Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/W-foqMrPk0ORbYFTw3W5yRgOaUI.roa
File: W-foqMrPk0ORbYFTw3W5yRgOaUI.roa (raw, json)
Hash identifier: 6h/QRaA/ssozP4V0xSDzAHvQOtly/OC/aquhrzMSERQ=
Subject key identifier: 5B:E7:E8:A8:CA:CF:93:43:91:6D:81:53:C3:75:B9:C9:18:0E:69:42
Certificate issuer: /CN=708029a674177efd99252275094618c0c9cfbd1d
Certificate serial: 018E6B5793F333EB73AAC9567B03C285838C
Authority key identifier: 70:80:29:A6:74:17:7E:FD:99:25:22:75:09:46:18:C0:C9:CF:BD:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/W-foqMrPk0ORbYFTw3W5yRgOaUI.roa
Signing time: Sat 23 Mar 2024 12:44:45 +0000
ROA not before: Sat 23 Mar 2024 12:44:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 185.167.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Mar 2024 20:28:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:6b:57:93:f3:33:eb:73:aa:c9:56:7b:03:c2:85:83:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=708029a674177efd99252275094618c0c9cfbd1d
Validity
Not Before: Mar 23 12:44:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5be7e8a8cacf9343916d8153c375b9c9180e6942
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:9f:f6:6c:59:f0:95:13:87:b3:d2:e0:02:c9:
c2:d7:55:e9:7b:2e:42:95:72:e1:d2:d9:e1:87:94:
09:02:35:66:20:6d:2e:0f:ba:34:34:fd:68:fe:ef:
6b:76:0c:8e:e6:64:99:d9:75:ff:b1:01:b1:79:94:
07:d9:9d:8e:c8:05:23:e7:43:03:3d:a9:da:f1:81:
77:07:f1:5e:72:c4:98:9f:2e:3d:de:b3:72:23:c8:
c7:08:ae:8b:01:fa:d6:ca:aa:d9:8f:5e:a5:fe:bb:
51:48:6d:b2:a1:e7:7f:ec:df:dc:d2:a9:86:00:c4:
f1:d4:7a:0b:e1:2f:af:72:8d:e1:73:5c:10:dc:a6:
9e:17:30:44:e6:f5:15:a0:96:c8:2a:8f:b5:ed:14:
75:72:a7:ea:e6:17:30:0c:ea:1e:08:dc:93:fa:c2:
0c:ca:8a:91:d5:2b:c5:4e:01:e8:ae:e0:50:7a:06:
19:53:d6:87:b0:0f:c3:59:c5:f0:fe:5e:25:31:00:
dd:9b:15:31:c5:be:92:0d:74:73:9b:b6:d8:c7:d2:
2a:87:cc:1a:ce:fb:18:81:da:8a:da:c0:c8:20:1b:
19:27:49:60:9f:0a:59:d5:45:2b:7c:cb:88:f1:9e:
e4:48:3c:7b:9d:45:af:ed:22:95:6e:f6:4c:02:f5:
3a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:E7:E8:A8:CA:CF:93:43:91:6D:81:53:C3:75:B9:C9:18:0E:69:42
X509v3 Authority Key Identifier:
keyid:70:80:29:A6:74:17:7E:FD:99:25:22:75:09:46:18:C0:C9:CF:BD:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/W-foqMrPk0ORbYFTw3W5yRgOaUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.253.0/24
Signature Algorithm: sha256WithRSAEncryption
97:d9:79:cc:1f:1c:69:fa:b7:fd:42:6d:ca:0c:d9:7f:68:b0:
79:88:6a:6c:71:58:63:84:c1:8a:8b:51:57:73:88:f3:3c:2f:
e1:71:44:8b:29:5b:7b:ab:40:ae:5f:07:f1:dd:a5:f2:bd:ea:
8b:aa:e9:ff:c9:1a:40:3c:f2:13:5f:68:b3:ae:41:50:ee:dc:
8e:22:5e:96:2d:cd:86:65:09:99:e6:6d:b9:47:b6:c2:81:8b:
cb:78:d8:73:ed:b1:9b:d7:64:c2:ab:5e:02:fa:e6:80:ff:40:
8b:0d:ad:47:b2:dd:16:fd:a8:fd:73:ea:8e:ce:d3:25:d4:dc:
55:eb:3b:7b:ed:63:20:fe:5e:e1:e8:34:54:96:56:52:3a:80:
5f:18:1a:80:cf:b8:7d:0a:49:82:c0:6c:19:5c:12:41:e5:3d:
94:a7:b9:c7:43:ce:14:89:67:fd:db:0b:f8:e2:e2:d7:30:59:
67:72:7e:ba:e3:67:c8:9e:cf:75:6d:b8:3a:e0:f5:93:a2:ec:
f7:1d:83:61:3c:80:31:c6:44:b4:cd:19:9d:53:26:fe:d9:d4:
c4:24:34:cb:ac:e4:c1:a7:68:87:7a:7e:0d:bd:7b:de:3b:63:
57:56:a7:c1:92:1c:4d:e2:73:b7:bd:d5:eb:77:59:80:dc:66:
93:b8:cc:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:05 2024 by rpki-client on console-ams.rpki-client.org