Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/0dfb97-cc3b-4e7d-88dc-78f0b2a1fe90/1/WueNfXHV0kW6Y-YHFBUl6a1edvw.roa
File: WueNfXHV0kW6Y-YHFBUl6a1edvw.roa (raw, json)
Hash identifier: DAqR+dxDeV3eSk84Zsl/ue+orFTidDylbstBCCnNX5I=
Subject key identifier: 5A:E7:8D:7D:71:D5:D2:45:BA:63:E6:07:14:15:25:E9:AD:5E:76:FC
Certificate issuer: /CN=12e452c77c5de1090a1610bac2a63e83aa72b0d3
Certificate serial: 01856D13C89BBF291D965D4A12F7397C69AB
Authority key identifier: 12:E4:52:C7:7C:5D:E1:09:0A:16:10:BA:C2:A6:3E:83:AA:72:B0:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EuRSx3xd4QkKFhC6wqY-g6pysNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/0dfb97-cc3b-4e7d-88dc-78f0b2a1fe90/1/WueNfXHV0kW6Y-YHFBUl6a1edvw.roa
Signing time: Sun 01 Jan 2023 11:24:51 +0000
ROA not before: Sun 01 Jan 2023 11:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59441
IP address blocks: 185.36.231.0/24 maxlen: 24
2a09:1180::/29 maxlen: 128
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:13:c8:9b:bf:29:1d:96:5d:4a:12:f7:39:7c:69:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12e452c77c5de1090a1610bac2a63e83aa72b0d3
Validity
Not Before: Jan 1 11:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ae78d7d71d5d245ba63e607141525e9ad5e76fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:dc:45:98:04:f5:28:23:6d:b1:c7:93:1a:ab:
4b:30:93:36:f1:d0:76:a3:3a:fb:08:bb:93:ea:60:
b8:7c:95:57:b8:4c:75:48:b8:92:5b:97:9d:b6:a8:
e9:8e:55:78:bd:4f:a5:53:7f:0e:7f:84:da:13:52:
73:e8:2a:b9:db:90:51:ef:c8:35:57:c4:82:26:dc:
78:ab:82:7a:70:4f:b2:bc:e8:33:a8:e2:da:39:f7:
8a:df:00:0b:02:b3:50:72:4f:c7:85:b1:d7:0a:62:
62:47:ac:a5:e2:04:72:91:d4:61:2d:a3:27:2b:54:
e5:f5:96:32:fe:3f:4c:40:16:52:cc:c9:8e:38:85:
3d:58:7d:42:a6:b5:b9:5f:c7:0f:83:a2:0c:18:8f:
30:2e:95:c3:c7:2f:93:ad:d8:df:12:8c:e4:c2:ae:
64:1c:47:62:28:76:94:7b:bd:dd:7a:a3:16:80:a6:
bc:cc:29:da:dd:0b:d3:88:e2:0b:a3:30:7a:c7:83:
a9:f9:e9:ab:0e:7b:90:a2:85:06:10:90:64:12:9a:
bc:97:ac:19:42:ac:30:89:3d:08:32:e6:e7:c2:b1:
26:1f:09:f1:ec:e9:14:90:b1:33:56:26:77:8d:a7:
a0:89:ff:89:e7:11:63:07:69:01:a9:cf:10:41:ef:
3d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:E7:8D:7D:71:D5:D2:45:BA:63:E6:07:14:15:25:E9:AD:5E:76:FC
X509v3 Authority Key Identifier:
keyid:12:E4:52:C7:7C:5D:E1:09:0A:16:10:BA:C2:A6:3E:83:AA:72:B0:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EuRSx3xd4QkKFhC6wqY-g6pysNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/0dfb97-cc3b-4e7d-88dc-78f0b2a1fe90/1/WueNfXHV0kW6Y-YHFBUl6a1edvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/0dfb97-cc3b-4e7d-88dc-78f0b2a1fe90/1/EuRSx3xd4QkKFhC6wqY-g6pysNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.231.0/24
IPv6:
2a09:1180::/29
Signature Algorithm: sha256WithRSAEncryption
7e:11:1c:29:c8:69:7a:4d:69:74:07:83:e5:79:65:52:ff:07:
f1:cd:f1:b5:a3:4b:1d:3a:c8:8f:87:12:0b:d3:8f:39:e9:fb:
89:8f:8d:cb:36:69:82:93:32:c0:e4:f0:84:87:a7:83:ac:2e:
1d:53:e2:3a:44:5a:25:4b:5d:66:ee:56:f3:25:11:18:f5:57:
c5:62:2c:7f:6b:a8:4a:10:65:42:e0:2d:3c:3b:96:da:57:15:
9b:53:e2:c2:3e:3e:29:a5:bf:88:de:da:85:88:ee:47:6b:cb:
76:92:a3:d0:69:a3:90:bd:9e:2d:20:36:1f:5e:8f:b5:5b:7f:
52:1f:b1:3f:01:6f:72:b8:96:3e:69:d2:b3:59:ec:34:dd:05:
65:25:92:50:d9:eb:b4:7c:ef:42:08:dc:34:11:4a:3e:cb:5d:
10:fe:00:25:73:7a:87:6a:f7:b3:e8:a8:8a:9f:2a:7b:97:69:
80:a2:08:b6:a5:16:8f:2d:c9:39:ac:50:cf:6e:6e:ba:97:2f:
e3:2f:3d:12:66:89:27:99:af:4b:88:5e:23:3e:ac:3e:87:97:
0a:00:57:e5:32:6a:9a:16:3e:28:6d:d2:6f:6d:1d:0a:55:0f:
44:f5:37:2b:5b:a0:cd:2b:ae:cc:37:56:dd:e1:65:ba:69:68:
62:5b:d1:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:13 2024 by rpki-client on console-ams.rpki-client.org