Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/ab8070-4f58-4634-9a44-387536d03a71/1/wRSk9-IkUoalWEnQqke5GhG3UFQ.roa
File: wRSk9-IkUoalWEnQqke5GhG3UFQ.roa (raw, json)
Hash identifier: gVtn5XSZW0joXhFkGmoM1qc3RMfhhcf3+t/KxGxDCLE=
Subject key identifier: C1:14:A4:F7:E2:24:52:86:A5:58:49:D0:AA:47:B9:1A:11:B7:50:54
Certificate issuer: /CN=e22d7eae21d8baee9de6940d8ce6b29d92a9031e
Certificate serial: 018E37047E10CC452342218516A0D46D43FA
Authority key identifier: E2:2D:7E:AE:21:D8:BA:EE:9D:E6:94:0D:8C:E6:B2:9D:92:A9:03:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4i1-riHYuu6d5pQNjOaynZKpAx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/ab8070-4f58-4634-9a44-387536d03a71/1/wRSk9-IkUoalWEnQqke5GhG3UFQ.roa
Signing time: Wed 13 Mar 2024 08:53:45 +0000
ROA not before: Wed 13 Mar 2024 08:53:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203327
IP address blocks: 185.138.146.0/24 maxlen: 24
2a07:ec0::/29 maxlen: 48
Validation: Failed, certificate revoked on Wed 13 Mar 2024 17:21:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:37:04:7e:10:cc:45:23:42:21:85:16:a0:d4:6d:43:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e22d7eae21d8baee9de6940d8ce6b29d92a9031e
Validity
Not Before: Mar 13 08:53:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c114a4f7e2245286a55849d0aa47b91a11b75054
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d9:53:04:0a:e4:64:57:e1:94:2f:6e:ad:67:
e6:38:9a:41:ee:66:63:4d:78:2b:f5:93:50:09:74:
d1:17:ae:8d:05:00:81:d0:41:34:fe:11:21:50:92:
e5:c6:75:94:66:a9:b8:db:41:03:a3:37:5f:a6:1c:
d8:30:46:77:1d:f0:61:a8:33:79:a1:5e:8e:b8:38:
5c:06:d0:2c:77:fa:1e:28:29:a7:a0:9b:fc:b0:fd:
8f:a2:a0:c4:dc:17:a9:93:af:86:d0:5c:b5:49:22:
e9:f5:73:37:fc:03:d1:d8:49:48:58:93:40:8d:28:
02:f3:48:21:73:4d:3e:3e:9f:50:7d:56:99:57:da:
58:57:54:e7:67:27:3c:4a:7c:09:39:86:d8:39:02:
ee:38:76:94:5e:de:d3:d7:a1:d6:f1:e5:db:f6:df:
8b:1b:06:44:44:47:4e:54:47:af:71:11:65:b6:a0:
95:f6:ea:b1:de:9b:77:e7:9a:fa:a1:73:bd:b8:04:
07:5e:ab:ab:2c:10:df:7d:fd:ae:e7:5f:15:02:75:
db:74:31:81:7c:7f:1b:ea:a4:49:2d:98:26:5d:9f:
1f:2d:ba:96:c0:0d:65:2a:fb:dc:63:cc:ea:ce:c1:
51:bc:ce:91:42:88:ee:01:eb:e3:47:a5:44:35:b4:
0a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:14:A4:F7:E2:24:52:86:A5:58:49:D0:AA:47:B9:1A:11:B7:50:54
X509v3 Authority Key Identifier:
keyid:E2:2D:7E:AE:21:D8:BA:EE:9D:E6:94:0D:8C:E6:B2:9D:92:A9:03:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4i1-riHYuu6d5pQNjOaynZKpAx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/ab8070-4f58-4634-9a44-387536d03a71/1/wRSk9-IkUoalWEnQqke5GhG3UFQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/ab8070-4f58-4634-9a44-387536d03a71/1/4i1-riHYuu6d5pQNjOaynZKpAx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.146.0/24
IPv6:
2a07:ec0::/29
Signature Algorithm: sha256WithRSAEncryption
4b:af:74:54:be:40:2e:dc:e2:44:14:05:ee:b6:12:e8:88:28:
68:a5:88:31:db:95:d3:96:4e:40:e3:79:ee:ff:08:20:50:c8:
bf:49:91:f8:eb:27:65:e8:c4:0c:ff:21:da:ad:ea:a9:1c:80:
c2:97:70:58:55:97:6f:13:c7:44:ca:87:76:f2:45:44:4a:39:
40:28:64:18:ce:97:99:08:cf:d4:3a:09:10:52:6a:c4:2e:79:
64:1b:59:02:81:2c:de:68:de:a0:4d:69:11:d9:c5:b4:6d:57:
3b:3e:f9:32:2e:34:62:10:6d:6c:c0:a9:5c:d3:1c:d4:9c:70:
37:35:14:42:a4:ee:51:b9:93:85:7b:09:cc:54:3f:83:bd:0c:
e5:e8:13:e5:39:c8:13:dd:b7:a2:e8:14:25:e4:6a:96:f3:00:
c6:f3:97:a6:38:60:0f:e5:91:89:8b:c4:4b:3c:22:b4:56:ec:
ef:eb:7e:ea:72:5a:ae:36:02:92:1d:b8:47:67:6e:8b:d5:19:
70:0d:9a:b7:a0:fa:d3:ad:eb:63:eb:b0:a3:f1:8f:d8:5c:91:
f4:74:22:4f:01:89:59:f7:41:fc:5a:5f:9d:74:ce:ae:7c:0f:
93:1f:8e:79:29:01:55:5a:74:15:c6:ca:cf:0a:25:02:2e:6e:
dc:5b:93:32
-----BEGIN CERTIFICATE-----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 at Wed Mar 13 22:33:08 2024 by rpki-client on console-ams.rpki-client.org