Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/WnSngtriZcoWQxNiFXZGI597rHg.roa
File: WnSngtriZcoWQxNiFXZGI597rHg.roa (raw, json)
Hash identifier: m5yP3Tb1pMcoVpUZ1PBkA7NgkuMw7g1EjN6kVpGLSYQ=
Subject key identifier: 5A:74:A7:82:DA:E2:65:CA:16:43:13:62:15:76:46:23:9F:7B:AC:78
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 01856D540C02F95E3580264CCAF88BCB912B
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/WnSngtriZcoWQxNiFXZGI597rHg.roa
Signing time: Sun 01 Jan 2023 12:35:02 +0000
ROA not before: Sun 01 Jan 2023 12:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64199
IP address blocks: 31.25.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:54:0c:02:f9:5e:35:80:26:4c:ca:f8:8b:cb:91:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: Jan 1 12:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a74a782dae265ca16431362157646239f7bac78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:92:20:c7:be:8e:d8:10:7a:f5:90:7f:ac:73:
d9:d7:45:32:23:fd:76:29:57:de:ce:8c:3b:9d:da:
91:0b:63:0c:7a:55:0c:af:cb:08:06:14:5d:13:a5:
a5:dd:d0:08:b5:f1:b3:43:23:0f:da:52:02:e8:d0:
b1:30:a8:c3:8b:61:37:32:59:14:6c:12:7e:f2:d9:
46:96:66:bb:0d:4e:b1:18:dd:2f:6a:da:c5:57:3b:
cf:38:1d:3e:60:34:36:9c:75:ee:53:d2:d3:93:64:
4c:ab:2b:3f:2a:59:ab:8a:3a:cf:fa:4a:d9:55:08:
5a:04:57:bf:0d:33:bc:45:c6:89:81:96:a0:7a:81:
22:3f:65:fa:40:9a:de:80:67:b7:fa:61:33:55:30:
a1:37:f3:3b:79:cf:1b:ad:8d:98:17:28:8a:c5:7e:
53:68:ca:62:cd:15:34:ec:bc:8b:67:73:f4:fc:f1:
27:6a:6f:15:b8:0f:d0:06:86:4f:0e:66:72:c5:84:
09:03:bd:77:07:52:5d:4e:9d:a2:08:67:7f:62:8f:
06:4f:c9:46:4b:d9:80:1c:af:4e:96:5e:4e:2b:f1:
ff:d9:c0:b8:c9:ad:8c:6f:27:8b:e2:40:97:bc:dd:
4b:cd:c8:b4:cb:20:ce:5e:0e:ff:11:c4:5b:64:8e:
67:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:74:A7:82:DA:E2:65:CA:16:43:13:62:15:76:46:23:9F:7B:AC:78
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/WnSngtriZcoWQxNiFXZGI597rHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.11.0/24
Signature Algorithm: sha256WithRSAEncryption
82:19:65:22:5d:79:86:28:78:1e:7c:6a:da:f4:07:db:7a:5b:
05:1d:91:62:98:06:53:83:3d:f6:b6:4d:3c:fa:c3:de:16:6f:
77:2b:cb:21:5a:35:04:4a:ac:83:da:9b:03:ce:73:cd:2b:d8:
f5:25:82:bf:49:3a:36:cf:ad:87:0d:f2:8f:56:a4:7c:7d:7a:
ac:ed:63:7a:0c:7a:0c:fe:bb:68:9d:82:3c:62:28:7f:ad:0a:
30:db:c3:a3:3a:31:9c:43:a2:fe:e4:40:46:c3:55:70:ba:bb:
63:bd:cc:51:c9:6f:70:15:ab:00:c3:ad:b2:f9:fa:6f:6e:38:
09:80:08:92:df:70:3b:46:f6:68:86:c2:65:a0:cc:2e:9f:a8:
d1:56:22:b4:bf:d1:e6:3c:ec:25:3a:d8:7e:2c:f6:e1:38:7e:
84:51:25:58:64:9b:8d:a6:88:74:29:a3:4a:83:81:4d:b9:cc:
ab:e9:6f:cf:16:4f:9a:70:b5:3a:a6:92:23:d8:90:f5:ed:d6:
8c:7d:4d:3a:8e:4a:41:c4:58:00:a6:0c:1f:15:3e:48:45:35:
97:4e:41:f9:ae:9f:bb:d7:9e:af:20:53:c1:35:87:de:45:a7:
5c:14:05:25:ff:1f:44:52:d5:5c:65:7b:b3:61:d0:fe:73:fc:
9b:88:76:2d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtVAwC+V41gCZMyviLy5ErMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwOTk4ZDNjOWQ4YmRjOWMxZGZmOGUzMTk0MjQ0MTJiNmNk
YzFkZDMwHhcNMjMwMTAxMTIzNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YTc0YTc4MmRhZTI2NWNhMTY0MzEzNjIxNTc2NDYyMzlmN2JhYzc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA15Igx76O2BB69ZB/rHPZ10UyI/12
KVfezow7ndqRC2MMelUMr8sIBhRdE6Wl3dAItfGzQyMP2lIC6NCxMKjDi2E3MlkU
bBJ+8tlGlma7DU6xGN0vatrFVzvPOB0+YDQ2nHXuU9LTk2RMqys/KlmrijrP+krZ
VQhaBFe/DTO8RcaJgZageoEiP2X6QJregGe3+mEzVTChN/M7ec8brY2YFyiKxX5T
aMpizRU07LyLZ3P0/PEnam8VuA/QBoZPDmZyxYQJA713B1JdTp2iCGd/Yo8GT8lG
S9mAHK9Oll5OK/H/2cC4ya2MbyeL4kCXvN1Lzci0yyDOXg7/EcRbZI5n+QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFp0p4La4mXKFkMTYhV2RiOfe6x4MB8GA1UdIwQY
MBaAFGCZjTydi9ycHf+OMZQkQSts3B3TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUptTlBKMkwzSndkXzQ0eGxDUkJLMnpjSGRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy83NzlhZTktN2QyMi00MjUyLThjNWIt
MGVhNGQ1MzFiNzkzLzEvV25Tbmd0cmlaY29XUXhOaUZYWkdJNTk3ckhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy83NzlhZTktN2QyMi00MjUyLThjNWItMGVhNGQ1MzFiNzkz
LzEvWUptTlBKMkwzSndkXzQ0eGxDUkJLMnpjSGRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHxkLMA0G
CSqGSIb3DQEBCwUAA4IBAQCCGWUiXXmGKHgefGra9AfbelsFHZFimAZTgz32tk08
+sPeFm93K8shWjUESqyD2psDznPNK9j1JYK/STo2z62HDfKPVqR8fXqs7WN6DHoM
/rtonYI8Yih/rQow28OjOjGcQ6L+5EBGw1VwurtjvcxRyW9wFasAw62y+fpvbjgJ
gAiS33A7RvZohsJloMwun6jRViK0v9HmPOwlOth+LPbhOH6EUSVYZJuNpoh0KaNK
g4FNucyr6W/PFk+acLU6ppIj2JD17daMfU06jkpBxFgApgwfFT5IRTWXTkH5rp+7
156vIFPBNYfeRadcFAUl/x9EUtVcZXuzYdD+c/ybiHYt
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:37 2024 by rpki-client on console-fra.rpki-client.org