Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/b025bc-bc73-4d3c-a430-00394b610a34/1/WbQcXyMl4rSrw0u_8peH1c2N7_c.roa
File: WbQcXyMl4rSrw0u_8peH1c2N7_c.roa (raw, json)
Hash identifier: AfPOavilpeiAIA8gmrvM7hO827YZgD2ZXhZCcxKipPc=
Subject key identifier: 59:B4:1C:5F:23:25:E2:B4:AB:C3:4B:BF:F2:97:87:D5:CD:8D:EF:F7
Certificate issuer: /CN=4940cf778dd9817657cd8d4feedd423d46d1a965
Certificate serial: 0185704BDAE9D3168E1714A1C8C0384CA16B
Authority key identifier: 49:40:CF:77:8D:D9:81:76:57:CD:8D:4F:EE:DD:42:3D:46:D1:A9:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SUDPd43ZgXZXzY1P7t1CPUbRqWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/b025bc-bc73-4d3c-a430-00394b610a34/1/WbQcXyMl4rSrw0u_8peH1c2N7_c.roa
Signing time: Mon 02 Jan 2023 02:24:57 +0000
ROA not before: Mon 02 Jan 2023 02:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210201
IP address blocks: 194.34.96.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:4b:da:e9:d3:16:8e:17:14:a1:c8:c0:38:4c:a1:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4940cf778dd9817657cd8d4feedd423d46d1a965
Validity
Not Before: Jan 2 02:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59b41c5f2325e2b4abc34bbff29787d5cd8deff7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:41:ac:59:5f:d5:ce:08:4d:55:6e:fb:0a:5e:
8b:93:12:55:ee:55:06:e5:f5:3f:93:36:68:fc:3c:
64:1d:16:39:c1:7a:df:41:33:c9:c2:5d:b4:e5:22:
e3:9e:e9:91:5e:d7:5a:04:53:6f:e0:17:fe:d2:f5:
b0:3b:30:01:a2:8c:3d:ed:18:4f:84:8f:69:5b:70:
5f:29:80:de:ca:f4:f5:de:7b:a1:1d:ee:7b:79:ba:
07:8e:06:bb:6e:c1:12:b5:ea:9a:6e:0e:cb:db:16:
3e:2b:ce:ed:1f:58:26:87:69:79:86:08:71:82:6e:
b2:1f:25:bd:ab:4c:53:cb:93:cc:2a:7e:7a:51:39:
f0:7f:e9:2c:4b:76:ba:3b:7a:47:c1:6f:09:63:54:
ac:c4:12:61:47:4d:b5:95:96:fe:b3:59:40:10:7b:
53:12:65:46:d2:1e:f0:2d:d8:d4:15:de:b5:d5:3f:
4a:49:6c:3b:91:62:65:8c:d1:72:09:05:ec:5b:fb:
1e:43:e5:81:44:8b:4e:71:b3:6b:70:22:f5:3b:e2:
0b:aa:05:2b:cb:55:56:56:b6:c1:7c:b8:cf:62:6d:
82:d9:6d:f1:92:9e:75:10:81:c5:ca:aa:54:70:c3:
9d:98:1e:18:83:e3:13:20:7b:06:1e:ba:00:a4:1d:
72:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B4:1C:5F:23:25:E2:B4:AB:C3:4B:BF:F2:97:87:D5:CD:8D:EF:F7
X509v3 Authority Key Identifier:
keyid:49:40:CF:77:8D:D9:81:76:57:CD:8D:4F:EE:DD:42:3D:46:D1:A9:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SUDPd43ZgXZXzY1P7t1CPUbRqWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b025bc-bc73-4d3c-a430-00394b610a34/1/WbQcXyMl4rSrw0u_8peH1c2N7_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b025bc-bc73-4d3c-a430-00394b610a34/1/SUDPd43ZgXZXzY1P7t1CPUbRqWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.96.0/23
Signature Algorithm: sha256WithRSAEncryption
b2:42:b9:3d:c0:f1:1f:a2:93:1c:17:77:21:8e:20:ca:12:f3:
0b:31:4c:1f:a8:3a:43:30:8d:e3:e2:72:7c:d0:a0:cf:f9:2c:
f7:fd:53:ea:2b:ca:8a:63:f0:03:f6:94:1e:b1:8e:00:a7:68:
d4:0a:dc:11:09:6f:c8:61:fc:eb:79:59:e0:5c:a8:4b:27:19:
4c:08:a4:03:65:a3:ca:7e:f0:2b:02:86:fe:ad:95:24:f9:c1:
2c:65:3f:cb:c9:85:9d:0f:7a:2f:e3:f5:a2:10:d1:be:48:6a:
1a:47:01:f7:c2:c0:a2:00:0f:6f:3e:09:d1:bd:9a:de:9a:c6:
83:ad:9d:80:79:49:42:83:87:20:da:62:b9:7c:30:ca:bd:aa:
7f:2b:e9:be:67:f4:1c:26:17:3a:d5:a0:7f:42:80:ea:2d:90:
fb:1f:1a:e3:35:83:34:78:da:45:37:93:56:8c:d8:9c:f7:f2:
1e:41:93:f3:39:48:a2:5a:51:02:3b:3c:84:23:9c:7e:26:9f:
98:c7:21:53:9b:96:1f:08:70:b2:d0:09:49:a8:1b:d9:e4:c0:
e0:0e:08:96:77:90:95:bb:71:dc:49:3e:53:25:5b:c2:f7:f4:
0e:7f:48:e4:dd:8d:16:c4:2d:7e:c3:af:0d:fe:d2:98:55:b2:
2c:e4:5b:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:38 2024 by rpki-client on console-ams.rpki-client.org