Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/efc9f1-bec3-4771-b480-0184e81aead9/1/WGInt7pS2kfBW2qejaNCkvWqBec.roa
File: WGInt7pS2kfBW2qejaNCkvWqBec.roa (raw, json)
Hash identifier: IWtYCXOcDGPkaPeZwAfDAZETK4nUYnGMOhLtV0xeHX0=
Subject key identifier: 58:62:27:B7:BA:52:DA:47:C1:5B:6A:9E:8D:A3:42:92:F5:AA:05:E7
Certificate issuer: /CN=81cdc17dad03bcb9bc34a9e377ab2070852dca65
Certificate serial: 01857271369B649EB95828BAD52B8A31DC86
Authority key identifier: 81:CD:C1:7D:AD:03:BC:B9:BC:34:A9:E3:77:AB:20:70:85:2D:CA:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gc3Bfa0DvLm8NKnjd6sgcIUtymU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/efc9f1-bec3-4771-b480-0184e81aead9/1/WGInt7pS2kfBW2qejaNCkvWqBec.roa
Signing time: Mon 02 Jan 2023 12:25:00 +0000
ROA not before: Mon 02 Jan 2023 12:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8412
IP address blocks: 45.12.96.0/23 maxlen: 24
45.12.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:36:9b:64:9e:b9:58:28:ba:d5:2b:8a:31:dc:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cdc17dad03bcb9bc34a9e377ab2070852dca65
Validity
Not Before: Jan 2 12:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=586227b7ba52da47c15b6a9e8da34292f5aa05e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:c4:2f:1b:39:e7:8b:31:89:7c:bc:bc:15:64:
9f:27:8b:8d:c8:ec:52:87:f8:d6:36:29:b4:78:b3:
02:74:dc:94:1c:e9:d4:51:50:1e:f8:19:d5:a0:6f:
45:da:51:58:f6:8c:fc:08:a6:48:8a:47:ad:0d:52:
e3:da:0d:3b:66:7c:a7:e4:df:c8:e1:4f:94:28:32:
fe:91:fc:c2:69:1f:9b:da:0f:d2:cd:f0:05:a1:5a:
f8:70:ab:cb:8d:34:2b:4b:6f:8d:b1:f7:8d:c8:0d:
e4:9b:79:07:b5:ad:96:30:c3:cb:fa:02:37:80:46:
05:dc:cd:7c:ca:bc:6a:27:2f:e4:ff:56:1c:70:93:
9f:2c:57:57:cd:b2:bf:9d:8b:14:cc:de:ed:c1:9c:
03:b4:94:f3:95:5a:d2:43:d1:50:ff:af:06:31:a1:
17:c3:ee:d8:31:99:3a:1f:6c:42:94:69:41:7b:94:
fa:8e:43:9d:ef:b4:08:e7:61:06:b0:6b:72:36:d8:
f1:ff:2f:de:53:2a:9f:5a:84:12:ff:7c:0e:99:cf:
18:2c:63:56:2b:fd:06:c9:c8:d1:b6:ee:ba:2e:7b:
13:37:63:82:aa:dd:02:2d:83:34:bf:89:4f:05:d1:
6e:db:70:6c:f6:66:52:7c:f2:1c:55:f6:17:98:f1:
f2:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:62:27:B7:BA:52:DA:47:C1:5B:6A:9E:8D:A3:42:92:F5:AA:05:E7
X509v3 Authority Key Identifier:
keyid:81:CD:C1:7D:AD:03:BC:B9:BC:34:A9:E3:77:AB:20:70:85:2D:CA:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gc3Bfa0DvLm8NKnjd6sgcIUtymU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/efc9f1-bec3-4771-b480-0184e81aead9/1/WGInt7pS2kfBW2qejaNCkvWqBec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/efc9f1-bec3-4771-b480-0184e81aead9/1/gc3Bfa0DvLm8NKnjd6sgcIUtymU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.96.0-45.12.98.255
Signature Algorithm: sha256WithRSAEncryption
68:d2:8c:ea:3e:c6:7b:56:c2:bd:63:12:86:cb:3e:fb:03:de:
cd:c9:67:a4:1d:bd:77:24:55:85:2d:80:b0:0d:9c:35:a4:b5:
af:de:f4:6a:73:db:e8:39:61:52:a4:96:bd:91:e1:d4:ea:9f:
a2:9b:90:b3:a1:c4:bb:08:fa:da:e0:0f:0a:c5:e0:27:33:3b:
f2:5a:eb:18:0f:49:8d:a3:89:70:27:78:e3:34:bc:5e:4c:2d:
9d:c0:25:e4:89:62:8a:7d:c5:48:c8:4e:5f:ae:7c:d2:6a:73:
dc:69:9f:c7:54:3e:f1:49:52:6b:dd:79:fa:b5:22:38:76:c7:
d6:88:ef:6c:a9:6f:0f:dc:57:b5:b2:24:1f:27:10:34:77:eb:
f7:4f:5f:7a:98:9b:2b:b3:50:06:a7:c6:06:fa:1b:e4:44:be:
59:0e:53:fd:99:c3:ca:34:cd:1a:1b:90:4b:44:ae:5a:89:07:
91:95:88:ca:93:bd:8d:25:a8:eb:bd:1e:de:9d:22:a3:9e:e0:
4c:c8:ee:80:01:0b:9c:47:2a:ea:a7:94:0f:97:16:61:03:ae:
ce:e8:4e:67:b0:c2:d2:54:33:20:8e:e0:8f:bf:4f:73:c8:07:
86:78:c0:86:eb:73:de:b7:8a:cc:65:e1:31:5e:c9:77:f9:46:
65:49:5a:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:57 2024 by rpki-client on console-fra.rpki-client.org