Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/WuMngGqgiTU9LLO92bY0JnmxskA.roa
File: WuMngGqgiTU9LLO92bY0JnmxskA.roa (raw, json)
Hash identifier: izkYtZ9XzrH9OaNa/ADLMJe0cWB716pdEh81RJu0n54=
Subject key identifier: 5A:E3:27:80:6A:A0:89:35:3D:2C:B3:BD:D9:B6:34:26:79:B1:B2:40
Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Certificate serial: 018570796C4CE0F8013F640216C59664B102
Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/WuMngGqgiTU9LLO92bY0JnmxskA.roa
Signing time: Mon 02 Jan 2023 03:14:43 +0000
ROA not before: Mon 02 Jan 2023 03:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 23470
IP address blocks: 185.73.243.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:6c:4c:e0:f8:01:3f:64:02:16:c5:96:64:b1:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Validity
Not Before: Jan 2 03:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ae327806aa089353d2cb3bdd9b6342679b1b240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:78:e4:65:ca:b3:19:1e:1d:93:7c:5d:9e:68:
9c:40:b1:37:1a:98:b8:8c:51:51:0c:43:af:11:ae:
a7:66:8c:53:8e:1c:c7:91:b5:bd:7a:e4:00:f8:08:
72:56:64:b4:dc:4f:5c:79:d2:1c:e7:42:fc:75:aa:
76:02:5d:06:77:e2:83:ab:a8:53:22:ba:0c:e6:6c:
d5:cb:75:14:8d:eb:ab:02:53:3b:fe:fb:80:7d:4a:
88:42:60:ac:1f:e8:6b:50:3e:1b:7a:19:3f:cc:f8:
b9:8d:08:20:dd:43:a8:97:8d:a5:67:a0:f7:15:3d:
a2:c6:87:76:78:53:ee:a4:7e:c1:28:7b:07:74:40:
af:da:2b:bf:f8:3a:6a:24:15:9b:4c:f1:5a:68:79:
a0:95:82:f7:3f:a4:72:7b:a1:54:4b:eb:c5:12:93:
0d:72:a8:be:1d:42:5e:72:59:56:20:c3:bd:b2:a8:
67:93:ee:75:c8:92:0b:f2:13:af:9a:d3:81:a7:9c:
8e:54:9e:e1:4b:dd:ba:4f:c0:38:76:ee:62:c5:75:
8d:5a:45:c0:26:5b:55:7b:b3:f2:83:17:9d:22:fb:
19:95:6a:f0:bc:88:69:b9:d4:8f:8c:e5:af:53:e6:
df:5b:de:52:49:3a:51:da:54:6c:c7:12:f6:d4:b5:
62:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:E3:27:80:6A:A0:89:35:3D:2C:B3:BD:D9:B6:34:26:79:B1:B2:40
X509v3 Authority Key Identifier:
keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/WuMngGqgiTU9LLO92bY0JnmxskA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.243.0/24
Signature Algorithm: sha256WithRSAEncryption
07:37:ff:a4:a6:be:c9:71:ce:a1:67:2d:b3:8f:61:4a:05:08:
9d:1f:d0:42:84:58:b7:a2:23:77:63:38:6c:d7:6d:37:d1:6e:
98:1d:e7:9f:c0:dd:bc:3c:62:d1:eb:70:dc:c9:db:29:62:0b:
d7:1a:23:f0:3c:f5:db:9c:7a:a2:03:f5:68:b6:59:c1:07:9f:
74:42:59:19:fe:d1:de:bb:bd:95:de:d3:3e:0b:58:a1:47:50:
b7:5d:b8:5e:61:e5:1f:53:66:b1:cc:c8:9e:34:e0:9f:a5:0b:
04:ce:bf:13:66:1f:4c:ec:83:6b:22:16:bb:87:5e:6f:65:32:
c2:16:6e:3b:95:6c:93:64:71:85:29:3b:5a:3b:63:5e:e0:7e:
e6:ea:50:c2:58:a1:a7:25:73:9c:15:60:73:41:b9:97:6a:84:
dd:f1:c4:cc:e3:01:23:39:52:cc:cb:89:2b:e1:a4:37:e8:2c:
c9:e6:fd:85:b2:95:1e:d7:ec:09:70:74:29:ce:08:7c:a0:34:
15:72:f3:98:e1:72:0e:10:0f:c3:9d:38:91:14:b6:cd:ef:b2:
72:ef:89:4e:f6:d0:19:0c:d2:75:67:24:a3:31:e3:42:ed:46:
cc:34:2a:67:cb:9f:0e:4e:6e:a6:9e:61:8e:2f:f9:6f:60:70:
b8:43:9b:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:10:34 2024 by rpki-client on console-ams.rpki-client.org