Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/wxMHsu17tL52vEwbx0VYDKYO1Vw.roa
File: wxMHsu17tL52vEwbx0VYDKYO1Vw.roa (raw, json)
Hash identifier: KdOHv2QPHWCTVi1cwqFzLzVMRt907KubVwcsupuO1kQ=
Subject key identifier: C3:13:07:B2:ED:7B:B4:BE:76:BC:4C:1B:C7:45:58:0C:A6:0E:D5:5C
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01856F5DC490139AFC8F94BB4BF4BB8990CA
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/wxMHsu17tL52vEwbx0VYDKYO1Vw.roa
Signing time: Sun 01 Jan 2023 22:04:54 +0000
ROA not before: Sun 01 Jan 2023 22:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8971
IP address blocks: 193.81.246.0/24 maxlen: 24
193.80.22.0/24 maxlen: 24
193.80.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:c4:90:13:9a:fc:8f:94:bb:4b:f4:bb:89:90:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jan 1 22:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c31307b2ed7bb4be76bc4c1bc745580ca60ed55c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b1:b2:b0:84:7c:80:db:2f:3a:ce:73:83:a3:
00:39:ff:b9:23:c4:7a:db:96:35:7a:c4:9c:b7:93:
cb:17:cf:6e:54:44:a8:e5:c1:e9:54:31:0b:e1:5b:
25:39:3c:2f:aa:bf:45:27:33:6b:37:8a:dc:eb:99:
84:2c:f5:31:72:9d:45:58:66:a0:14:bc:97:39:17:
44:cb:a0:33:a9:ee:95:13:c1:01:8a:8a:ec:01:24:
08:ba:f5:f6:09:05:89:62:8e:c9:81:a7:f9:ce:6e:
ef:f3:61:42:8d:b0:6f:92:de:0a:6d:89:9e:6b:da:
fd:e7:fc:93:98:b4:3c:f2:a7:d0:63:55:08:14:ea:
58:92:d8:0a:23:34:db:30:32:14:68:ee:9e:97:3e:
8f:21:04:f8:75:41:b4:4c:10:0e:06:51:52:62:6b:
f8:df:f6:52:55:4b:f6:f2:a8:03:9d:d9:71:77:8f:
7e:e1:39:95:12:d4:fa:b8:96:5c:41:81:7f:a6:ce:
25:b2:a9:78:f9:d2:3b:7e:41:44:da:97:7f:c4:b3:
0a:20:03:c9:5f:8b:38:4d:80:a9:70:f8:3c:e0:9e:
c0:4f:fa:6f:65:34:b1:39:a9:79:08:ba:89:97:22:
b5:b6:d9:5a:78:37:03:df:70:66:af:81:d0:67:30:
f0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:13:07:B2:ED:7B:B4:BE:76:BC:4C:1B:C7:45:58:0C:A6:0E:D5:5C
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/wxMHsu17tL52vEwbx0VYDKYO1Vw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.80.22.0/24
193.80.42.0/24
193.81.246.0/24
Signature Algorithm: sha256WithRSAEncryption
83:13:0f:dd:ff:26:ee:fd:77:9f:aa:c4:d7:4d:c9:34:b7:89:
b5:38:18:05:80:30:5a:d6:80:0b:90:ff:f6:82:0d:09:18:87:
4f:73:23:c0:53:8c:c7:2a:76:87:a7:5c:c4:b9:ce:a7:92:ae:
c4:5c:69:36:30:c0:6b:a8:9b:28:00:a7:d9:9d:db:2e:1f:92:
84:03:3b:b2:65:29:0f:55:e7:40:b7:d2:fe:86:e9:65:f8:9e:
0e:3e:a6:a1:cd:db:ee:40:ff:03:9a:f5:e5:46:6c:04:5d:56:
b0:d7:89:f6:8c:4e:54:2a:4c:79:1b:64:2b:4f:65:a3:6a:1c:
48:4d:11:5c:fa:f8:f9:04:a2:b6:23:6b:01:3e:bd:39:b0:1a:
1b:c5:8c:44:29:79:29:16:19:b4:df:30:24:70:11:72:ec:b2:
cf:a5:b8:f7:4d:68:52:bd:56:bc:32:31:31:d1:74:a9:df:30:
c1:58:9b:10:6b:7e:ba:50:8e:35:26:8a:11:ec:98:43:95:f9:
40:43:71:85:fe:d8:e2:88:3f:91:36:b8:a4:6c:2b:9a:5c:8f:
bc:9c:e4:b4:51:a6:11:24:fe:40:83:f4:c3:55:48:57:47:2b:
74:b9:60:e3:67:dc:b5:24:cb:93:3a:0a:43:a5:d9:3b:a2:20:
bb:cd:64:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:38 2024 by rpki-client on console-fra.rpki-client.org