Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/Wdh1TrTS320HZ9we9EMvs5BLxZc.roa
File: Wdh1TrTS320HZ9we9EMvs5BLxZc.roa (raw, json)
Hash identifier: n4IyXQSmy9BsPsLHcMaeaZgOIJZS4zFLrfQgUVrZ6bs=
Subject key identifier: 59:D8:75:4E:B4:D2:DF:6D:07:67:DC:1E:F4:43:2F:B3:90:4B:C5:97
Certificate issuer: /CN=5806da5a59251275ceb18694e17415352aedd6aa
Certificate serial: 0193CC45BC47D3199A73F66B8C115C36BB6B
Authority key identifier: 58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/Wdh1TrTS320HZ9we9EMvs5BLxZc.roa
Signing time: Sun 15 Dec 2024 21:42:22 +0000
ROA not before: Sun 15 Dec 2024 21:42:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 91.237.119.0/24 maxlen: 24
185.220.146.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sat 21 Dec 2024 06:32:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:cc:45:bc:47:d3:19:9a:73:f6:6b:8c:11:5c:36:bb:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5806da5a59251275ceb18694e17415352aedd6aa
Validity
Not Before: Dec 15 21:42:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59d8754eb4d2df6d0767dc1ef4432fb3904bc597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:d4:f9:70:27:71:9e:5e:35:e3:87:be:2c:7e:
6a:95:b3:10:86:b3:ef:a4:fb:74:90:4f:49:da:ae:
2b:26:0f:18:32:56:7e:06:90:e2:7c:c4:d3:48:a5:
86:c5:55:a4:39:6d:8f:88:6d:54:ca:bb:d9:89:25:
e3:00:c4:65:f6:6b:df:f9:f4:a9:0c:57:e8:b8:1e:
d8:7f:3d:ff:dc:2a:41:86:52:d3:ec:9f:7c:13:15:
fd:bc:b0:a3:8a:3d:0e:9a:53:11:95:0a:ef:1a:d8:
e6:e1:c2:48:cf:cc:9c:aa:ad:d5:15:e5:64:f5:ad:
e2:4b:c0:2a:d8:f3:88:7c:1b:36:43:46:a8:19:ea:
c6:41:f4:d7:e4:75:b5:d4:62:9e:72:7e:5e:0a:c7:
09:6f:ca:72:02:cd:8d:f7:34:e7:32:e7:0a:91:eb:
dd:c1:f7:35:4c:20:5d:21:25:6a:ec:e8:e0:ea:53:
e0:20:a7:c2:d2:75:94:82:be:0f:99:ea:97:63:52:
ed:77:3a:6b:b6:1c:f9:7b:0e:96:f9:9b:8f:fa:3b:
6f:9d:22:e3:18:54:95:f4:59:d5:26:4e:01:27:4c:
d0:ce:87:1c:2a:e8:bc:9b:7e:58:3a:88:ee:1e:bb:
ae:0f:05:db:31:34:34:3f:d7:f3:ab:1c:64:e7:f0:
ad:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:D8:75:4E:B4:D2:DF:6D:07:67:DC:1E:F4:43:2F:B3:90:4B:C5:97
X509v3 Authority Key Identifier:
keyid:58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/Wdh1TrTS320HZ9we9EMvs5BLxZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.119.0/24
185.220.146.0/23
Signature Algorithm: sha256WithRSAEncryption
d2:2e:b9:37:27:e5:19:99:5a:02:93:cc:0f:67:8a:06:40:c6:
97:f3:b4:1e:b0:42:6b:ac:4a:7d:1b:e0:f1:9f:1a:9c:83:4a:
3e:41:8d:cd:1c:86:44:60:7d:61:7d:f5:2f:47:66:5f:d1:df:
38:1a:92:b0:bd:74:4f:3b:ac:18:a1:26:f0:de:25:88:52:5a:
8a:eb:20:32:ed:e6:82:5e:0d:42:4c:28:11:40:62:33:a0:0f:
17:4f:59:79:41:fb:a5:49:bb:7e:2d:60:54:0c:16:fb:b7:27:
94:34:60:d2:39:83:42:9b:5c:94:de:b0:f2:c6:f6:d6:f1:45:
bd:83:63:d8:43:50:f0:81:b1:65:71:25:5e:cf:f4:ec:30:87:
86:db:3c:fc:be:00:c7:92:1b:5b:3d:82:06:4c:b0:4c:1b:a0:
cb:f2:69:9e:19:5a:de:a4:a8:50:62:e8:40:94:4f:70:92:0e:
ef:dc:79:54:21:9c:fc:67:54:aa:fe:5e:b7:16:e6:1d:72:81:
e4:ba:05:09:92:c8:cf:02:00:3a:20:9a:61:40:f4:94:46:39:
a6:47:7f:b5:12:ab:20:2e:e5:56:f4:69:bb:96:dd:cf:cc:78:
da:e9:11:d7:3b:a5:a5:45:b1:e1:e3:23:ed:fa:1d:32:11:a1:
b8:6c:06:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:39:59 2025 by rpki-client