Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/wHNZRPJg0VJPkEtH2jzcrDyl41A.roa
File: wHNZRPJg0VJPkEtH2jzcrDyl41A.roa (raw, json)
Hash identifier: nn4uyV1mgRXIm/X4EJ8Q37B4+AYQ3SOgS4c+PDVWvu4=
Subject key identifier: C0:73:59:44:F2:60:D1:52:4F:90:4B:47:DA:3C:DC:AC:3C:A5:E3:50
Certificate issuer: /CN=b10780df36b5b942f660e403a2fe608a75e4e57d
Certificate serial: 01856FE70D839111C334C6A3A056F8C21869
Authority key identifier: B1:07:80:DF:36:B5:B9:42:F6:60:E4:03:A2:FE:60:8A:75:E4:E5:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sQeA3za1uUL2YOQDov5ginXk5X0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/wHNZRPJg0VJPkEtH2jzcrDyl41A.roa
Signing time: Mon 02 Jan 2023 00:34:51 +0000
ROA not before: Mon 02 Jan 2023 00:34:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2852
IP address blocks: 192.108.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e7:0d:83:91:11:c3:34:c6:a3:a0:56:f8:c2:18:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b10780df36b5b942f660e403a2fe608a75e4e57d
Validity
Not Before: Jan 2 00:34:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c0735944f260d1524f904b47da3cdcac3ca5e350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:fe:c0:01:3f:00:dc:db:0b:d5:1a:8f:16:72:
df:ab:69:03:96:24:f0:98:91:ec:b0:de:29:7b:aa:
e2:b9:1a:c8:99:c8:18:80:06:e6:b8:79:b0:d8:c0:
16:b2:46:c0:dc:6d:46:12:20:b5:2a:43:50:c5:eb:
71:4f:07:2b:79:3a:6c:39:4f:b5:fb:2c:63:e8:c3:
30:e4:fc:68:0d:2d:fb:dd:e1:10:bc:c7:5e:13:b9:
dc:52:fb:72:e2:23:99:4e:fc:4f:6c:a3:69:7a:fd:
11:a2:18:ca:a0:6c:68:4b:72:21:8a:5a:97:c2:1b:
0e:8b:de:3e:91:13:89:5f:7e:3f:67:7f:00:06:45:
67:86:4b:ae:f2:fe:83:13:04:d2:97:39:6e:4b:4b:
fa:e2:aa:e9:93:94:0b:b8:a6:29:75:df:67:3d:51:
0e:76:66:03:6d:20:b3:f0:cf:41:71:a1:d8:c3:57:
f9:05:e9:b3:ba:92:d3:fb:3c:f0:fe:30:f1:40:0d:
44:7d:0b:a8:e3:69:cd:80:13:d4:a5:2d:ef:4b:9b:
bd:a2:d9:1b:86:da:45:1a:26:86:8d:57:6b:17:ec:
ec:7c:62:67:0f:74:67:96:37:b0:dd:ff:22:2f:d0:
7d:c5:9a:39:f4:0c:ca:b3:b1:3f:45:38:9a:44:41:
f7:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:73:59:44:F2:60:D1:52:4F:90:4B:47:DA:3C:DC:AC:3C:A5:E3:50
X509v3 Authority Key Identifier:
keyid:B1:07:80:DF:36:B5:B9:42:F6:60:E4:03:A2:FE:60:8A:75:E4:E5:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sQeA3za1uUL2YOQDov5ginXk5X0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/wHNZRPJg0VJPkEtH2jzcrDyl41A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/sQeA3za1uUL2YOQDov5ginXk5X0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.108.128.0/24
Signature Algorithm: sha256WithRSAEncryption
62:bf:89:f2:4f:92:ab:1c:a1:80:e1:dc:0d:1f:1a:60:49:f7:
f6:00:e6:85:10:6e:17:77:c7:2e:82:fa:d7:cf:64:4f:01:9d:
4c:09:dd:47:f3:51:3e:5b:5f:87:06:23:7d:80:c1:45:26:35:
b7:48:d9:4a:a2:0d:8d:39:39:1e:8c:30:b2:a9:c4:14:f6:1f:
4e:2b:96:80:97:e1:77:47:c0:2d:64:8c:ff:5d:c0:fc:ae:76:
a2:d6:b8:b0:39:00:b3:8f:90:e7:a2:3e:b8:2e:e3:f1:6f:cf:
6c:b4:95:8d:97:25:35:47:ea:69:bb:33:81:fc:7b:8f:12:c1:
3b:6e:28:f9:c3:4a:b3:10:66:08:ed:45:94:c9:48:e7:28:be:
bd:26:42:aa:46:a9:e1:7a:45:b0:df:eb:64:e7:24:f0:e1:95:
2b:41:6a:7e:7e:cf:c4:65:8f:eb:c9:ad:b3:3a:90:45:e8:34:
a1:4d:e7:0d:52:6a:fb:9d:35:3c:a9:36:b9:c2:f6:58:35:31:
ff:69:64:91:b1:8e:db:7d:69:5c:d6:9f:32:43:f1:9e:24:8b:
54:68:95:c7:8a:30:7f:63:b1:af:3d:f1:6d:09:d4:44:6a:cd:
31:4c:4a:c1:0b:83:d2:d1:a3:a8:53:64:b4:1a:a2:0f:c4:e1:
93:63:3a:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:52 2024 by rpki-client on console-ams.rpki-client.org