Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/3f9b7d-ab5b-4e99-af47-ef61a614142d/1/WefD3s4P0yrL7DcsKLV8LPffgt4.roa
File: WefD3s4P0yrL7DcsKLV8LPffgt4.roa (raw, json)
Hash identifier: gNwWabLnqDEqrHygvlaiNJtUIuD0qVr/kbPd/I6wdrg=
Subject key identifier: 59:E7:C3:DE:CE:0F:D3:2A:CB:EC:37:2C:28:B5:7C:2C:F7:DF:82:DE
Certificate issuer: /CN=f243f8eaad84ec091e8706a7c9866c1ade565edb
Certificate serial: 01857246F7CA54C7F100DE98DC3691320797
Authority key identifier: F2:43:F8:EA:AD:84:EC:09:1E:87:06:A7:C9:86:6C:1A:DE:56:5E:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8kP46q2E7AkehwanyYZsGt5WXts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/3f9b7d-ab5b-4e99-af47-ef61a614142d/1/WefD3s4P0yrL7DcsKLV8LPffgt4.roa
Signing time: Mon 02 Jan 2023 11:38:51 +0000
ROA not before: Mon 02 Jan 2023 11:38:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15536
IP address blocks: 194.26.23.0/24 maxlen: 24
194.26.22.0/23 maxlen: 23
194.26.22.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:f7:ca:54:c7:f1:00:de:98:dc:36:91:32:07:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f243f8eaad84ec091e8706a7c9866c1ade565edb
Validity
Not Before: Jan 2 11:38:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59e7c3dece0fd32acbec372c28b57c2cf7df82de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:3d:f7:4a:94:84:b2:61:5e:c9:64:38:a2:ad:
8e:d3:e0:55:28:d7:76:45:de:47:01:13:c8:17:72:
15:a0:4a:4a:a0:75:fe:1b:d4:ba:20:01:59:9a:a2:
9f:16:49:05:1e:91:9a:70:cc:39:8c:00:a8:e2:bd:
e3:84:ce:4a:ff:6f:55:8d:2f:23:19:b9:3c:03:66:
7d:22:f7:01:60:16:42:45:3d:7f:dc:99:3a:8d:cb:
9f:ae:d7:3e:22:12:80:5e:db:a7:72:5a:e8:5a:f3:
bf:43:98:ea:5a:c1:79:6b:60:98:e3:fc:2f:6b:5d:
f6:fc:fe:0e:b3:e9:37:8a:6a:bc:88:eb:ac:1f:76:
4f:70:45:04:ec:4e:b8:c0:0c:cc:ef:a5:38:3a:ef:
c3:b5:b5:23:61:5d:f3:e1:8c:68:27:19:84:b8:cc:
d7:cc:3b:78:e4:c8:cf:b0:d2:d5:42:db:b4:e6:30:
b9:99:f2:e9:59:f6:53:fc:61:ee:b0:af:db:8e:eb:
6a:4d:2a:b7:87:f0:28:ec:5c:28:ef:e3:36:3d:a0:
d5:0f:47:e0:c1:1d:05:f0:1a:9b:76:97:94:75:91:
17:47:ad:f0:ff:4c:dd:69:bb:31:23:1b:94:24:ce:
9c:dd:0b:72:70:56:ca:48:a8:b5:ae:be:8e:66:bc:
b4:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:E7:C3:DE:CE:0F:D3:2A:CB:EC:37:2C:28:B5:7C:2C:F7:DF:82:DE
X509v3 Authority Key Identifier:
keyid:F2:43:F8:EA:AD:84:EC:09:1E:87:06:A7:C9:86:6C:1A:DE:56:5E:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8kP46q2E7AkehwanyYZsGt5WXts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/3f9b7d-ab5b-4e99-af47-ef61a614142d/1/WefD3s4P0yrL7DcsKLV8LPffgt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/3f9b7d-ab5b-4e99-af47-ef61a614142d/1/8kP46q2E7AkehwanyYZsGt5WXts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.22.0/23
Signature Algorithm: sha256WithRSAEncryption
41:c8:7d:4f:04:a9:89:8a:4d:9e:ac:ff:d9:60:9b:11:88:89:
bf:21:b7:54:47:09:e7:47:76:74:f5:73:20:fb:10:32:52:42:
fd:31:ad:cd:7d:ea:f2:64:5a:31:32:6b:e4:b5:d9:7e:30:17:
1a:75:aa:9f:8b:14:a4:d6:78:b5:a7:0b:80:a4:e3:a8:91:b9:
18:b8:08:5b:b1:a2:7b:32:c9:d6:4a:46:09:e7:39:0a:39:e7:
a9:cc:14:c5:f0:33:f9:f5:73:41:74:55:7e:31:70:2e:dc:81:
89:e3:bf:6b:c2:ec:31:6e:b0:39:0b:a4:c0:49:d2:fa:b4:46:
9d:09:c9:66:7f:60:55:25:95:ad:05:bf:0a:ba:12:d8:43:7f:
b7:8c:7d:2a:d4:f3:ef:01:90:f1:b7:d2:db:30:be:91:ff:d9:
94:75:77:22:34:da:9e:3c:12:3b:e1:ce:95:b2:18:02:dd:8b:
ad:f7:29:c3:0a:82:47:7a:0c:8b:e1:8b:08:e1:b1:b8:2b:74:
41:01:da:79:43:ba:e8:8c:6b:95:22:81:ed:5a:bc:dd:60:98:
0f:37:60:8b:b1:ba:05:fa:08:47:89:3d:ac:28:fc:1c:7c:c5:
e6:d6:72:05:47:c0:97:cd:68:e0:2a:cd:ca:dc:dc:03:98:45:
a4:e1:96:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 16:35:10 2024 by rpki-client on console.sobornost.net