:b3:e4:b0:
d6:a4:dd:d0:cf:42:24:e1:1e:61:d7:e4:85:b6:a0:
68:21:3a:03:2e:8f:31:a2:44:70:e9:f3:f3:26:b3:
75:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:C2:97:6E:26:5D:39:C0:AC:D0:B8:23:7C:25:C2:C8:B5:71:12:D0
X509v3 Authority Key Identifier:
keyid:D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/W8KXbiZdOcCs0LgjfCXCyLVxEtA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.51.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:0a:51:fd:02:88:a6:9e:3a:a4:0b:68:32:38:42:97:c8:e5:
34:a5:bb:92:01:fc:17:6c:46:c8:5c:df:2e:b6:35:63:b8:18:
ab:eb:87:06:a8:e0:e4:34:fd:77:59:86:9b:47:a7:eb:c2:71:
48:ba:67:41:4b:67:73:98:ef:53:44:c5:9f:7b:7d:a5:29:47:
d6:66:f2:4e:e8:a9:29:74:93:68:32:76:a4:8f:2a:13:bf:d6:
70:ad:9f:6f:ce:d7:09:64:61:09:7d:71:95:f5:28:2c:24:89:
53:bc:e8:d3:3f:7f:d1:4c:48:51:eb:60:8f:8f:d3:d0:92:46:
ce:a4:fa:ff:3b:58:f9:77:9c:4b:27:03:c5:a9:35:8f:a1:0d:
3d:1d:a7:9f:92:ad:21:e2:50:f8:1c:0a:1f:16:5b:75:d3:4a:
34:cc:85:ee:31:b7:67:c6:d1:61:82:de:5b:ac:d8:a1:fa:f2:
46:af:cf:bb:c8:34:03:28:8d:79:ba:10:d0:b2:da:3d:23:b6:
3c:03:27:ec:16:e1:4e:ae:53:68:dd:ca:b8:5d:7d:5e:1d:8c:
41:a9:9c:03:eb:16:77:ab:61:85:91:33:3d:2f:51:d5:72:ca:
4a:29:a5:d3:e4:a2:c0:e9:4e:78:a2:3f:64:b0:3a:db:7f:28:
15:fe:e0:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:43 2024 by rpki-client on console-ams.rpki-client.org