Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/WHwsXAgSq5v1AVrLc4ThiB0mD44.roa
File: WHwsXAgSq5v1AVrLc4ThiB0mD44.roa (raw, json)
Hash identifier: b+h9b7LTt179Xyvf/Yfn7+DjMt2bYsJcEJTOHEmZtmc=
Subject key identifier: 58:7C:2C:5C:08:12:AB:9B:F5:01:5A:CB:73:84:E1:88:1D:26:0F:8E
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 018C25D00F7F49643B554F526621ADF76832
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/WHwsXAgSq5v1AVrLc4ThiB0mD44.roa
Signing time: Fri 01 Dec 2023 14:37:21 +0000
ROA not before: Fri 01 Dec 2023 14:37:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 5.180.194.0/24 maxlen: 24
2a09:e1c1:f000::/44 maxlen: 44
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:25:d0:0f:7f:49:64:3b:55:4f:52:66:21:ad:f7:68:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Dec 1 14:37:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=587c2c5c0812ab9bf5015acb7384e1881d260f8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:d2:fa:5c:c4:7f:be:e3:2c:41:c8:df:06:ee:
a7:8c:fd:16:b9:2c:09:f9:c8:99:45:df:34:9c:e3:
0f:4a:59:d7:30:08:8f:1c:83:67:63:bf:fa:cd:1b:
a0:44:ab:4f:79:b9:e0:a3:f4:c8:ed:22:ec:d0:79:
b7:27:a6:23:14:43:05:60:8c:9b:bd:a2:bf:0c:46:
a9:32:31:20:88:96:e6:08:e8:6c:cd:09:a4:16:3b:
df:32:80:03:cd:48:75:4f:c9:2e:a1:dc:aa:62:ce:
e8:ee:9c:e6:17:4d:62:05:d8:23:4f:8d:0d:dc:51:
15:f8:1f:33:4d:69:bf:d7:15:e0:3c:d1:0b:41:88:
a8:a8:13:ad:75:6a:b2:63:14:65:9c:8f:2f:73:c0:
34:d6:fc:e5:b1:64:82:0b:c9:11:be:0b:fc:fd:52:
ca:53:c6:c7:f9:dd:d2:d3:f9:33:0e:ca:7d:00:ae:
7b:c6:f5:6c:dd:84:90:ed:3c:03:70:08:fd:9b:a4:
b6:79:b1:93:16:56:eb:0a:f0:b9:27:43:6c:34:62:
a4:54:6f:17:20:65:05:4e:0c:71:a0:e0:b1:dd:5d:
f4:cc:ad:e6:34:85:af:4f:58:c0:fe:b4:8b:6a:e1:
21:86:24:a1:dd:ed:bc:25:c1:6f:11:f6:00:05:84:
16:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:7C:2C:5C:08:12:AB:9B:F5:01:5A:CB:73:84:E1:88:1D:26:0F:8E
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/WHwsXAgSq5v1AVrLc4ThiB0mD44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.194.0/24
IPv6:
2a09:e1c1:f000::/44
Signature Algorithm: sha256WithRSAEncryption
0a:86:cd:52:a6:20:94:9e:ed:68:fd:1c:78:b9:af:d1:b1:d7:
c1:22:da:42:81:c5:db:a3:5f:66:3d:2a:70:a6:cc:94:e2:96:
e6:e8:73:2d:fc:42:44:79:18:ea:3e:0f:93:b1:3a:af:49:1d:
0d:98:2a:14:b7:ad:2f:61:48:64:ef:fe:f5:df:50:a2:9b:a2:
64:c2:0c:52:e8:c8:a1:18:3c:29:5c:fa:42:78:ad:e3:6e:b2:
fe:7d:49:36:17:a7:a0:59:da:6b:f2:dd:a3:94:a6:1f:37:1e:
3d:d2:c1:b2:aa:d0:ec:47:41:97:db:a9:f2:c9:5e:21:03:fb:
01:38:5e:10:53:34:cd:af:e0:58:a0:1e:e0:bd:f5:28:df:6e:
e0:2b:8b:bf:1d:ef:39:1a:5c:f8:cc:12:66:39:6c:78:f4:fb:
3a:a2:6c:7c:09:ab:45:f8:8f:b3:98:46:fd:e0:6d:6d:4a:87:
89:40:39:07:2e:99:bc:54:74:9b:76:00:d9:50:4b:87:24:91:
46:af:64:92:c7:72:93:0e:cf:83:8f:bf:46:0d:55:d3:57:d4:
25:f5:8b:01:32:82:27:e8:41:18:76:22:5d:df:03:a7:ae:12:
e9:bc:8c:1d:18:df:5a:4a:fc:f7:9d:17:e0:f1:52:dc:79:06:
45:6d:76:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:28:19 2024 by rpki-client on console-fra.rpki-client.org