Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/Wj4fuCMh4iVSldnYk9e4Tpxcvak.roa
File: Wj4fuCMh4iVSldnYk9e4Tpxcvak.roa (raw, json)
Hash identifier: QVHtSdYp1hMVOAPgcQ2Xyyp7/66wBDubkdAZgNcuKtg=
Subject key identifier: 5A:3E:1F:B8:23:21:E2:25:52:95:D9:D8:93:D7:B8:4E:9C:5C:BD:A9
Certificate issuer: /CN=64a7a6cd583814d393bee2635b545574cc75620c
Certificate serial: 018C1A58E1261F983B6C43B7C29309C25325
Authority key identifier: 64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/Wj4fuCMh4iVSldnYk9e4Tpxcvak.roa
Signing time: Wed 29 Nov 2023 09:11:21 +0000
ROA not before: Wed 29 Nov 2023 09:11:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48944
IP address blocks: 185.157.8.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 29 Nov 2023 10:16:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1a:58:e1:26:1f:98:3b:6c:43:b7:c2:93:09:c2:53:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a7a6cd583814d393bee2635b545574cc75620c
Validity
Not Before: Nov 29 09:11:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a3e1fb82321e2255295d9d893d7b84e9c5cbda9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:0f:0a:ca:2f:ce:61:9d:4b:40:46:db:df:72:
1d:7c:d3:9c:3f:9c:2e:a1:9a:45:6a:f4:21:22:c8:
57:5e:ff:f2:a7:91:b2:a4:1e:95:80:fb:ca:c7:c8:
df:f2:ed:5c:6b:c7:c8:a2:89:f7:68:33:49:52:f9:
9f:b8:ad:7b:3d:19:65:1f:51:0e:2f:46:4c:f9:4c:
27:8e:5a:c5:16:86:49:96:b5:5e:e2:11:b8:62:6d:
36:9b:52:52:e7:45:b5:33:9f:bd:8c:fc:03:c7:1a:
bc:cc:ab:dc:87:68:28:7b:6b:d6:ae:c0:c4:89:a6:
ae:22:8a:0d:1b:50:ba:2b:bb:70:0e:c0:ad:29:18:
91:35:cb:1c:a6:a9:90:65:df:15:42:03:2d:93:30:
9b:a6:e8:7e:05:86:87:35:69:7d:6f:66:de:5f:8e:
cf:c2:43:12:db:78:41:fc:3a:b8:74:b7:1e:5a:03:
bc:26:5c:64:ce:35:49:16:16:c2:23:1d:cb:be:3e:
b9:30:10:ab:d7:c7:75:98:af:e6:89:6b:c2:f4:38:
89:5d:bb:0d:99:41:ef:d6:14:d4:ac:85:c3:25:0d:
f0:e2:74:54:bb:70:a9:94:56:65:94:05:9e:fe:a7:
03:09:85:62:33:bf:d0:b0:74:3a:3c:67:06:b6:03:
dd:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:3E:1F:B8:23:21:E2:25:52:95:D9:D8:93:D7:B8:4E:9C:5C:BD:A9
X509v3 Authority Key Identifier:
keyid:64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/Wj4fuCMh4iVSldnYk9e4Tpxcvak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.157.8.0/23
Signature Algorithm: sha256WithRSAEncryption
08:f9:56:e0:cd:f0:82:98:3f:e7:04:5d:a4:09:68:80:64:84:
d7:94:f0:45:70:95:05:42:41:b4:4b:fd:96:78:6a:57:06:0b:
21:9f:36:63:dd:6f:d4:fc:40:fd:1d:20:6e:3a:7f:fc:d5:38:
dc:6a:fa:cf:a7:dc:d8:ae:b0:03:c9:6b:bd:72:16:b0:09:ac:
6e:fc:c0:60:ef:9b:ee:1c:00:b7:6d:f8:3f:c5:83:93:e6:cd:
c6:ad:46:1e:d0:a6:76:7c:38:86:42:e6:ae:9e:bb:27:92:50:
2b:65:38:19:4f:2e:7b:4c:f3:f6:e7:b2:9c:19:3e:53:a8:13:
fb:5d:26:b5:e2:3c:60:b0:1b:d5:36:95:86:be:5b:30:aa:b7:
51:8a:57:f0:2d:4b:6e:02:8f:aa:54:a4:ad:a3:de:13:85:a5:
91:77:ad:ec:a1:78:0d:71:03:94:81:9d:3a:90:c5:1b:f0:51:
2e:09:e9:c9:48:9e:8d:48:f1:ab:a1:49:b4:96:c4:b0:78:b5:
b6:34:e9:fe:15:09:3b:a9:8a:49:5a:5b:da:c2:31:37:fb:10:
8a:08:a0:df:3c:83:04:92:e3:ab:fe:f0:15:62:9d:36:6d:1f:
8b:23:a7:5a:50:08:6a:34:2f:e6:3a:bc:a5:47:0f:72:20:0a:
c7:57:82:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:50 2024 by rpki-client on console-ams.rpki-client.org