Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/64fe7d-862d-4e1a-9fd0-06b41ef1398d/1/WAFs7pEw5MEtPTfC1GxYuMLwb3U.roa
File: WAFs7pEw5MEtPTfC1GxYuMLwb3U.roa (raw, json)
Hash identifier: rEIXz4uewhkNCq2pX5tlJUksWho78FlBmfdia1LwELg=
Subject key identifier: 58:01:6C:EE:91:30:E4:C1:2D:3D:37:C2:D4:6C:58:B8:C2:F0:6F:75
Certificate issuer: /CN=2956584b70ce847c1a9b400548b14db031bedff2
Certificate serial: 01877C27E35D1C809F359DD2EEAE53A2B7CF
Authority key identifier: 29:56:58:4B:70:CE:84:7C:1A:9B:40:05:48:B1:4D:B0:31:BE:DF:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KVZYS3DOhHwam0AFSLFNsDG-3_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/64fe7d-862d-4e1a-9fd0-06b41ef1398d/1/WAFs7pEw5MEtPTfC1GxYuMLwb3U.roa
Signing time: Thu 13 Apr 2023 19:46:41 +0000
ROA not before: Thu 13 Apr 2023 19:46:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50225
IP address blocks: 195.24.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Sep 2023 12:02:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7c:27:e3:5d:1c:80:9f:35:9d:d2:ee:ae:53:a2:b7:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2956584b70ce847c1a9b400548b14db031bedff2
Validity
Not Before: Apr 13 19:46:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58016cee9130e4c12d3d37c2d46c58b8c2f06f75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f0:fc:c3:bd:43:68:22:be:0c:3c:24:ec:58:
98:66:ad:85:5b:c6:17:76:f4:8a:8d:b3:df:c4:58:
a1:f3:10:c3:9c:04:c2:b4:49:af:35:47:cd:d3:bf:
01:05:a4:f3:e9:5a:04:e8:7f:12:5e:b6:6e:df:4c:
75:52:90:ad:6b:28:91:b6:74:58:66:24:cf:3d:1e:
db:12:10:e6:04:07:f0:3d:05:9a:6a:09:73:b9:c7:
6a:d0:c6:93:7f:dc:d1:cf:b3:85:34:b6:1f:c9:d1:
5f:f7:04:b9:b4:e7:c7:eb:04:50:55:a6:c7:4f:2d:
e3:47:bb:22:93:2e:20:a5:2c:51:13:43:30:5e:eb:
a7:74:4b:02:28:9f:30:94:ec:a7:31:e4:af:12:f6:
7a:88:fd:4b:ea:fe:40:43:19:e3:e1:c0:db:e0:b6:
2c:bf:37:44:70:68:62:be:44:0a:21:0d:73:32:20:
4f:ec:2e:f0:f6:f4:42:48:b5:f0:49:87:87:24:b4:
52:d1:fe:50:d0:37:b2:ae:c2:5d:20:29:28:72:30:
66:23:0b:f5:ff:1e:e2:98:ad:15:a4:e3:94:6a:c7:
d7:f7:46:59:e5:b0:b8:49:20:14:e7:20:68:f7:1f:
01:72:a9:70:69:31:92:ac:9e:a1:b5:93:b7:24:80:
a5:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:01:6C:EE:91:30:E4:C1:2D:3D:37:C2:D4:6C:58:B8:C2:F0:6F:75
X509v3 Authority Key Identifier:
keyid:29:56:58:4B:70:CE:84:7C:1A:9B:40:05:48:B1:4D:B0:31:BE:DF:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KVZYS3DOhHwam0AFSLFNsDG-3_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/64fe7d-862d-4e1a-9fd0-06b41ef1398d/1/WAFs7pEw5MEtPTfC1GxYuMLwb3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/64fe7d-862d-4e1a-9fd0-06b41ef1398d/1/KVZYS3DOhHwam0AFSLFNsDG-3_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.24.232.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:a0:3c:c0:7e:e7:1c:db:40:26:7d:06:e2:89:56:1f:ba:e5:
b8:cc:e5:1e:12:57:1f:0a:e1:4c:3c:07:52:30:b1:85:72:91:
5f:ec:0a:28:89:e7:65:f0:fc:f5:5f:fe:8d:94:5e:2c:b9:61:
c9:f8:ad:31:97:5f:cb:e8:bf:09:c7:71:fd:aa:47:68:ba:f8:
ec:f8:7a:09:a6:0b:97:18:09:34:ab:3c:e5:62:68:43:96:d9:
9d:2e:bd:59:70:3d:ef:7f:86:8b:e4:8a:0f:35:bf:e2:80:49:
5e:74:1f:d7:20:5f:81:e8:76:b0:b0:0f:89:74:4b:7e:b1:4e:
aa:c2:be:2c:a1:2e:45:9f:6d:77:76:f0:4f:bb:98:2b:a8:92:
e7:41:29:cd:8a:06:14:e3:01:ae:28:56:db:3d:9b:c2:25:e1:
3f:96:93:4d:74:04:da:34:73:d7:67:f9:cb:df:83:34:5c:42:
6b:09:6a:8e:fe:a3:17:6d:3f:fc:96:64:42:c7:c3:f2:9e:71:
a6:5d:41:de:e8:30:2f:5d:09:ae:a5:d9:69:82:32:bc:8c:a3:
cb:5e:ec:f5:03:3d:38:fe:8c:de:d8:c8:0d:cc:31:db:a4:58:
af:21:7f:1f:be:c9:cf:0e:f1:e8:74:4f:04:e2:da:53:ec:ab:
17:0a:0e:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:30 2024 by rpki-client on console-ams.rpki-client.org