Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/wdYfpQC4W667CcAlefX_2tg4naw.roa
File: wdYfpQC4W667CcAlefX_2tg4naw.roa (raw, json)
Hash identifier: O1wgLfzFtSdjxUeR+XoVJ7Vhb5QRRr5N26wLEmxthVM=
Subject key identifier: C1:D6:1F:A5:00:B8:5B:AE:BB:09:C0:25:79:F5:FF:DA:D8:38:9D:AC
Certificate issuer: /CN=05f3e160172ecc75c8cab1bae271be3ebf407a80
Certificate serial: 0185E8B9E1A597DA90CC8A760FD4C5576F3E
Authority key identifier: 05:F3:E1:60:17:2E:CC:75:C8:CA:B1:BA:E2:71:BE:3E:BF:40:7A:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfPhYBcuzHXIyrG64nG-Pr9AeoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/wdYfpQC4W667CcAlefX_2tg4naw.roa
Signing time: Wed 25 Jan 2023 11:39:34 +0000
ROA not before: Wed 25 Jan 2023 11:39:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44815
IP address blocks: 89.167.220.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e8:b9:e1:a5:97:da:90:cc:8a:76:0f:d4:c5:57:6f:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f3e160172ecc75c8cab1bae271be3ebf407a80
Validity
Not Before: Jan 25 11:39:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c1d61fa500b85baebb09c02579f5ffdad8389dac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:1e:d3:f9:eb:9e:6d:32:e2:15:e2:f1:f6:16:
e5:ba:2c:3d:b3:25:d0:8a:08:64:62:f1:5d:aa:52:
90:ef:1e:d5:96:2d:13:8a:0c:dc:49:38:b9:97:65:
b9:f2:3f:ff:26:86:f2:2d:e9:e6:08:be:bd:fe:73:
e7:0e:37:63:7c:fc:95:a1:f9:92:4d:e5:6a:4d:6a:
23:5c:7b:97:de:14:94:f5:3f:ce:37:94:73:7b:c6:
e4:67:1d:f6:5f:c4:ae:c1:a3:ab:9f:55:a2:b3:29:
2f:3f:a6:60:6d:9f:aa:db:fd:9d:c6:df:79:fa:6f:
ed:b4:e7:d3:25:33:21:2f:32:c1:6c:a2:fa:76:8f:
5e:06:36:1a:9a:c4:14:64:c8:f3:af:9e:0a:78:24:
c5:aa:0a:6d:cb:e1:51:a0:55:1f:88:ed:7e:5d:07:
41:e6:a9:28:7d:8b:4d:3a:38:f0:3f:a3:c5:a7:b5:
15:d1:70:39:87:46:82:89:aa:c7:eb:30:08:ed:30:
b6:f5:c2:51:8c:9e:9c:d9:7a:27:09:57:49:74:bc:
2e:3c:b7:57:3b:01:fa:3b:be:51:5a:9e:1e:c0:fd:
94:15:b2:68:f0:65:bf:2f:2c:ba:9d:0e:8e:9d:e1:
46:04:10:09:3d:5f:34:be:fe:43:88:18:e4:4d:81:
76:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:D6:1F:A5:00:B8:5B:AE:BB:09:C0:25:79:F5:FF:DA:D8:38:9D:AC
X509v3 Authority Key Identifier:
keyid:05:F3:E1:60:17:2E:CC:75:C8:CA:B1:BA:E2:71:BE:3E:BF:40:7A:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfPhYBcuzHXIyrG64nG-Pr9AeoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/wdYfpQC4W667CcAlefX_2tg4naw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/BfPhYBcuzHXIyrG64nG-Pr9AeoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.167.220.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:df:7b:1f:94:45:f6:86:8e:97:c7:11:13:c6:f3:e3:48:14:
7c:ea:fa:07:63:f1:f4:3f:81:55:1a:cd:2b:21:fd:9b:5e:06:
1c:71:d1:e1:78:3e:49:82:c9:a1:bb:9c:f9:5b:d5:18:08:fc:
ef:5f:62:23:e3:82:29:54:d4:cb:89:de:58:ed:f5:51:18:d3:
b6:7c:10:46:55:14:4f:fe:48:96:e9:3e:26:54:07:ad:e7:f2:
95:51:8d:58:85:9a:d1:8f:f3:f2:aa:e0:8a:8e:3c:67:42:c6:
9a:d5:dc:c9:7a:98:54:8e:38:df:35:5c:fb:a1:aa:b4:b4:84:
78:cd:b5:5d:fa:3a:b3:a5:f1:c2:3e:2b:55:79:23:18:07:c3:
c4:d1:95:6a:c9:55:b2:f9:cc:b7:cd:80:ea:ce:f9:fa:fb:da:
71:cb:71:cd:a7:26:d8:d0:d9:86:a0:a7:72:96:74:b8:e2:6f:
78:fd:0f:c8:eb:11:4f:3e:c4:a9:22:33:fe:3d:31:2c:fd:d5:
e7:d2:a0:e5:d4:44:ec:ab:03:20:61:54:c8:40:b1:5d:4c:61:
94:d9:1a:21:b8:0e:a7:6d:49:08:5e:7e:4a:e7:2c:fe:8a:27:
b9:7d:dc:9e:95:c5:c7:c3:db:f2:52:10:be:37:eb:59:65:37:
01:2c:7f:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:54 2024 by rpki-client on console-fra.rpki-client.org