Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/Wau_yrrIknfyWE4_zgbHzJj_pqs.roa
File: Wau_yrrIknfyWE4_zgbHzJj_pqs.roa (raw, json)
Hash identifier: r3PZOPmq39LJHTACxGQGdPnLbKkrUJUXS0QMvkCS1g8=
Subject key identifier: 59:AB:BF:CA:BA:C8:92:77:F2:58:4E:3F:CE:06:C7:CC:98:FF:A6:AB
Certificate issuer: /CN=f71d4a4374df222ac3235b9602206d96bf1dac82
Certificate serial: 01856CCAD15A905DCD2C4DC54BDB38A6074F
Authority key identifier: F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/Wau_yrrIknfyWE4_zgbHzJj_pqs.roa
Signing time: Sun 01 Jan 2023 10:05:09 +0000
ROA not before: Sun 01 Jan 2023 10:05:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5607
IP address blocks: 188.220.0.0/14 maxlen: 14
51.146.0.0/16 maxlen: 16
90.192.0.0/11 maxlen: 11
93.96.224.0/19 maxlen: 19
87.80.0.0/15 maxlen: 15
51.198.0.0/15 maxlen: 15
176.255.240.0/24 maxlen: 24
176.255.242.0/24 maxlen: 24
176.255.241.0/24 maxlen: 24
51.190.0.0/15 maxlen: 15
151.224.0.0/13 maxlen: 13
5.64.0.0/13 maxlen: 13
51.194.0.0/16 maxlen: 16
93.96.0.0/17 maxlen: 17
46.64.0.0/15 maxlen: 15
94.192.0.0/14 maxlen: 14
78.86.0.0/16 maxlen: 16
51.182.0.0/15 maxlen: 15
51.241.0.0/16 maxlen: 16
149.241.0.0/16 maxlen: 16
2.120.0.0/13 maxlen: 13
2.216.0.0/13 maxlen: 13
176.248.0.0/13 maxlen: 13
51.186.0.0/15 maxlen: 15
94.0.0.0/12 maxlen: 12
93.96.128.0/18 maxlen: 18
51.19.0.0/16 maxlen: 16
176.24.0.0/14 maxlen: 14
78.105.0.0/16 maxlen: 16
2a02:c78::/29 maxlen: 29
2a02:c7d:8000::/33 maxlen: 33
2a02:c7d::/33 maxlen: 33
2a02:c7f:8000::/33 maxlen: 33
2a02:c7f::/33 maxlen: 33
2a02:c7e:8000::/33 maxlen: 33
2a02:c7e::/33 maxlen: 33
2a02:c7c:8000::/33 maxlen: 33
2a02:c7c::/33 maxlen: 33
Validation: Failed, certificate revoked on Tue 11 Apr 2023 14:18:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:d1:5a:90:5d:cd:2c:4d:c5:4b:db:38:a6:07:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f71d4a4374df222ac3235b9602206d96bf1dac82
Validity
Not Before: Jan 1 10:05:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59abbfcabac89277f2584e3fce06c7cc98ffa6ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:2a:88:3c:85:73:81:31:32:20:2d:14:d9:75:
3b:88:1a:a9:eb:ba:ec:19:6b:29:c8:eb:ff:67:8c:
68:32:33:4d:f3:23:63:47:45:ec:6a:a4:3a:96:0b:
1c:e6:b9:03:62:b0:21:fe:19:74:ec:5c:29:f9:8b:
ea:a3:95:27:1d:bd:0e:0d:57:9c:3a:06:74:2a:8e:
26:9e:ff:ef:06:5b:70:8a:36:27:f3:71:59:c1:43:
5e:3d:d9:3b:62:64:5e:77:ff:68:0c:c3:73:aa:f9:
6f:84:4e:73:ef:a4:71:e8:d0:f8:b1:e5:52:1f:6c:
ea:42:c7:40:a3:77:c1:5c:d6:b9:3c:b8:87:48:56:
48:e3:36:c4:ac:33:80:36:dd:5b:c6:a2:7d:9d:3a:
93:fc:b7:cd:41:e9:e7:a8:73:94:a3:cb:82:6a:29:
00:f5:2d:10:af:ab:68:a0:4e:5f:e8:e2:45:bc:3a:
68:87:19:08:08:91:01:87:d1:50:12:7f:4d:58:8c:
49:39:bc:3c:9a:fd:13:db:a5:92:16:91:22:7c:a2:
14:d1:40:84:29:47:99:e8:aa:9e:28:47:4e:40:29:
9d:1d:19:c2:b2:2a:4c:13:08:44:4f:eb:e8:fc:e5:
7c:8f:06:97:b8:9c:7b:fa:19:22:db:c9:fc:76:2b:
53:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:AB:BF:CA:BA:C8:92:77:F2:58:4E:3F:CE:06:C7:CC:98:FF:A6:AB
X509v3 Authority Key Identifier:
keyid:F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/Wau_yrrIknfyWE4_zgbHzJj_pqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/9x1KQ3TfIirDI1uWAiBtlr8drII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.120.0.0/13
2.216.0.0/13
5.64.0.0/13
46.64.0.0/15
51.19.0.0/16
51.146.0.0/16
51.182.0.0/15
51.186.0.0/15
51.190.0.0/15
51.194.0.0/16
51.198.0.0/15
51.241.0.0/16
78.86.0.0/16
78.105.0.0/16
87.80.0.0/15
90.192.0.0/11
93.96.0.0-93.96.191.255
93.96.224.0/19
94.0.0.0/12
94.192.0.0/14
149.241.0.0/16
151.224.0.0/13
176.24.0.0/14
176.248.0.0/13
188.220.0.0/14
IPv6:
2a02:c78::/29
Signature Algorithm: sha256WithRSAEncryption
72:6a:40:23:d7:56:96:62:a6:1c:93:50:c9:0f:8b:bd:03:7d:
14:27:33:16:d5:fa:33:74:92:7c:37:16:76:08:4e:94:7e:b0:
dc:69:ba:0d:1e:77:97:f7:e4:75:8d:22:ce:11:1f:aa:08:b0:
a0:a1:b0:b2:ed:41:40:05:4b:5d:d0:be:82:b7:03:a1:b8:99:
6c:d2:55:0d:9c:be:92:33:1b:c6:60:45:54:a9:d7:e2:d1:d4:
f1:8b:c4:19:00:6a:03:f0:45:f2:7a:bb:a0:06:cc:85:4b:9d:
d2:65:2f:ca:45:b7:31:a7:9f:b6:d1:f7:06:ba:c0:be:fa:d1:
1b:2c:38:70:f1:d8:21:0a:34:ef:50:dc:8a:38:ab:62:9e:96:
9a:6e:8f:ca:c7:c8:fc:c9:59:8a:71:01:e4:2f:45:39:a6:fa:
17:87:d9:95:5a:73:9b:39:a0:94:e4:3d:78:86:a1:1c:e3:a6:
70:28:c0:e8:f4:3a:f2:6d:59:20:7c:f9:9f:e7:d6:df:20:86:
09:e5:e4:5e:6b:1d:ed:1c:07:79:38:d5:55:f0:8d:50:00:5c:
c5:a7:ce:3b:a5:64:40:ad:2b:24:35:6a:eb:ef:54:cf:08:fd:
ab:e0:ee:3b:4d:8b:1b:ce:3d:2c:95:1f:ac:67:05:7c:49:e6:
73:70:51:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:06 2024 by rpki-client on console-ams.rpki-client.org