Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/WcnUxF6PZxwaO9YFvOEV9fwTUMM.roa
File: WcnUxF6PZxwaO9YFvOEV9fwTUMM.roa (raw, json)
Hash identifier: FdziVnS2jE0YpEXowyu1zQFuKIuExWyZUupmLxtqjLw=
Subject key identifier: 59:C9:D4:C4:5E:8F:67:1C:1A:3B:D6:05:BC:E1:15:F5:FC:13:50:C3
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 01869C497720AF046731F16F16BC40EA5DAE
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/WcnUxF6PZxwaO9YFvOEV9fwTUMM.roa
Signing time: Wed 01 Mar 2023 08:28:25 +0000
ROA not before: Wed 01 Mar 2023 08:28:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208555
IP address blocks: 87.107.152.0/24 maxlen: 24
87.107.153.0/24 maxlen: 24
87.107.166.0/24 maxlen: 24
87.107.167.0/24 maxlen: 24
62.220.126.0/23 maxlen: 24
87.107.174.0/24 maxlen: 24
81.12.30.0/23 maxlen: 24
87.107.175.0/24 maxlen: 24
87.107.144.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9c:49:77:20:af:04:67:31:f1:6f:16:bc:40:ea:5d:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Mar 1 08:28:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59c9d4c45e8f671c1a3bd605bce115f5fc1350c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:16:04:ca:71:ce:7a:02:a2:27:c7:ad:9a:52:
44:0e:e4:f5:4b:25:84:57:c6:9a:85:b8:3b:4a:e5:
42:fc:1f:58:51:c9:f8:b2:e3:02:73:a6:0e:59:2e:
df:08:fd:10:e4:36:53:3f:2c:13:30:5f:2d:fe:68:
70:ee:56:55:b9:06:df:df:f6:6e:bb:9d:ad:54:81:
f1:30:15:85:46:30:dc:74:e8:91:11:00:b1:ee:80:
29:d4:b8:74:a9:05:c4:39:97:c1:82:94:e6:e1:b1:
6c:6f:40:c4:ed:1d:c8:3f:01:c2:2a:8f:35:2e:a8:
44:30:73:17:3d:4a:e0:c0:b3:7c:61:b5:dd:8b:6b:
f9:b5:9b:09:74:c2:46:b4:76:b0:34:ad:a8:92:62:
b4:2b:d7:45:78:12:47:35:f2:9b:75:d5:bc:d5:d3:
37:45:c0:3b:99:90:89:49:15:47:45:30:b0:4c:33:
2b:98:80:91:ce:05:11:ff:2f:d5:1f:db:ad:50:4d:
2c:da:49:f6:0f:fa:1c:b7:c0:49:23:7f:f7:50:cb:
a5:78:fb:76:61:ea:84:4e:60:0b:dc:c9:15:d1:a4:
b3:43:c4:a3:d4:39:14:38:0d:11:a8:b0:98:54:a0:
b7:bd:74:04:be:51:70:a7:b6:c0:f9:9c:9f:3a:13:
2f:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:C9:D4:C4:5E:8F:67:1C:1A:3B:D6:05:BC:E1:15:F5:FC:13:50:C3
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/WcnUxF6PZxwaO9YFvOEV9fwTUMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.126.0/23
81.12.30.0/23
87.107.144.0/24
87.107.152.0/23
87.107.166.0/23
87.107.174.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:4b:3b:66:ef:80:85:81:50:72:d5:04:54:06:b9:f0:6f:d0:
69:fd:6f:37:0e:1b:93:f3:a1:35:be:24:5d:f0:ce:c7:39:4a:
89:af:b4:05:a4:d1:a8:af:06:e2:1b:4d:4a:54:4c:06:f0:a4:
2b:58:5d:41:21:05:03:e7:17:a5:8f:1f:e4:8f:a0:31:c5:41:
02:dd:b4:f0:1d:12:cc:18:0e:0c:c8:45:5b:72:44:55:b9:0f:
7c:c0:8d:96:0f:74:31:ba:bb:ae:c8:fd:40:73:6d:2a:7b:2b:
2a:65:26:d5:83:2d:37:48:e3:e0:47:9f:c0:f8:b7:57:fb:43:
34:4d:6d:86:fe:67:84:70:f9:c2:69:93:3c:dd:fa:42:58:ba:
c2:8a:5e:39:cb:bc:64:22:93:1e:56:e6:07:09:ed:44:2b:7a:
bb:fb:4d:09:ee:19:5f:fe:56:87:b6:3f:a3:4e:c6:00:58:f2:
0b:3c:20:cb:8e:ce:d2:7a:e5:22:77:b3:bc:e2:a6:3a:6d:91:
b3:3e:7e:2a:8a:9f:6f:54:86:01:79:52:32:52:69:0a:d9:ec:
05:16:16:94:fc:d2:db:eb:8c:08:1b:7e:13:2b:99:b7:42:11:
d6:ff:15:d4:75:66:d8:d6:4e:e0:e6:93:33:5b:9c:0f:c9:6c:
5a:0b:e3:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:39 2023 by rpki-client on console-fra.rpki-client.org