Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/WdR6pfp1P16_I7cU0w_J-XhCStM.roa
File: WdR6pfp1P16_I7cU0w_J-XhCStM.roa (raw, json)
Hash identifier: 0c2GbtQQZLiHZ2UyHQNtc/iEFa6GvxylRAn439uLANQ=
Subject key identifier: 59:D4:7A:A5:FA:75:3F:5E:BF:23:B7:14:D3:0F:C9:F9:78:42:4A:D3
Certificate issuer: /CN=9da140e8028e6d537600e0888a9af5a971c5db46
Certificate serial: 018BFC4635ADFD2EE7A39A93249E5E82005F
Authority key identifier: 9D:A1:40:E8:02:8E:6D:53:76:00:E0:88:8A:9A:F5:A9:71:C5:DB:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/naFA6AKObVN2AOCIipr1qXHF20Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/WdR6pfp1P16_I7cU0w_J-XhCStM.roa
Signing time: Thu 23 Nov 2023 13:02:21 +0000
ROA not before: Thu 23 Nov 2023 13:02:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204954
IP address blocks: 192.58.60.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:fc:46:35:ad:fd:2e:e7:a3:9a:93:24:9e:5e:82:00:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9da140e8028e6d537600e0888a9af5a971c5db46
Validity
Not Before: Nov 23 13:02:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59d47aa5fa753f5ebf23b714d30fc9f978424ad3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:41:c0:46:64:3a:95:1d:bd:9e:ea:b9:aa:38:
b9:83:4f:b9:5a:73:5a:26:08:a5:ce:16:5b:ae:20:
61:8f:61:6c:56:47:1c:3e:cf:06:09:56:53:f1:5f:
e1:e1:61:3d:33:f0:95:84:d1:e4:78:76:ac:b3:52:
d3:e5:40:6a:a2:a7:91:b8:6f:b2:04:ea:91:7c:37:
bd:64:67:e8:34:08:a5:d6:ea:76:52:f5:09:8e:b8:
14:99:e4:35:2b:6e:bc:1d:0d:7d:fb:09:04:73:49:
9a:a8:6c:55:dc:30:61:ef:be:a4:df:49:a9:d6:05:
6f:b0:d3:df:f8:fd:8f:05:c0:25:b6:ea:48:01:8f:
e9:28:4e:9e:ae:7b:6c:c6:eb:fb:42:a8:0b:34:8a:
49:11:ed:56:6c:8d:ca:f0:66:08:50:52:7a:b6:32:
81:f2:0e:c0:ab:24:ee:f0:13:71:1a:6b:0e:d1:a9:
b2:12:01:7b:e6:58:de:e1:82:1e:11:e7:8b:6f:9b:
81:b2:6d:c1:52:7b:59:51:7e:1b:09:41:70:94:f9:
e4:ae:36:df:13:b3:ce:5c:09:d6:e5:0f:b4:93:0b:
f0:de:77:89:8c:c9:cb:0c:86:6c:3b:2d:bb:41:96:
3b:10:80:f7:64:0d:3a:01:d4:cc:73:61:09:2c:44:
31:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:D4:7A:A5:FA:75:3F:5E:BF:23:B7:14:D3:0F:C9:F9:78:42:4A:D3
X509v3 Authority Key Identifier:
keyid:9D:A1:40:E8:02:8E:6D:53:76:00:E0:88:8A:9A:F5:A9:71:C5:DB:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/naFA6AKObVN2AOCIipr1qXHF20Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/WdR6pfp1P16_I7cU0w_J-XhCStM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/naFA6AKObVN2AOCIipr1qXHF20Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.58.60.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:93:87:a1:bd:20:40:9b:ab:c1:c4:a1:3d:a6:5d:4c:03:5e:
