Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/wnVgRpg9beXHMxUytWdkgCObkB4.roa
File: wnVgRpg9beXHMxUytWdkgCObkB4.roa (raw, json)
Hash identifier: hRsscKW0cg42PSFM5fh6rEyejSf0L3gJKldQ1Wt9V0g=
Subject key identifier: C2:75:60:46:98:3D:6D:E5:C7:33:15:32:B5:67:64:80:23:9B:90:1E
Certificate issuer: /CN=22f344a63dcb70e89057deb8e2761dc45165881a
Certificate serial: 01893DE9A77EF2C48407634CDDAAD8D77C81
Authority key identifier: 22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/wnVgRpg9beXHMxUytWdkgCObkB4.roa
Signing time: Mon 10 Jul 2023 03:47:50 +0000
ROA not before: Mon 10 Jul 2023 03:47:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 85.28.52.0/23 maxlen: 23
194.31.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:3d:e9:a7:7e:f2:c4:84:07:63:4c:dd:aa:d8:d7:7c:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22f344a63dcb70e89057deb8e2761dc45165881a
Validity
Not Before: Jul 10 03:47:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2756046983d6de5c7331532b5676480239b901e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:58:36:40:39:bd:c5:8f:27:00:77:10:1d:b4:
7e:fd:df:00:78:dd:01:c4:ef:cf:ed:0d:25:5f:25:
f7:8c:72:38:22:92:a5:d9:82:e0:3b:09:96:d5:fa:
40:19:fe:44:9a:1e:7b:7e:fa:fd:73:b1:14:16:21:
3d:ef:61:f5:7f:9c:44:eb:ee:5b:26:e6:ec:44:4a:
f9:84:8f:d5:36:a6:23:9e:40:43:86:30:78:b3:e6:
81:08:2b:26:3f:91:fa:2b:d7:bc:e9:ab:a3:e1:52:
62:db:1d:76:75:b9:9f:a4:04:c4:22:ef:77:a1:42:
29:82:a8:d9:a7:78:cf:ed:75:ec:48:61:a3:0a:e3:
75:20:b3:2e:5c:c8:2e:2e:8d:31:ea:79:f2:8b:93:
00:f7:48:db:d3:82:ed:a3:87:7e:3a:49:d0:6c:2e:
cf:45:8e:20:16:98:fb:36:ff:14:f1:6e:a8:bc:03:
75:71:8f:62:d9:cc:ab:a8:3d:b0:ef:57:eb:e6:1f:
c5:8f:d5:6f:f0:94:3f:76:70:6e:80:2d:a1:44:24:
88:bd:8a:19:d9:4c:41:48:8a:60:6a:7a:d0:cf:14:
85:85:fa:a5:a3:18:08:1f:3b:e0:ea:f2:0b:8e:6e:
10:58:02:c4:3d:4a:5d:d8:1d:39:60:cf:18:f3:75:
ca:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:75:60:46:98:3D:6D:E5:C7:33:15:32:B5:67:64:80:23:9B:90:1E
X509v3 Authority Key Identifier:
keyid:22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/wnVgRpg9beXHMxUytWdkgCObkB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/IvNEpj3LcOiQV9644nYdxFFliBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.28.52.0/23
194.31.157.0/24
Signature Algorithm: sha256WithRSAEncryption
47:dc:3f:63:61:b2:93:8b:1d:b9:a8:ba:cc:ff:6a:56:29:3b:
b6:d3:55:86:44:1c:a8:0b:5c:ba:2e:ea:c8:9e:53:70:1a:ed:
6f:e2:c4:04:ad:d1:e9:65:de:2c:76:74:f6:58:80:dc:9f:cd:
cd:0b:b1:05:68:4f:84:9d:b1:f5:6d:7c:90:91:25:4f:9c:63:
07:3d:4d:75:14:c6:dd:8c:10:36:97:f0:85:ab:6e:6c:9b:3e:
e3:ec:70:c6:31:4b:21:98:a4:97:28:80:f0:e3:9a:e0:30:20:
61:f0:13:d4:fa:8f:cb:f6:52:fa:af:c1:1e:a9:eb:de:61:4a:
85:08:c7:b6:1a:9d:91:62:9a:b9:19:aa:95:5c:5b:62:79:d3:
d2:d5:82:84:6c:c5:7d:76:c6:d8:71:7e:43:1d:58:00:d4:57:
f6:46:56:7f:d2:04:a4:a6:b6:9e:7e:4f:8a:e6:ea:f0:6b:a8:
f1:2a:6b:02:8b:68:53:22:f8:23:f8:4f:d5:5f:11:82:b5:e6:
03:36:1b:c3:5d:0c:d8:c9:30:c8:86:dd:94:04:9b:6c:77:26:
1b:bd:4e:85:0e:3c:dc:23:84:ee:22:8a:ac:1f:e3:f6:e5:ba:
1f:61:cc:87:f5:ca:4c:66:44:51:12:85:e8:cb:b1:40:34:dc:
71:b3:a6:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:58 2024 by rpki-client on console-ams.rpki-client.org