Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/WIL1CzUW_t87pt7QJD8yOTvueJg.roa
File: WIL1CzUW_t87pt7QJD8yOTvueJg.roa (raw, json)
Hash identifier: RkOIlZOPrKBdvz46BnP2Am05P65STrpGhISlTFlFCQk=
Subject key identifier: 58:82:F5:0B:35:16:FE:DF:3B:A6:DE:D0:24:3F:32:39:3B:EE:78:98
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F122C5E9729EA68ABB0EAEB8E24E6FE77
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/WIL1CzUW_t87pt7QJD8yOTvueJg.roa
Signing time: Wed 24 Apr 2024 22:14:08 +0000
ROA not before: Wed 24 Apr 2024 22:14:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, certificate revoked on Wed 24 Apr 2024 23:05:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:12:2c:5e:97:29:ea:68:ab:b0:ea:eb:8e:24:e6:fe:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 24 22:14:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5882f50b3516fedf3ba6ded0243f32393bee7898
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:45:33:9a:21:63:73:a0:4b:4b:ce:d3:83:89:
dc:dc:58:83:da:5a:14:44:b7:ae:43:09:c3:23:3e:
05:d0:72:fc:f0:2e:4f:21:db:54:ac:22:cc:97:1d:
94:f3:29:31:15:bd:e7:75:be:07:2b:27:7f:60:4f:
c3:45:e2:f1:48:f8:00:67:a5:09:54:f3:1b:b7:ed:
ad:d3:a1:5e:22:5f:42:35:1e:1c:35:df:34:97:11:
a7:d4:31:33:e0:cd:e3:60:c1:90:cd:46:e0:a8:00:
4a:69:1c:b7:a2:2f:96:f6:50:21:20:3c:3b:89:f2:
76:80:0b:ac:23:cd:f7:67:55:fc:b7:eb:56:0d:a0:
09:2a:89:93:49:99:33:27:87:e7:83:c2:5f:09:59:
0d:78:36:2f:e1:3a:e2:43:ac:1b:09:59:97:8b:3c:
71:84:72:5b:5c:c8:c2:b7:2e:0f:01:a2:a8:bb:e5:
76:42:97:73:ae:40:38:97:f5:0a:03:b1:a6:f5:ce:
a8:3f:ab:df:fb:2c:83:f7:64:1b:f1:9a:1e:32:cb:
63:59:f5:4b:48:80:5e:f9:ad:fe:57:bc:89:1e:ae:
8f:ea:f6:6d:40:df:98:d6:a5:4d:b3:ee:f1:db:eb:
94:02:bb:00:cb:e1:01:0e:e6:81:78:6f:65:e6:bd:
45:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:82:F5:0B:35:16:FE:DF:3B:A6:DE:D0:24:3F:32:39:3B:EE:78:98
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/WIL1CzUW_t87pt7QJD8yOTvueJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64:ffff:0:18f:543:9e41/128
Signature Algorithm: sha256WithRSAEncryption
13:44:44:1c:b6:67:a6:90:33:48:cd:7b:d2:45:e8:c1:88:ac:
7e:18:e1:d9:e2:fb:a5:cd:01:cd:23:22:bd:ed:74:39:b3:c7:
8d:7a:3e:19:43:57:77:f2:4c:e3:0a:fd:86:f6:eb:8c:49:6d:
9d:75:a5:e0:22:34:58:11:14:8c:e5:54:e6:b0:33:c6:a2:ab:
4b:86:28:07:fb:03:eb:7b:c4:26:ad:3c:e3:ab:c2:09:9b:63:
f3:f4:32:94:7e:fd:da:ca:c9:df:e7:6f:ce:b5:1b:75:88:ec:
96:f6:8f:75:89:95:74:4c:b2:f2:0b:5e:4a:a2:e2:68:ae:e8:
95:dd:81:98:84:5d:7f:45:86:04:e8:c1:9d:db:3e:54:cb:ed:
52:5b:f0:95:2b:3b:03:8a:16:2c:b0:1f:0d:5b:a1:1b:f9:2a:
4b:dd:d9:51:b3:1a:99:cc:d6:cd:0a:96:c2:36:a8:2b:d9:d0:
1f:66:87:66:c9:3f:7e:11:76:db:47:30:56:90:6c:96:66:9f:
94:78:1a:b2:ab:ab:46:6c:2d:16:95:68:56:25:df:40:1a:cb:
b1:c3:e3:61:fb:39:47:63:46:6a:05:f8:0b:60:87:8e:96:3f:
0d:20:a2:46:bb:6f:36:92:49:78:9f:06:bb:9a:c8:c9:6a:d8:
f3:d2:57:20
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgISAY8SLF6XKepoq7Dq644k5v53MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYmVjNDFiZDJmM2IxNzlkZTA5NTE0MzA2NTMwYmQzZmJh
YzcwN2IwHhcNMjQwNDI0MjIxNDA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ODgyZjUwYjM1MTZmZWRmM2JhNmRlZDAyNDNmMzIzOTNiZWU3ODk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr0UzmiFjc6BLS87Tg4nc3FiD2loU
RLeuQwnDIz4F0HL88C5PIdtUrCLMlx2U8ykxFb3ndb4HKyd/YE/DReLxSPgAZ6UJ
VPMbt+2t06FeIl9CNR4cNd80lxGn1DEz4M3jYMGQzUbgqABKaRy3oi+W9lAhIDw7
ifJ2gAusI833Z1X8t+tWDaAJKomTSZkzJ4fng8JfCVkNeDYv4TriQ6wbCVmXizxx
hHJbXMjCty4PAaKou+V2QpdzrkA4l/UKA7Gm9c6oP6vf+yyD92Qb8ZoeMstjWfVL
SIBe+a3+V7yJHq6P6vZtQN+Y1qVNs+7x2+uUArsAy+EBDuaBeG9l5r1FNQIDAQAB
o4ICJDCCAiAwHQYDVR0OBBYEFFiC9Qs1Fv7fO6be0CQ/Mjk77niYMB8GA1UdIwQY
MBaAFLK+xBvS87F53glRQwZTC9P7rHB7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYt
ZDEyZjAzOWRiMmM5LzEvV0lMMUN6VVdfdDg3cHQ3UUpEOHlPVHZ1ZUpnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYtZDEyZjAzOWRiMmM5
LzEvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAMBAIAATAGAwQDwQAYMBkE
AgACMBMDEQAgAQZ8AGT//wAAAY8FQ55BMA0GCSqGSIb3DQEBCwUAA4IBAQATREQc
tmemkDNIzXvSRejBiKx+GOHZ4vulzQHNIyK97XQ5s8eNej4ZQ1d38kzjCv2G9uuM
SW2ddaXgIjRYERSM5VTmsDPGoqtLhigH+wPre8QmrTzjq8IJm2Pz9DKUfv3aysnf
52/OtRt1iOyW9o91iZV0TLLyC15KouJoruiV3YGYhF1/RYYE6MGd2z5Uy+1SW/CV
KzsDihYssB8NW6Eb+SpL3dlRsxqZzNbNCpbCNqgr2dAfZodmyT9+EXbbRzBWkGyW
Zp+UeBqyq6tGbC0WlWhWJd9AGsuxw+Nh+zlHY0ZqBfgLYIeOlj8NIKJGu282kkl4
nwa7msjJatjz0lcg
-----END CERTIFICATE-----
Generated at Fri Apr 26 07:41:48 2024 by rpki-client on console.sobornost.net