fb:3c:7a:79:80:07:6a:c9:d9:9d:c0:3e:5e:8d:6b:b9:6b:55:
e1:72:d6:20:7c:87:d9:07:b7:e2:73:d5:c7:bc:e7:e7:d7:36:
39:af:12:17:29:f8:73:d3:52:ab:f4:f5:d7:3b:c0:29:45:64:
08:bf:77:99:d6:62:72:44:28:5f:9e:50:7d:0f:bd:f6:57:c6:
ed:de:4a:2b:c4:e6:57:e4:1f:34:b0:7a:af:1a:cc:e0:57:af:
f8:af:aa:43:e8:1d:12:bd:32:ac:ff:d3:d2:8c:d3:e8:82:24:
06:f0:16:03:ac:8d:53:88:04:0e:10:cf:21:91:8e:b4:31:68:
5d:18:8b:7c:07:02:87:e5:77:ab:80:12:e5:78:2e:cf:93:4a:
47:2d:f3:94:1e:e4:5b:79:24:d8:a5:1c:b0:62:8c:6d:c3:e4:
fc:35:9c:55:1f:5e:5b:75:be:92:5f:bf:0c:6d:6c:51:e5:cf:
94:39:1b:42:06:e8:a7:5e:32:ba:25:32:23:51:9d:d4:7f:10:
f5:42:38:1c:a9:52:6d:07:4b:9c:f4:40:72:06:ba:84:f0:eb:
78:af:47:c7:05:e6:7f:c4:6c:f2:e8:8a:a8:6a:c2:d3:f3:cb:
7a:57:ee:06
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYv8RjWt/S7no5qTJJ5eggBfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkYTE0MGU4MDI4ZTZkNTM3NjAwZTA4ODhhOWFmNWE5NzFj
NWRiNDYwHhcNMjMxMTIzMTMwMjIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OWQ0N2FhNWZhNzUzZjVlYmYyM2I3MTRkMzBmYzlmOTc4NDI0YWQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0UHARmQ6lR29nuq5qji5g0+5WnNa
JgilzhZbriBhj2FsVkccPs8GCVZT8V/h4WE9M/CVhNHkeHass1LT5UBqoqeRuG+y
BOqRfDe9ZGfoNAil1up2UvUJjrgUmeQ1K268HQ19+wkEc0maqGxV3DBh776k30mp
1gVvsNPf+P2PBcAltupIAY/pKE6erntsxuv7QqgLNIpJEe1WbI3K8GYIUFJ6tjKB
8g7AqyTu8BNxGmsO0amyEgF75lje4YIeEeeLb5uBsm3BUntZUX4bCUFwlPnkrjbf
E7POXAnW5Q+0kwvw3neJjMnLDIZsOy27QZY7EID3ZA06AdTMc2EJLEQxqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFnUeqX6dT9evyO3FNMPyfl4QkrTMB8GA1UdIwQY
MBaAFJ2hQOgCjm1TdgDgiIqa9alxxdtGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmFGQTZBS09iVk4yQU9DSWlwcjFxWEhGMjBZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC8xMjY3NTUtZWVkZC00MGIxLTk1ZTgt
YTRjYThiOWMyMDViLzEvV2RSNnBmcDFQMTZfSTdjVTB3X0otWGhDU3RNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC8xMjY3NTUtZWVkZC00MGIxLTk1ZTgtYTRjYThiOWMyMDVi
LzEvbmFGQTZBS09iVk4yQU9DSWlwcjFxWEhGMjBZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwDo8MA0G
CSqGSIb3DQEBCwUAA4IBAQBqk4ehvSBAm6vBxKE9pl1MA177PHp5gAdqydmdwD5e
jWu5a1XhctYgfIfZB7fic9XHvOfn1zY5rxIXKfhz01Kr9PXXO8ApRWQIv3eZ1mJy
RChfnlB9D732V8bt3korxOZX5B80sHqvGszgV6/4r6pD6B0SvTKs/9PSjNPogiQG
8BYDrI1TiAQOEM8hkY60MWhdGIt8BwKH5XergBLleC7Pk0pHLfOUHuRbeSTYpRyw
Yoxtw+T8NZxVH15bdb6SX78MbWxR5c+UORtCBuinXjK6JTIjUZ3UfxD1QjgcqVJt
B0uc9EByBrqE8Ot4r0fHBeZ/xGzy6IqoasLT88t6V+4G
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:12 2024 by rpki-client on console-fra.rpki-client.org