Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/WY1gLjZipD39sXI47ws6LIuGBzA.roa
File: WY1gLjZipD39sXI47ws6LIuGBzA.roa (raw, json)
Hash identifier: wf81e94AOUaVvHOSeeAg1WAQVpetJnrN06lLtFnS4oo=
Subject key identifier: 59:8D:60:2E:36:62:A4:3D:FD:B1:72:38:EF:0B:3A:2C:8B:86:07:30
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0185E3A23AA646F2C1EA9E9F7BBC52AAE196
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/WY1gLjZipD39sXI47ws6LIuGBzA.roa
Signing time: Tue 24 Jan 2023 11:55:37 +0000
ROA not before: Tue 24 Jan 2023 11:55:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213250
IP address blocks: 45.89.124.0/23 maxlen: 23
45.89.126.0/23 maxlen: 23
212.87.212.0/23 maxlen: 23
45.133.74.0/24 maxlen: 24
45.13.224.0/23 maxlen: 23
109.71.252.0/24 maxlen: 24
5.182.206.0/23 maxlen: 23
5.182.204.0/23 maxlen: 23
45.11.229.0/24 maxlen: 24
45.131.64.0/24 maxlen: 24
45.131.66.0/23 maxlen: 23
37.221.93.0/24 maxlen: 24
194.15.36.0/24 maxlen: 24
2.56.245.0/24 maxlen: 24
5.252.103.0/24 maxlen: 24
5.252.100.0/22 maxlen: 22
5.252.100.0/24 maxlen: 24
5.252.101.0/24 maxlen: 24
5.252.102.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e3:a2:3a:a6:46:f2:c1:ea:9e:9f:7b:bc:52:aa:e1:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 24 11:55:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=598d602e3662a43dfdb17238ef0b3a2c8b860730
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:6d:5b:5e:c6:fa:6e:41:e6:53:cc:aa:f4:ba:
00:f7:75:1e:e7:4d:39:c8:47:02:a6:5e:fd:af:de:
bb:5a:48:33:93:5d:1e:a9:19:61:dd:a2:11:66:36:
2c:50:f8:0b:8e:cb:bd:30:63:05:0d:99:94:9f:32:
b3:bd:88:d6:82:ad:d5:81:3b:c2:e7:c4:d8:1c:10:
7a:6a:d5:49:34:c0:c3:1d:bf:3d:bf:06:ed:06:d3:
08:10:36:e0:a7:56:b0:de:cd:e2:c3:84:e7:97:1b:
ab:6c:a3:99:2c:eb:81:69:0d:24:96:94:43:01:f4:
83:1b:10:07:bf:57:91:db:d3:12:7f:46:58:77:b4:
51:d9:fc:df:02:71:6f:aa:0b:b7:0a:64:ad:b4:7f:
52:20:78:ee:ae:f9:81:f7:c1:5c:2c:a1:1d:ec:82:
f3:d6:a2:02:83:ee:0c:5f:45:09:3a:f3:13:ed:a1:
26:17:4e:a2:b4:d3:06:3f:89:07:72:67:2f:02:ee:
4e:6c:08:96:fa:39:6a:45:23:ad:72:f1:ca:bb:69:
9c:e0:80:15:01:f8:82:45:ad:fc:71:db:03:93:b4:
95:ff:9f:b1:fe:24:38:28:60:bd:94:34:99:36:66:
5f:b2:93:9a:09:7a:be:ea:a9:75:ef:59:16:9d:58:
4d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:8D:60:2E:36:62:A4:3D:FD:B1:72:38:EF:0B:3A:2C:8B:86:07:30
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/WY1gLjZipD39sXI47ws6LIuGBzA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.245.0/24
5.182.204.0/22
5.252.100.0/22
37.221.93.0/24
45.11.229.0/24
45.13.224.0/23
