Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/CWXC_ti0Tqg60lPLh3vPEBziYn4.roa
File: CWXC_ti0Tqg60lPLh3vPEBziYn4.roa (raw, json)
Hash identifier: RWs/AgPlcItCz78XAx58QU1X56Pp/5znc9NZ1OuLxGA=
Subject key identifier: 09:65:C2:FE:D8:B4:4E:A8:3A:D2:53:CB:87:7B:CF:10:1C:E2:62:7E
Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Certificate serial: 018A71E9D82A20438531E65682FE12DDB3F6
Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/CWXC_ti0Tqg60lPLh3vPEBziYn4.roa
Signing time: Thu 07 Sep 2023 23:11:05 +0000
ROA not before: Thu 07 Sep 2023 23:11:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 5.249.184.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Oct 2023 12:37:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:71:e9:d8:2a:20:43:85:31:e6:56:82:fe:12:dd:b3:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Validity
Not Before: Sep 7 23:11:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0965c2fed8b44ea83ad253cb877bcf101ce2627e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:78:20:50:55:15:9d:db:eb:17:cd:b0:bc:99:
e8:ba:d5:65:b3:4d:cc:ae:57:7a:e5:69:e8:db:a2:
fd:a4:77:b9:08:54:ac:de:35:5d:2c:1d:39:fc:f0:
e2:bf:fd:a1:50:58:e4:72:c7:14:c7:8c:9f:f2:bb:
46:c1:f1:c6:3e:19:15:ff:42:b0:69:c0:b9:4f:3c:
94:3a:a0:f4:d3:a6:6d:8c:ec:28:d8:8e:4c:3c:7e:
a0:b7:d1:0b:93:17:a1:7e:c6:b6:ef:d1:5e:f2:4e:
1a:79:d3:f6:49:ad:72:21:f3:6a:83:e6:f9:24:98:
55:22:bc:d8:6d:c7:ec:21:58:50:71:44:b6:6c:97:
06:8a:99:ad:ef:6c:ca:16:37:fc:1f:00:61:de:21:
d0:f4:25:25:81:08:67:63:59:a2:fc:8b:25:6c:d8:
d8:d8:ed:04:0f:a4:63:64:1f:e7:99:66:66:88:81:
1c:6a:73:3e:7c:a9:bc:86:2f:c2:92:40:92:d0:32:
6f:dd:c3:90:98:3b:96:0d:45:c4:0d:17:9d:7e:3f:
9a:5d:86:d2:97:16:01:cc:06:b6:7b:1d:01:f1:f5:
c0:93:fd:a4:d8:bf:54:f9:75:d7:f7:9f:e4:a8:f0:
f9:ae:e5:6b:ec:57:02:0f:96:e8:0d:e7:41:9b:aa:
fe:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:65:C2:FE:D8:B4:4E:A8:3A:D2:53:CB:87:7B:CF:10:1C:E2:62:7E
X509v3 Authority Key Identifier:
keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/CWXC_ti0Tqg60lPLh3vPEBziYn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.249.184.0/22
Signature Algorithm: sha256WithRSAEncryption
98:42:9a:47:26:ea:da:e4:c1:09:6b:2d:a9:06:66:fe:08:06:
68:dc:85:17:b0:59:cb:cf:a0:c5:0e:0c:d1:fb:e5:94:6d:93:
04:23:4d:5a:3d:bd:7d:bc:25:28:a1:64:c8:ab:b6:86:15:ba:
cd:0b:e0:76:1b:07:0b:b0:79:f9:ae:e4:8d:c6:96:af:33:1c:
a7:e4:e3:65:10:90:4d:82:bf:b5:68:48:c2:bf:8e:dd:dd:f3:
91:30:02:62:77:0a:79:2a:3b:76:ef:c8:70:6f:20:50:ea:47:
24:27:a1:1b:0b:bb:57:d3:1b:7e:c0:00:62:46:fc:4b:0b:b1:
8a:3b:47:a5:f8:27:fe:de:0d:06:11:f1:c0:3f:19:f6:33:5e:
3c:77:98:48:c5:ff:19:26:4f:cc:ac:00:0d:1b:6e:35:57:a6:
29:9c:0e:24:50:7c:7e:a0:f1:79:42:75:a4:66:3f:2d:b1:6e:
5b:c7:c7:62:9a:21:2a:b2:41:44:46:e0:6b:40:77:74:56:1f:
0c:af:7c:42:c0:a7:3b:46:c7:b1:fe:95:9a:b5:c2:44:68:26:
98:9b:eb:a5:af:44:9c:ec:50:b5:d8:cb:5a:5c:7c:7c:e7:62:
8a:20:4e:50:60:48:3b:aa:8c:2c:08:44:3e:cf:5e:69:78:2c:
04:b0:5e:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:09 2024 by rpki-client on console-ams.rpki-client.org