Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/wBwCRrbEU8B7iZVJ1qDuWC0I72g.roa
File: wBwCRrbEU8B7iZVJ1qDuWC0I72g.roa (raw, json)
Hash identifier: FfTwR9wMcMfniQ5S3LWNXq1umisVzhJvyS51MBp8nRc=
Subject key identifier: C0:1C:02:46:B6:C4:53:C0:7B:89:95:49:D6:A0:EE:58:2D:08:EF:68
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 018A2924EAC123C68301A37F5D314A70F844
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/wBwCRrbEU8B7iZVJ1qDuWC0I72g.roa
Signing time: Thu 24 Aug 2023 20:03:19 +0000
ROA not before: Thu 24 Aug 2023 20:03:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210907
IP address blocks: 147.189.163.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:29:24:ea:c1:23:c6:83:01:a3:7f:5d:31:4a:70:f8:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: Aug 24 20:03:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c01c0246b6c453c07b899549d6a0ee582d08ef68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c4:bc:11:60:ec:bf:aa:ba:e6:11:fd:ba:74:
9a:cb:65:ad:cc:14:71:4f:1e:3f:04:30:d1:30:c8:
da:9d:49:ad:3d:ad:e3:a9:71:99:37:c2:cb:e6:9a:
f8:03:34:ae:b4:f3:5b:0a:2d:fe:c8:52:95:46:15:
9f:3f:3d:24:b4:75:2f:72:ca:2d:dd:21:8c:72:68:
52:95:37:89:6e:a2:fd:37:25:37:e5:24:83:6a:48:
23:d6:a9:b0:9b:bd:81:68:df:7a:c2:f3:08:ca:3a:
f6:59:70:78:eb:a0:22:61:be:46:52:66:e9:cc:09:
f4:64:0c:f6:61:ff:76:12:c9:4b:87:2d:ea:59:d7:
fe:91:35:ea:eb:06:cb:d1:9c:a3:6d:e1:fe:e6:22:
d2:c5:e5:28:67:ce:57:e5:fe:ae:52:57:59:42:44:
53:15:2f:30:1f:e9:e1:a9:60:69:65:9c:aa:cb:ee:
71:bf:ef:ad:3d:9b:4b:54:18:7a:e8:45:6c:3a:4f:
ba:ea:68:60:0e:e8:04:c6:1c:a9:45:b8:20:49:6e:
ee:80:ca:ef:78:0b:ce:ba:df:72:b0:90:03:8b:4d:
d9:41:ef:aa:b8:b2:a5:a8:e0:4a:31:c1:8d:63:ec:
32:a5:ee:fb:a4:90:39:79:59:00:82:fe:9e:79:f0:
fc:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:1C:02:46:B6:C4:53:C0:7B:89:95:49:D6:A0:EE:58:2D:08:EF:68
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/wBwCRrbEU8B7iZVJ1qDuWC0I72g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.189.163.0/24
Signature Algorithm: sha256WithRSAEncryption
47:4c:90:f4:e1:88:30:b8:64:7a:e4:d3:60:7c:27:84:3c:fb:
86:09:70:79:57:22:87:6c:68:b7:75:e7:be:f1:62:bf:54:cc:
3b:d8:24:6a:1d:e1:3d:fe:62:cb:35:d1:e2:4c:50:6b:b0:31:
ec:cc:9b:76:a3:74:68:be:e0:60:67:e8:a1:c5:66:05:87:6c:
c0:0c:b4:4f:37:cc:ba:38:bd:b5:79:1a:7a:3f:dc:f2:c2:71:
db:01:d3:9f:80:fb:af:63:b0:8d:86:51:0a:e9:b7:79:8d:4a:
f3:47:be:a9:4c:2a:9c:1b:9c:b1:f5:52:50:55:08:db:ce:ec:
73:29:a6:00:f2:ed:cf:31:ee:81:ca:d7:7d:d3:50:7f:e4:61:
9d:39:ef:6f:e1:36:98:b0:14:41:7f:06:d7:04:50:1e:09:83:
c2:10:9d:bd:c9:be:65:a4:ae:cb:1d:30:8c:83:c2:03:ad:6c:
21:d1:81:08:e7:2a:0a:23:f4:93:34:78:47:98:fb:37:c6:8e:
ef:b2:63:58:06:85:e2:cb:f4:75:8f:03:80:4b:12:39:0d:c6:
a0:54:66:de:66:ca:1c:50:ad:4f:1d:5c:f7:aa:76:f1:ed:da:
14:1c:20:f4:36:66:a0:0e:64:d5:b2:62:54:3d:fd:25:7d:e5:
7a:37:4a:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:37 2024 by rpki-client on console-fra.rpki-client.org