45.89.124.0/22
45.131.64.0/24
45.131.66.0/23
45.133.74.0/24
109.71.252.0/24
194.15.36.0/24
212.87.212.0/23
Signature Algorithm: sha256WithRSAEncryption
13:90:3c:4d:13:c8:1b:92:87:19:94:92:93:f4:dc:43:0e:0f:
5c:df:34:0d:19:84:29:07:a4:b9:72:d7:4e:7c:25:dc:df:9a:
0a:ef:e9:cd:cd:c4:67:22:1b:d3:56:00:93:99:5d:97:cb:01:
99:3e:ca:f5:34:0b:41:65:06:89:ba:0e:80:41:c2:ea:40:47:
aa:04:03:cf:41:04:fb:51:74:5e:36:c7:f3:e8:0b:61:1c:a0:
74:d0:59:4b:db:dc:8f:6b:af:1d:de:b2:a6:9b:3d:3c:0f:ab:
40:62:71:b9:1a:42:a2:cf:2c:0f:f6:8c:23:98:5d:71:ee:24:
a2:02:36:15:c6:72:58:d8:27:74:29:48:3f:87:eb:f2:fa:89:
f7:06:37:dd:25:cf:91:00:46:f5:1b:cc:be:fc:12:ea:3f:8c:
54:df:bb:2d:4c:a4:41:9d:05:13:1c:52:9c:ab:c2:7f:f6:0f:
43:db:57:6b:da:39:0c:93:7b:89:7a:32:ed:86:fc:87:9d:9e:
9c:7f:12:a1:c7:87:01:e5:79:46:09:83:6f:07:1d:96:3c:39:
bf:76:35:30:11:a6:f7:3e:2d:c9:91:c8:de:c1:90:6e:19:34:
19:fe:8d:4c:a7:d0:70:a2:0b:96:bb:e5:0a:7b:2e:6e:9a:c9:
19:d2:46:36
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgISAYXjojqmRvLB6p6fe7xSquGWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3
NTJmZGUwHhcNMjMwMTI0MTE1NTM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OThkNjAyZTM2NjJhNDNkZmRiMTcyMzhlZjBiM2EyYzhiODYwNzMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi21bXsb6bkHmU8yq9LoA93Ue5005
yEcCpl79r967Wkgzk10eqRlh3aIRZjYsUPgLjsu9MGMFDZmUnzKzvYjWgq3VgTvC
58TYHBB6atVJNMDDHb89vwbtBtMIEDbgp1aw3s3iw4TnlxurbKOZLOuBaQ0klpRD
AfSDGxAHv1eR29MSf0ZYd7RR2fzfAnFvqgu3CmSttH9SIHjurvmB98FcLKEd7ILz
1qICg+4MX0UJOvMT7aEmF06itNMGP4kHcmcvAu5ObAiW+jlqRSOtcvHKu2mc4IAV
AfiCRa38cdsDk7SV/5+x/iQ4KGC9lDSZNmZfspOaCXq+6ql171kWnVhNJwIDAQAB
o4ICUTCCAk0wHQYDVR0OBBYEFFmNYC42YqQ9/bFyOO8LOiyLhgcwMB8GA1UdIwQY
MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt
YTNjYTBkYjgzMjU0LzEvV1kxZ0xqWmlwRDM5c1hJNDd3czZMSXVHQnpBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0
LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGcGCCsGAQUFBwEHAQH/BFgwVjBUBAIAATBOAwQAAjj1AwQC
BbbMAwQCBfxkAwQAJd1dAwQALQvlAwQBLQ3gAwQCLVl8AwQALYNAAwQBLYNCAwQA
LYVKAwQAbUf8AwQAwg8kAwQB1FfUMA0GCSqGSIb3DQEBCwUAA4IBAQATkDxNE8gb
kocZlJKT9NxDDg9c3zQNGYQpB6S5ctdOfCXc35oK7+nNzcRnIhvTVgCTmV2XywGZ
Psr1NAtBZQaJug6AQcLqQEeqBAPPQQT7UXReNsfz6AthHKB00FlL29yPa68d3rKm
mz08D6tAYnG5GkKizywP9owjmF1x7iSiAjYVxnJY2Cd0KUg/h+vy+on3BjfdJc+R
AEb1G8y+/BLqP4xU37stTKRBnQUTHFKcq8J/9g9D21dr2jkMk3uJejLthvyHnZ6c
fxKhx4cB5XlGCYNvBx2WPDm/djUwEab3Pi3JkcjewZBuGTQZ/o1Mp9BwoguWu+UK
ey5umskZ0kY2
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:30 2023 by rpki-client on console-fra.rpki-client.org