Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/70b33b-d1eb-4bbb-97d6-0592453df7d2/1/wUQ_wPA-NlpVnpQ4Z36hQ-cRmXI.roa
File: wUQ_wPA-NlpVnpQ4Z36hQ-cRmXI.roa (raw, json)
Hash identifier: dl+zE+SWNiydfwES1fpb0+FK8cK8OPkUI4yKkOnCRpo=
Subject key identifier: C1:44:3F:C0:F0:3E:36:5A:55:9E:94:38:67:7E:A1:43:E7:11:99:72
Certificate issuer: /CN=04c5f1d1779eb709090365db982917adfd0f8049
Certificate serial: 018E09CAFABB3FB2A6007BA2ABD5D76BB0A3
Authority key identifier: 04:C5:F1:D1:77:9E:B7:09:09:03:65:DB:98:29:17:AD:FD:0F:80:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMXx0XeetwkJA2XbmCkXrf0PgEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/70b33b-d1eb-4bbb-97d6-0592453df7d2/1/wUQ_wPA-NlpVnpQ4Z36hQ-cRmXI.roa
Signing time: Mon 04 Mar 2024 14:08:01 +0000
ROA not before: Mon 04 Mar 2024 14:08:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19905
IP address blocks: 195.114.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Mar 2024 21:20:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:09:ca:fa:bb:3f:b2:a6:00:7b:a2:ab:d5:d7:6b:b0:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04c5f1d1779eb709090365db982917adfd0f8049
Validity
Not Before: Mar 4 14:08:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c1443fc0f03e365a559e9438677ea143e7119972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:7d:46:9d:e0:54:fe:cc:dc:c9:ea:81:dd:e1:
cd:2a:38:20:69:39:60:63:ba:22:c1:2f:8f:c4:75:
88:37:f7:e8:f6:59:07:0c:d5:b8:fb:28:1b:99:85:
9c:86:bd:78:63:18:a8:03:37:5e:02:25:e5:b1:7b:
1f:b6:68:62:af:ea:6c:5f:77:fe:c7:0a:40:c7:1b:
68:ff:b1:c6:81:c2:73:f1:23:18:43:fd:73:de:fe:
67:22:50:09:f8:59:67:ed:e2:5c:b4:50:74:dd:18:
f6:5e:60:91:af:34:c9:d4:7c:c6:20:d6:37:02:1c:
11:f5:71:5b:3c:3a:98:59:d2:b8:31:13:c8:5e:f7:
db:27:48:7f:81:19:44:77:7a:e0:44:de:7a:65:59:
e9:4e:0f:b5:60:bc:05:47:fd:0c:55:92:54:9a:d2:
ca:d8:cb:a2:27:c0:64:1a:83:16:da:5d:be:93:e4:
98:be:89:17:d6:6a:92:ae:bf:2b:f3:14:57:a6:e6:
3a:6d:df:e2:35:7d:a4:e5:26:19:2c:ff:bd:03:7b:
fc:45:3f:73:18:ef:27:58:29:91:2f:17:37:bf:2d:
6e:66:0f:60:b7:c7:cc:61:86:07:f0:0a:7a:a5:fc:
1d:52:9e:e3:12:52:88:ad:43:97:4e:b5:6e:2b:53:
8a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:44:3F:C0:F0:3E:36:5A:55:9E:94:38:67:7E:A1:43:E7:11:99:72
X509v3 Authority Key Identifier:
keyid:04:C5:F1:D1:77:9E:B7:09:09:03:65:DB:98:29:17:AD:FD:0F:80:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMXx0XeetwkJA2XbmCkXrf0PgEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/70b33b-d1eb-4bbb-97d6-0592453df7d2/1/wUQ_wPA-NlpVnpQ4Z36hQ-cRmXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/70b33b-d1eb-4bbb-97d6-0592453df7d2/1/BMXx0XeetwkJA2XbmCkXrf0PgEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.114.106.0/24
Signature Algorithm: sha256WithRSAEncryption
11:c8:d5:a2:7b:f7:83:9d:04:b9:81:20:c2:2d:47:5c:1e:66:
45:25:cc:7c:42:de:d8:ca:b8:34:8a:32:21:8d:02:fa:84:ad:
d8:1d:78:e2:78:81:e7:5b:a4:59:7f:08:db:9c:3a:5e:6b:c5:
44:0e:35:27:a9:20:08:24:83:31:44:b3:8f:94:28:e0:fa:98:
1f:c8:36:11:77:58:2e:18:de:f2:be:ba:7b:9a:01:2d:04:b3:
bc:7a:f5:67:ce:e3:11:40:b1:e2:ab:5f:ec:dd:7c:9d:1e:96:
53:4a:a7:af:ba:08:73:0a:4c:8b:95:d0:fe:3b:12:11:28:ce:
cf:d1:12:59:e8:0a:f7:b8:a6:6e:cb:44:1d:a4:39:ea:29:69:
33:30:07:b5:84:22:0a:c8:aa:e9:e9:31:e0:dc:52:01:85:a4:
7e:05:26:d4:9e:e7:e9:1b:4b:d4:7c:30:23:15:4c:fa:20:bd:
47:ff:c9:9b:d0:36:68:31:8f:a7:72:e4:d7:ea:64:3c:ad:4e:
02:4c:e6:87:26:61:0c:aa:5b:3d:4f:52:03:a0:f2:77:57:d0:
6f:fa:c3:ba:01:59:47:3d:7a:1a:48:4d:90:40:ab:21:ae:3b:
8c:75:0f:11:f9:9c:d0:a8:ac:fc:1a:5a:6c:ab:43:df:e7:d1:
67:66:f3:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:48 2024 by rpki-client on console-ams.rpki-client.org