Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/WLJWSQuAONYiY2XpTNbGMxku9Cs.roa
File: WLJWSQuAONYiY2XpTNbGMxku9Cs.roa (raw, json)
Hash identifier: LMou0U6iLSx1svs6wypJdPxlbVEoGX8ioX+9blcGVuI=
Subject key identifier: 58:B2:56:49:0B:80:38:D6:22:63:65:E9:4C:D6:C6:33:19:2E:F4:2B
Certificate issuer: /CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d
Certificate serial: 01856C0A4D97D723B5D1B9D5B8F6065CF257
Authority key identifier: EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/WLJWSQuAONYiY2XpTNbGMxku9Cs.roa
Signing time: Sun 01 Jan 2023 06:34:52 +0000
ROA not before: Sun 01 Jan 2023 06:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210644
IP address blocks: 89.185.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:4d:97:d7:23:b5:d1:b9:d5:b8:f6:06:5c:f2:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d
Validity
Not Before: Jan 1 06:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58b256490b8038d6226365e94cd6c633192ef42b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:39:76:fb:b2:72:24:25:55:dd:c6:c5:3a:7d:
5c:b0:af:ac:f8:03:29:d5:ce:ee:f4:93:7e:59:49:
46:ae:c5:4c:d1:eb:90:bf:41:aa:6a:5e:73:8b:5d:
41:ce:c3:a3:45:ff:45:bb:9e:83:eb:94:78:49:86:
3c:86:a1:a1:11:ac:64:f0:1e:fc:66:ba:a5:2b:97:
10:5e:e1:94:6a:c4:8f:fa:bd:25:73:ca:4d:01:c2:
80:a4:3d:01:10:c0:d6:21:20:49:f2:b7:20:3c:44:
96:2f:91:33:38:4f:c2:f1:ce:cf:39:37:cf:07:ae:
3f:da:28:5f:32:78:80:02:85:ad:6a:58:f2:c2:d6:
30:78:02:2b:a4:e1:49:44:53:ce:a3:50:2f:99:ee:
67:8a:6f:03:fc:67:6d:b1:e3:8a:1d:2c:55:10:f4:
bf:2b:04:59:ba:eb:a2:50:d3:c7:11:6e:0c:f5:2b:
9a:fb:3a:39:9d:43:04:07:68:c9:fd:7d:0e:a7:af:
13:53:bd:e3:c3:86:2b:45:7d:9c:af:6f:7b:9b:b2:
da:94:aa:f4:ab:78:dd:67:5a:4f:41:67:a3:4f:7b:
0f:9d:b5:f7:6b:94:e9:c3:d8:5d:a9:7e:af:d6:3b:
c1:e7:ba:f0:ba:48:3b:04:36:bd:35:06:37:68:64:
d6:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:B2:56:49:0B:80:38:D6:22:63:65:E9:4C:D6:C6:33:19:2E:F4:2B
X509v3 Authority Key Identifier:
keyid:EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/WLJWSQuAONYiY2XpTNbGMxku9Cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.85.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:b8:f4:53:cb:ed:9d:2c:10:6f:36:d9:5e:9e:fa:c5:83:37:
67:63:1f:99:8f:9d:77:b0:e9:02:d5:07:7e:41:41:b3:18:9e:
e1:9c:93:3a:ad:9b:b7:0e:2b:bf:f8:f8:a6:29:1b:71:5d:21:
eb:3f:7a:6a:85:02:05:79:b2:14:b3:c2:32:af:91:08:dc:06:
31:ac:3b:20:56:f0:1b:8a:27:5b:c7:05:c0:c7:c5:7a:70:e4:
50:df:b0:2f:09:af:a4:b1:eb:a0:b6:fc:cc:57:1f:dc:f3:b1:
25:dd:33:cb:53:b3:cc:4c:66:9c:5e:8e:3f:7d:1d:0d:99:eb:
26:54:07:1f:c3:e2:5c:e3:f5:79:5b:88:90:c2:3e:48:89:da:
14:f5:11:3e:27:a5:51:da:e7:40:9c:3f:4c:fa:d9:f1:f2:9e:
61:1a:a1:a8:a6:eb:1e:97:9e:0d:0e:eb:b1:5d:a4:4a:49:07:
70:ed:24:82:6f:05:d2:94:49:1e:ea:b1:88:11:02:9e:06:08:
88:75:03:01:68:ca:a8:4f:b0:a9:78:81:73:83:96:d3:f7:be:
c5:a2:4f:51:0d:68:70:a2:f9:15:cf:c2:3c:9d:c5:f6:64:41:
64:ec:6b:6e:53:fa:08:60:d0:7b:b1:e1:0a:ca:ad:db:a4:7a:
96:40:0a:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:39 2024 by rpki-client on console-fra.rpki-client.org