Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/00898a-e7c0-4836-a96b-92b2ea319bc1/1/weS41qT0V0T9HrdAj7iY70mhc00.roa
File: weS41qT0V0T9HrdAj7iY70mhc00.roa (raw, json)
Hash identifier: t876uwEQRMP+xXr+lo62dA+jIKIU9DOC1qtKoqGxNLE=
Subject key identifier: C1:E4:B8:D6:A4:F4:57:44:FD:1E:B7:40:8F:B8:98:EF:49:A1:73:4D
Certificate issuer: /CN=af0b1da79ef7fc1ef95962dc8a01f2b8d4b352bf
Certificate serial: 01856D4AACC7F8B99FE3B2CC9A65CF450158
Authority key identifier: AF:0B:1D:A7:9E:F7:FC:1E:F9:59:62:DC:8A:01:F2:B8:D4:B3:52:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwsdp573_B75WWLcigHyuNSzUr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/00898a-e7c0-4836-a96b-92b2ea319bc1/1/weS41qT0V0T9HrdAj7iY70mhc00.roa
Signing time: Sun 01 Jan 2023 12:24:48 +0000
ROA not before: Sun 01 Jan 2023 12:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200748
IP address blocks: 185.241.180.0/22 maxlen: 22
2a0c:a780::/31 maxlen: 31
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:ac:c7:f8:b9:9f:e3:b2:cc:9a:65:cf:45:01:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af0b1da79ef7fc1ef95962dc8a01f2b8d4b352bf
Validity
Not Before: Jan 1 12:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c1e4b8d6a4f45744fd1eb7408fb898ef49a1734d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:32:3a:57:d5:b1:cb:32:0e:4d:d1:00:3d:6e:
e5:91:4c:b1:ef:a7:d8:d9:44:ae:41:cb:5c:26:24:
4f:a9:83:41:71:00:d8:63:36:76:1e:4c:e1:3b:86:
1e:eb:77:b1:6d:60:8f:3f:39:09:1b:6a:61:e8:ab:
09:98:0d:97:87:0c:6f:0a:7f:87:c9:93:70:2a:b4:
b7:97:02:cd:6b:b1:30:5f:de:af:db:6d:85:95:6d:
92:0c:55:a6:38:ff:3c:c3:74:ce:38:61:b6:e2:a3:
dc:0b:ac:b6:f1:f1:76:38:ee:8a:d1:82:35:14:fb:
34:46:fd:89:6b:7b:b6:af:84:bb:ba:f0:2a:c1:0d:
1b:e7:6a:8d:79:9e:2a:39:04:7a:19:76:56:73:71:
6c:c5:a0:db:1a:93:3d:33:fe:79:d5:4b:80:72:5c:
aa:64:da:c8:09:27:72:b2:f3:76:71:8a:43:22:f6:
e4:69:59:60:5c:4b:bb:20:3c:75:ad:13:c9:fa:ff:
6d:f8:0f:ed:2b:cd:ee:17:de:84:c0:02:1a:82:07:
a9:4a:1e:80:18:81:25:92:3f:b1:cc:2f:19:27:2b:
46:4d:af:9f:14:2c:57:13:31:d5:d7:c8:cc:16:40:
5d:01:37:63:1c:da:3f:35:cf:79:4f:0c:a3:ad:e4:
11:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:E4:B8:D6:A4:F4:57:44:FD:1E:B7:40:8F:B8:98:EF:49:A1:73:4D
X509v3 Authority Key Identifier:
keyid:AF:0B:1D:A7:9E:F7:FC:1E:F9:59:62:DC:8A:01:F2:B8:D4:B3:52:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwsdp573_B75WWLcigHyuNSzUr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/00898a-e7c0-4836-a96b-92b2ea319bc1/1/weS41qT0V0T9HrdAj7iY70mhc00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/00898a-e7c0-4836-a96b-92b2ea319bc1/1/rwsdp573_B75WWLcigHyuNSzUr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.180.0/22
IPv6:
2a0c:a780::/31
Signature Algorithm: sha256WithRSAEncryption
4a:f9:d5:c2:72:88:ca:d3:46:ca:3e:47:63:c1:d2:29:5b:4c:
32:28:80:ab:84:80:e8:9c:fa:f5:06:1c:e5:8f:25:86:55:02:
c0:ce:b2:ef:3b:e3:64:6b:50:63:5f:08:25:6e:26:65:e4:f2:
f9:ba:f8:58:3b:5f:75:d0:84:f4:61:4a:dd:ff:1a:37:36:21:
c8:09:88:87:a7:2d:0b:75:f7:c5:77:28:e7:dd:db:bf:6e:cb:
a8:24:87:9a:24:e3:7b:89:26:d7:67:e4:da:74:f7:d7:2a:61:
1f:d4:99:6c:42:fa:cf:b8:ad:e1:49:8d:e4:6f:49:5e:e0:e6:
d9:7f:42:90:e9:74:53:db:5f:15:28:e8:78:a8:44:d9:a4:1f:
c6:f2:cd:a3:97:fa:83:fd:a9:81:1d:d0:21:fe:24:13:06:ab:
38:53:f7:c8:fc:ef:4e:20:eb:62:09:44:1c:e6:c5:23:b4:7e:
c3:1b:d1:0b:de:56:b4:e7:68:47:7d:2d:0c:85:fa:2f:76:4f:
81:36:ab:1e:5e:48:12:30:b4:b8:56:20:3f:98:6a:50:33:4d:
9c:d3:08:fd:2a:3f:4a:8c:4b:30:a1:52:ae:9c:1a:8a:e5:a1:
86:8b:13:4d:db:9b:2e:4f:4b:02:a3:09:77:6f:b0:6d:cf:48:
c2:20:ba:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:49 2024 by rpki-client on console-ams.rpki-client.org