Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/bb0e7b-2a81-4970-b3bd-686f0a0616cc/1/wiVN56fdVg2VxqgdIGjVA4wL3y0.roa
File: wiVN56fdVg2VxqgdIGjVA4wL3y0.roa (raw, json)
Hash identifier: Q+E6z/3XScDEU0AR0v7WGvk/T1UeeeBCRGE2LIGb69s=
Subject key identifier: C2:25:4D:E7:A7:DD:56:0D:95:C6:A8:1D:20:68:D5:03:8C:0B:DF:2D
Certificate issuer: /CN=38e7f47bb9b91657e5726bfcb2def8aad973e268
Certificate serial: 0187E5A7A9B588116E5624017B1CAB554498
Authority key identifier: 38:E7:F4:7B:B9:B9:16:57:E5:72:6B:FC:B2:DE:F8:AA:D9:73:E2:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OOf0e7m5Flflcmv8st74qtlz4mg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/bb0e7b-2a81-4970-b3bd-686f0a0616cc/1/wiVN56fdVg2VxqgdIGjVA4wL3y0.roa
Signing time: Thu 04 May 2023 07:26:23 +0000
ROA not before: Thu 04 May 2023 07:26:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43298
IP address blocks: 193.84.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e5:a7:a9:b5:88:11:6e:56:24:01:7b:1c:ab:55:44:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38e7f47bb9b91657e5726bfcb2def8aad973e268
Validity
Not Before: May 4 07:26:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2254de7a7dd560d95c6a81d2068d5038c0bdf2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e2:38:84:48:2e:01:c7:f3:01:6b:da:26:c7:
40:cb:29:98:1c:de:ca:bc:4a:6c:1a:93:dc:b6:de:
22:97:0e:d5:32:bd:3a:c3:51:a0:40:24:98:43:1b:
69:69:da:02:fb:3a:a8:e4:0b:4a:63:81:92:92:55:
e0:eb:25:ae:24:ef:2b:ed:1d:b4:51:80:bc:fe:c9:
0c:38:c3:ed:c2:19:ff:9a:a3:9a:c4:d4:56:75:db:
d6:d0:39:ca:4a:a9:a7:0f:66:05:63:18:b7:cd:cf:
c1:95:ce:8b:35:62:2f:8e:01:91:6e:51:ae:3f:b8:
56:ee:28:78:9e:90:bb:a7:33:df:ef:2c:6a:85:7d:
82:5b:3f:66:6e:75:87:a7:a8:f8:8e:a5:41:ba:b1:
fc:3c:d4:8d:bf:21:d1:42:1a:35:3a:7e:66:83:dc:
76:71:20:4a:11:2e:42:20:27:54:af:2e:af:a8:39:
af:05:20:f6:bf:17:88:fb:78:0c:8e:39:4f:78:09:
19:3c:12:8b:f0:25:70:b5:1d:e0:fe:5a:2d:3f:b6:
eb:01:32:da:ce:dc:bb:30:e8:3d:e3:c5:08:f0:9b:
b7:01:0a:40:d1:80:25:af:5b:0a:34:52:a6:47:21:
ec:cc:84:56:1c:6a:b4:f5:72:8c:2f:81:2e:3a:b9:
e2:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:25:4D:E7:A7:DD:56:0D:95:C6:A8:1D:20:68:D5:03:8C:0B:DF:2D
X509v3 Authority Key Identifier:
keyid:38:E7:F4:7B:B9:B9:16:57:E5:72:6B:FC:B2:DE:F8:AA:D9:73:E2:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OOf0e7m5Flflcmv8st74qtlz4mg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/bb0e7b-2a81-4970-b3bd-686f0a0616cc/1/wiVN56fdVg2VxqgdIGjVA4wL3y0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/bb0e7b-2a81-4970-b3bd-686f0a0616cc/1/OOf0e7m5Flflcmv8st74qtlz4mg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.78.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:2f:fd:4b:ff:03:70:49:44:62:f7:fd:73:66:bc:29:3c:5d:
e3:35:d4:55:09:68:98:12:55:5e:d4:30:e1:cf:c5:25:42:90:
92:7f:58:f4:8a:d0:da:b7:81:b9:68:f6:60:2d:17:76:04:a9:
92:58:7d:cc:e2:f9:3c:ce:ba:98:76:f4:94:35:8d:8a:81:dc:
27:17:8c:e1:1d:23:da:ab:a5:01:6b:96:42:f7:71:18:76:9c:
cf:79:3b:80:a7:05:d4:16:58:d8:72:7e:ec:13:58:1b:f5:22:
78:10:63:05:aa:5a:8e:5c:c5:ea:42:c3:de:37:17:4e:11:5a:
2e:c2:02:fa:fe:2e:e4:f4:0b:90:30:83:28:d5:d9:1d:4f:7e:
2a:02:f5:b3:e4:70:d4:c5:68:07:15:b5:38:6b:90:a9:75:36:
20:a8:ea:a2:c9:ab:a9:17:f6:e0:1b:6a:f8:a8:09:a1:c7:82:
2c:2d:f5:e8:12:3e:d5:5f:84:b9:b3:f7:9d:de:17:f1:28:56:
24:2f:77:f3:54:93:9c:2d:54:4d:93:48:e1:2d:f7:87:27:88:
af:ef:a0:0d:83:ec:67:cf:ce:3c:ee:76:e8:98:c0:5b:00:21:
03:f3:96:94:e4:b8:1f:31:61:8c:8c:b5:c0:82:aa:10:1a:39:
b0:8e:82:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:52 2024 by rpki-client on console-ams.rpki-client.org