Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/Wn3mSwG-5fTULShETv65cJJWSpE.roa
File: Wn3mSwG-5fTULShETv65cJJWSpE.roa (raw, json)
Hash identifier: 3t1vHuqm0l9knzKbs1vK/Cq78ywcLGtbZvERDwHjVXA=
Subject key identifier: 5A:7D:E6:4B:01:BE:E5:F4:D4:2D:28:44:4E:FE:B9:70:92:56:4A:91
Certificate issuer: /CN=68c0f2d0776f7e1d349075881c35e9d387463405
Certificate serial: 019128D3A4CC124E913228D6B01477A75A43
Authority key identifier: 68:C0:F2:D0:77:6F:7E:1D:34:90:75:88:1C:35:E9:D3:87:46:34:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMDy0Hdvfh00kHWIHDXp04dGNAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/Wn3mSwG-5fTULShETv65cJJWSpE.roa
Signing time: Tue 06 Aug 2024 17:54:04 +0000
ROA not before: Tue 06 Aug 2024 17:54:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204203
IP address blocks: 194.0.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Aug 2024 15:59:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:28:d3:a4:cc:12:4e:91:32:28:d6:b0:14:77:a7:5a:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c0f2d0776f7e1d349075881c35e9d387463405
Validity
Not Before: Aug 6 17:54:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a7de64b01bee5f4d42d28444efeb97092564a91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:3a:6f:31:60:ac:b3:9b:03:53:dc:30:99:9d:
d1:59:6e:be:fa:b9:57:95:f5:0b:3e:e4:20:68:14:
93:3c:9d:75:66:e4:ac:c3:80:bc:ec:20:83:ec:01:
dc:b6:7a:a7:f4:2f:5e:8e:5d:70:3a:d8:31:5a:26:
9f:4d:2b:1c:bc:b0:28:32:de:69:cd:39:43:03:aa:
39:95:ff:08:f7:b7:04:85:93:66:06:fa:4b:eb:ab:
7f:75:01:59:3a:67:70:d4:99:ec:79:4f:39:92:b6:
aa:b2:3d:90:9f:75:bb:c5:c0:62:0c:dc:4a:54:56:
b2:0e:19:90:ab:7a:95:71:b4:a9:09:b1:e4:16:23:
83:fd:cc:f4:cc:2e:e6:6a:57:46:54:d7:b8:75:37:
a2:95:91:72:82:db:fa:6f:3c:b0:11:cf:7f:14:26:
fc:b9:e5:ad:25:ca:fd:cc:27:d5:7e:91:84:f9:e7:
db:1f:ab:81:c5:28:16:22:91:49:8f:ad:ff:65:92:
d8:24:73:16:28:36:d0:84:d6:e2:d6:97:ad:a0:87:
b3:bc:a9:37:7c:72:68:e7:e9:22:c5:09:8e:da:db:
f0:f5:ed:b1:18:02:53:27:b4:ba:b6:7e:93:cf:12:
d5:38:8f:cd:89:bb:ab:39:16:0f:26:a8:e8:bb:f1:
92:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:7D:E6:4B:01:BE:E5:F4:D4:2D:28:44:4E:FE:B9:70:92:56:4A:91
X509v3 Authority Key Identifier:
keyid:68:C0:F2:D0:77:6F:7E:1D:34:90:75:88:1C:35:E9:D3:87:46:34:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMDy0Hdvfh00kHWIHDXp04dGNAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/Wn3mSwG-5fTULShETv65cJJWSpE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/aMDy0Hdvfh00kHWIHDXp04dGNAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.234.0/24
Signature Algorithm: sha256WithRSAEncryption
73:c3:b2:2c:7c:61:76:07:22:13:68:e5:53:0e:88:f5:aa:c5:
cb:25:d3:ca:a7:45:56:69:1b:59:81:57:36:f6:7e:02:fb:af:
cd:23:8c:bf:65:10:b5:c5:45:69:04:77:ac:31:9d:56:d2:fe:
a3:b5:4f:60:e8:a3:59:c6:f9:1a:11:12:26:1d:e2:4a:2d:dc:
70:4d:b0:90:6e:4b:ce:28:fa:90:c1:1b:85:60:c6:1f:7e:bc:
57:09:8d:e5:be:24:b7:c9:72:2f:04:1b:57:91:9f:fa:af:16:
5e:c7:c5:89:dd:1c:de:c7:2f:cc:c8:eb:4c:b6:cd:f9:55:8d:
92:8e:4f:51:d0:49:52:34:9f:29:2e:34:ed:6e:72:2a:46:9c:
94:78:ea:dc:be:fe:5d:b0:d3:47:33:5c:6f:74:22:a3:97:11:
15:55:1e:f6:17:2c:92:6b:66:cb:fb:ed:4c:d7:dd:a1:9e:e3:
64:38:53:4d:62:f8:78:f4:4e:e0:60:38:7f:ea:53:a4:b5:43:
88:d4:7e:25:06:2b:df:c2:d6:13:48:1a:07:15:ee:24:e6:07:
4b:9f:9a:ea:40:91:15:a7:80:b6:12:95:fa:3f:bf:50:0c:21:
4a:ef:7b:93:c8:24:ab:4a:14:95:4c:27:86:41:2d:a0:fe:54:
fa:30:8e:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:29:24 2025 by rpki-client