Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/822b22-8ca3-469d-9083-345b2ab0db18/1/WnUMNRtPwtW-k3dDqCLbdA694gA.roa
File: WnUMNRtPwtW-k3dDqCLbdA694gA.roa (raw, json)
Hash identifier: mYXz/51tx8llo6HE1scZMf2zpBoOFtkuLsS7VLIms6w=
Subject key identifier: 5A:75:0C:35:1B:4F:C2:D5:BE:93:77:43:A8:22:DB:74:0E:BD:E2:00
Certificate issuer: /CN=ce8a8d40e437adf4acd7cdb38e0402477a2e51a6
Certificate serial: 018925BFBE50E0A5630EEEF0594B5ED0CECE
Authority key identifier: CE:8A:8D:40:E4:37:AD:F4:AC:D7:CD:B3:8E:04:02:47:7A:2E:51:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zoqNQOQ3rfSs182zjgQCR3ouUaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/822b22-8ca3-469d-9083-345b2ab0db18/1/WnUMNRtPwtW-k3dDqCLbdA694gA.roa
Signing time: Wed 05 Jul 2023 11:11:10 +0000
ROA not before: Wed 05 Jul 2023 11:11:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208396
IP address blocks: 194.26.118.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:25:bf:be:50:e0:a5:63:0e:ee:f0:59:4b:5e:d0:ce:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce8a8d40e437adf4acd7cdb38e0402477a2e51a6
Validity
Not Before: Jul 5 11:11:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a750c351b4fc2d5be937743a822db740ebde200
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:1d:1f:06:3a:e9:8c:e2:fb:a7:98:f1:ff:bd:
e0:98:3f:c4:ad:34:1c:b3:61:37:e6:93:34:86:f7:
7a:19:34:61:4a:dd:74:8c:3e:52:fb:06:9f:c0:4f:
08:4d:df:76:17:d5:b2:8c:bd:9d:e3:b5:a7:dd:bf:
5a:f0:54:bb:dc:33:2b:a4:72:15:ad:6b:77:40:1a:
aa:2f:5f:0a:36:7f:00:ae:b9:18:c4:64:a1:29:d6:
b6:18:b8:00:9a:14:b8:e8:80:2a:d7:75:3c:c6:f2:
a6:4d:21:d0:88:10:68:aa:8d:4a:9c:cb:53:ad:6d:
87:82:e8:f8:4d:bc:a9:64:af:4b:79:f6:a3:f1:4a:
a0:06:e6:98:93:76:23:7a:33:de:72:80:c4:42:0b:
73:4d:cf:60:c5:b7:0e:dd:1a:cd:8e:f0:82:fc:2d:
6d:dd:02:1c:25:97:74:cc:0a:29:08:b2:06:bc:bc:
9f:c1:60:de:c9:7f:95:01:e0:70:25:1b:51:4c:35:
07:a4:09:08:ab:55:58:7c:0e:8a:0e:a8:4f:3b:fa:
96:ca:a2:63:32:35:0d:ee:ed:c3:47:53:d2:af:e7:
4f:76:e1:69:49:d5:72:cc:3f:1c:8a:51:12:7e:cc:
e7:2f:27:ae:62:71:14:45:14:35:18:af:0a:e1:1a:
4e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:75:0C:35:1B:4F:C2:D5:BE:93:77:43:A8:22:DB:74:0E:BD:E2:00
X509v3 Authority Key Identifier:
keyid:CE:8A:8D:40:E4:37:AD:F4:AC:D7:CD:B3:8E:04:02:47:7A:2E:51:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zoqNQOQ3rfSs182zjgQCR3ouUaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/822b22-8ca3-469d-9083-345b2ab0db18/1/WnUMNRtPwtW-k3dDqCLbdA694gA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/822b22-8ca3-469d-9083-345b2ab0db18/1/zoqNQOQ3rfSs182zjgQCR3ouUaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.118.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:aa:97:ba:c5:b2:df:66:ea:8e:a2:6e:8c:77:6b:bd:e3:d5:
8b:5e:5c:f9:ac:c6:2f:c9:93:3c:f0:22:68:46:f6:66:8a:aa:
ac:76:64:ab:75:d8:86:51:1b:b2:18:e8:ca:27:ba:64:b0:8a:
9e:f6:3e:d9:ed:45:1b:95:01:22:34:83:7c:87:3e:83:9d:33:
f2:9c:48:0e:9d:19:bb:f9:aa:d3:47:f7:c7:20:07:6b:fe:21:
b1:f2:9a:ee:a6:39:40:67:74:f3:c8:2e:82:fb:5d:4f:74:ca:
79:23:86:a2:da:11:3e:a5:54:05:dc:f6:61:15:08:43:4b:6d:
4b:59:dc:2d:a7:1c:ec:a8:3d:3e:20:9e:a7:30:80:07:86:be:
07:21:76:bf:3d:a5:aa:35:73:ff:7b:29:80:63:15:15:d3:43:
db:55:12:24:f0:50:bc:14:41:5c:28:75:2e:09:99:85:0b:c0:
d5:26:ca:2a:1c:1f:e3:c2:6f:5b:62:e5:c4:9e:74:df:51:a2:
3b:23:74:90:a0:1f:78:0f:55:4e:0a:f3:67:a6:3d:cf:09:c8:
52:df:77:4f:f4:6e:3c:74:65:eb:fc:5a:b8:4a:e7:1d:b0:c7:
7e:df:f3:fd:22:d3:c8:69:ab:61:05:14:e7:d1:24:50:07:7d:
dc:25:b0:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:03:08 2024 by rpki-client on console-ams.rpki-client.org