Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/wxId3uhieCSUQ4AcNEvTM3uDOoc.roa
File: wxId3uhieCSUQ4AcNEvTM3uDOoc.roa (raw, json)
Hash identifier: udmP1uSI0DjzVkBHBhOI2E7h2Z7GNarTPk0guHUU4Wk=
Subject key identifier: C3:12:1D:DE:E8:62:78:24:94:43:80:1C:34:4B:D3:33:7B:83:3A:87
Certificate issuer: /CN=1e5b334965788794d6f147a2f004d13be3257dc4
Certificate serial: 018974112416BAF6E99E652C5E0284C06DB3
Authority key identifier: 1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/wxId3uhieCSUQ4AcNEvTM3uDOoc.roa
Signing time: Thu 20 Jul 2023 16:10:27 +0000
ROA not before: Thu 20 Jul 2023 16:10:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206092
IP address blocks: 91.193.233.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:74:11:24:16:ba:f6:e9:9e:65:2c:5e:02:84:c0:6d:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5b334965788794d6f147a2f004d13be3257dc4
Validity
Not Before: Jul 20 16:10:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c3121ddee86278249443801c344bd3337b833a87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:18:68:04:e3:32:8b:e7:58:ab:c1:a0:86:50:
0f:9a:b0:75:f4:59:49:d7:3e:5a:f5:e5:7f:88:9a:
c4:79:15:15:13:d1:02:ca:75:4d:8e:07:da:d9:90:
90:45:34:67:30:f1:6f:59:71:36:5c:04:e6:35:d6:
04:2b:a7:97:3f:43:00:b5:3e:bf:fd:ca:c3:85:15:
67:f1:ff:8d:82:86:b5:2b:f8:46:b1:13:4a:ce:fa:
71:5d:23:1d:3e:b9:67:06:d6:12:f1:c0:97:3e:ab:
49:2d:71:68:83:99:81:03:7e:65:9c:0f:82:37:e6:
99:cd:e8:97:8f:6c:9c:31:02:fd:ba:37:37:f8:22:
c6:bc:01:bf:9b:c1:18:10:dc:79:48:72:05:0a:ff:
00:52:26:ae:ff:c1:f4:87:4a:0c:ca:ba:c3:a4:ef:
45:fe:1b:9d:95:22:dd:a8:ff:c3:10:51:d4:da:d9:
12:d0:a5:04:cf:be:48:fd:73:5d:70:c2:25:42:8a:
1f:8c:0b:92:43:5c:78:6e:ed:4f:72:a1:4f:9c:78:
77:d3:7c:94:dc:71:48:48:6b:63:c1:e0:ac:21:a4:
04:f6:2e:65:37:96:c7:46:64:10:05:e0:65:aa:95:
07:b9:70:37:b6:3c:03:06:32:32:73:07:d9:6f:f5:
37:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:12:1D:DE:E8:62:78:24:94:43:80:1C:34:4B:D3:33:7B:83:3A:87
X509v3 Authority Key Identifier:
keyid:1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/wxId3uhieCSUQ4AcNEvTM3uDOoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HlszSWV4h5TW8Uei8ATRO-MlfcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.233.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:b8:18:8a:27:24:72:38:e8:26:d3:0a:1a:5d:0a:09:1c:45:
59:7e:5a:b7:b9:a5:f5:58:08:f7:69:d8:25:39:50:d2:27:bf:
1e:d4:4a:df:1a:9a:2e:a3:64:1d:62:d4:7a:f6:69:8a:69:88:
80:5a:1f:db:c2:48:e9:5c:e7:a8:3f:45:aa:1f:b9:92:92:3d:
17:8d:26:ae:0b:13:02:bd:83:fa:2c:6d:b5:8a:53:7e:8a:28:
d4:02:90:58:de:96:ec:bc:9b:b1:fc:b2:bb:8d:e3:d6:3f:3b:
4e:46:d4:c8:cf:90:ad:4e:eb:ad:5a:e0:f9:bb:19:82:85:09:
54:57:3c:e5:75:5c:62:a4:f2:10:04:96:f9:b1:c8:b8:b1:dc:
51:ad:da:57:c6:21:9e:c6:9a:8d:f2:4d:90:03:bc:d0:12:2c:
35:12:9b:49:c0:6e:f7:1b:53:71:f4:90:57:49:74:45:fb:18:
b6:01:f4:f6:d5:67:3b:a4:3a:a5:d8:c1:b0:4d:a8:0b:b9:07:
7d:07:aa:96:99:61:15:88:fe:49:5f:f5:a9:5f:fc:cb:88:5e:
62:08:19:11:18:1e:c1:f6:01:82:7b:a2:c5:56:5d:7c:32:28:
71:8f:de:8c:dd:bd:0c:98:1c:50:4c:75:4d:ac:ef:d9:d7:ba:
b1:43:15:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:59 2024 by rpki-client on console-ams.rpki-client.org