Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/WneE63xqcybt8mYvP04f-60L9KU.roa
File: WneE63xqcybt8mYvP04f-60L9KU.roa (raw, json)
Hash identifier: gjIFOzgrZWrXED2u6MK+QpfJjlEwXB7+0BM8mg8RJKQ=
Subject key identifier: 5A:77:84:EB:7C:6A:73:26:ED:F2:66:2F:3F:4E:1F:FB:AD:0B:F4:A5
Certificate issuer: /CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Certificate serial: 01856C7812AA92A55F3031D37AC8DBB644A1
Authority key identifier: B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/WneE63xqcybt8mYvP04f-60L9KU.roa
Signing time: Sun 01 Jan 2023 08:34:46 +0000
ROA not before: Sun 01 Jan 2023 08:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210512
IP address blocks: 185.176.27.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:12:aa:92:a5:5f:30:31:d3:7a:c8:db:b6:44:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Validity
Not Before: Jan 1 08:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a7784eb7c6a7326edf2662f3f4e1ffbad0bf4a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:2c:86:a0:dc:fd:60:01:40:b7:56:60:dc:3d:
59:a0:85:f8:dc:63:89:39:1a:08:9f:9f:2c:bc:f5:
3f:fd:a6:3f:f5:36:02:43:95:3b:db:9d:bf:94:e9:
6c:25:5f:b4:c8:40:71:a9:b4:a1:d0:dd:ca:04:0c:
54:cd:cb:ef:54:2d:f5:5a:77:27:63:4f:6d:73:12:
93:1b:0e:e8:09:69:7e:0f:e1:20:56:86:85:e4:bd:
68:33:04:e3:2a:73:ac:ca:7b:44:52:94:97:b0:15:
7a:cc:45:2d:a4:de:f3:81:2c:01:c1:6a:17:42:74:
46:ef:8b:9a:ed:7c:c1:a0:c5:63:4a:42:97:ea:11:
99:2d:c1:1e:89:65:d3:e9:69:de:06:d7:a5:f1:4e:
7a:c5:eb:c9:3e:06:eb:f9:91:de:e7:94:67:81:63:
0a:c8:a9:46:ff:be:0b:30:fc:a1:b4:ad:d7:ae:ce:
4a:c9:b7:3e:cd:72:8b:25:74:a7:cd:88:d4:cb:ea:
2d:63:fe:33:b5:59:b7:fa:7b:83:44:18:64:42:8f:
56:5c:a6:19:3f:85:02:78:9c:24:21:e4:73:ee:36:
e6:07:a1:e7:c8:74:4a:23:f9:fa:ba:d2:65:97:3a:
10:0c:f9:e7:c3:75:9e:8b:95:30:fd:72:58:f1:fc:
8d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:77:84:EB:7C:6A:73:26:ED:F2:66:2F:3F:4E:1F:FB:AD:0B:F4:A5
X509v3 Authority Key Identifier:
keyid:B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/WneE63xqcybt8mYvP04f-60L9KU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.176.27.0/24
Signature Algorithm: sha256WithRSAEncryption
74:1e:80:a8:a5:20:8a:e5:02:8b:88:ac:a9:32:d5:7a:f7:45:
07:ab:b9:84:c2:89:ea:6f:3c:c9:cf:e7:f9:3c:b3:84:cc:35:
69:5d:93:83:66:93:62:c3:e1:9a:96:0c:ea:f3:9d:f9:7e:bd:
07:c4:aa:a0:6a:77:2e:3c:79:bf:ca:5c:de:2e:76:54:a8:e0:
c5:33:6e:6e:4d:05:fc:ec:aa:c5:c0:5c:9e:2d:c8:a8:f7:b5:
54:ca:24:de:d2:b0:85:26:d0:c4:6a:b3:bc:1c:29:6b:d2:92:
4d:c5:c9:a4:eb:76:0f:a6:dc:4a:7f:57:4b:e4:a2:9d:f1:65:
47:d0:b6:a5:79:64:9a:53:5a:46:31:07:17:9f:8e:a8:04:04:
e1:69:05:07:fb:50:b9:20:b9:99:8b:6f:06:50:4f:3d:d0:4a:
55:9f:96:33:39:73:68:98:ac:0a:4d:cd:bc:8a:d5:10:60:05:
58:02:a4:af:30:83:e6:a6:a1:b6:c0:13:de:21:ad:46:35:40:
9b:17:ba:32:2b:64:d9:a0:35:9c:84:a3:4b:99:f6:81:03:fd:
9d:42:63:ff:70:6d:88:81:55:88:0b:cd:dc:4e:5b:20:cf:2e:
70:54:db:71:39:86:51:c4:f7:5c:b5:e2:1e:6e:47:46:4d:34:
1d:e0:ea:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:35:43 2024 by rpki-client on console-ams.rpki-client.org