Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Www5FY0gvzxIi9r-ZBoxP2WN2Zo.roa
File: Www5FY0gvzxIi9r-ZBoxP2WN2Zo.roa (raw, json)
Hash identifier: SxucI99hilsb0w/1b1cO7CrD4ZRgauqbK9/7yG2SkiI=
Subject key identifier: 5B:0C:39:15:8D:20:BF:3C:48:8B:DA:FE:64:1A:31:3F:65:8D:D9:9A
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018E1A02E57EF227D6863137CC1571DBEC25
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Www5FY0gvzxIi9r-ZBoxP2WN2Zo.roa
Signing time: Thu 07 Mar 2024 17:43:01 +0000
ROA not before: Thu 07 Mar 2024 17:43:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49581
IP address blocks: 2.56.247.0/24 maxlen: 24
5.253.246.0/24 maxlen: 24
37.221.92.0/24 maxlen: 24
37.221.94.0/24 maxlen: 24
45.13.227.0/24 maxlen: 24
45.84.196.0/24 maxlen: 24
45.84.198.0/24 maxlen: 24
45.131.108.0/24 maxlen: 24
45.131.111.0/24 maxlen: 24
45.137.201.0/24 maxlen: 24
45.137.203.0/24 maxlen: 24
45.142.104.0/24 maxlen: 24
45.142.107.0/24 maxlen: 24
45.147.7.0/24 maxlen: 24
45.151.56.0/24 maxlen: 24
92.118.207.0/24 maxlen: 24
185.117.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Mar 2024 20:49:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:1a:02:e5:7e:f2:27:d6:86:31:37:cc:15:71:db:ec:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Mar 7 17:43:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b0c39158d20bf3c488bdafe641a313f658dd99a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c4:61:48:e7:3f:e1:66:93:59:f7:66:f4:7e:
6f:b0:41:53:20:9d:ea:42:76:9b:a8:de:c4:6f:76:
d3:2b:a5:c7:8b:48:c2:9f:b0:e0:06:5a:79:49:74:
01:fe:36:98:62:b2:0b:3b:e4:3f:0d:9b:38:44:57:
1c:99:e2:86:32:9f:47:c3:30:a9:8c:d3:d9:20:23:
28:cf:94:8b:3c:1a:00:e1:89:0a:a0:50:1a:d3:5f:
58:cc:61:55:eb:5e:10:81:63:4f:22:b7:64:15:3b:
e1:7e:40:96:22:5e:c2:48:8d:69:35:01:44:ed:b6:
a1:6e:d1:a7:3b:98:29:52:d7:a7:46:e6:06:a3:dc:
38:6f:28:8d:c3:22:58:c8:82:4c:b8:8f:c9:c7:28:
db:cd:f5:f3:e0:18:82:c5:2a:42:36:9a:f7:a1:81:
13:2f:14:e2:ed:f7:99:df:e6:c2:46:cb:56:ca:58:
09:62:a5:6b:33:53:ea:ee:40:7a:fc:63:69:4c:cf:
b0:af:44:5f:43:e5:ed:ad:68:a3:df:0e:d5:bd:d5:
85:75:15:07:a0:f4:ee:7f:b2:8d:52:93:18:14:58:
8b:fa:cd:12:06:33:5f:cf:36:4b:88:a1:d5:d0:7d:
04:c5:c0:6f:03:5d:e7:cb:ce:e3:ac:eb:f0:04:16:
56:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:0C:39:15:8D:20:BF:3C:48:8B:DA:FE:64:1A:31:3F:65:8D:D9:9A
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Www5FY0gvzxIi9r-ZBoxP2WN2Zo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.247.0/24
5.253.246.0/24
37.221.92.0/24
37.221.94.0/24
45.13.227.0/24
45.84.196.0/24
45.84.198.0/24
45.131.108.0/24
45.131.111.0/24
45.137.201.0/24
45.137.203.0/24
45.142.104.0/24
45.142.107.0/24
45.147.7.0/24
45.151.56.0/24
92.118.207.0/24
185.117.3.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:61:03:48:75:44:4d:ef:69:27:59:f9:a6:9a:2a:d8:86:fe:
aa:c4:6d:76:26:bc:f1:cf:ef:85:a8:a3:c1:8c:35:8a:cb:ef:
c7:b6:d3:52:c9:d9:2f:3a:31:0e:68:a6:01:5c:ed:ae:a9:d3:
ed:8a:83:4a:67:75:69:2f:f6:47:c4:9c:6b:7c:75:0b:72:d9:
2c:01:ae:5d:8f:2f:a8:63:c7:8e:9b:dc:30:d0:b9:47:18:da:
7b:da:79:e3:8d:a8:8e:58:89:9e:9a:d2:e2:f4:72:fa:4a:ed:
2d:8b:de:92:eb:99:c7:6a:87:b4:4f:0c:ea:17:e8:37:c6:72:
9b:2e:83:e2:9c:eb:03:d5:d7:67:f6:5e:26:c1:54:e9:16:2b:
0b:b4:c2:92:17:bf:fe:ba:ad:1f:8e:5c:98:95:ac:e8:e0:cb:
f0:08:7e:1b:eb:14:f1:f2:22:7f:33:fe:2c:b3:56:ed:f1:e7:
b6:58:b3:fb:28:eb:27:57:64:a4:30:1c:7e:4b:b1:e2:6f:ee:
7e:21:8c:21:1c:1b:2d:a3:9a:da:ff:3b:95:32:18:69:57:49:
9c:e6:b4:d1:89:68:91:30:26:bd:04:06:14:04:1d:5f:55:03:
11:cc:4a:ae:26:f2:eb:54:21:7f:59:eb:af:6d:80:30:3b:d8:
e4:fd:44:b2
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgISAY4aAuV+8ifWhjE3zBVx2+wlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3
NTJmZGUwHhcNMjQwMzA3MTc0MzAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YjBjMzkxNThkMjBiZjNjNDg4YmRhZmU2NDFhMzEzZjY1OGRkOTlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArMRhSOc/4WaTWfdm9H5vsEFTIJ3q
QnabqN7Eb3bTK6XHi0jCn7DgBlp5SXQB/jaYYrILO+Q/DZs4RFccmeKGMp9HwzCp
jNPZICMoz5SLPBoA4YkKoFAa019YzGFV614QgWNPIrdkFTvhfkCWIl7CSI1pNQFE
7bahbtGnO5gpUtenRuYGo9w4byiNwyJYyIJMuI/JxyjbzfXz4BiCxSpCNpr3oYET
LxTi7feZ3+bCRstWylgJYqVrM1Pq7kB6/GNpTM+wr0RfQ+XtrWij3w7VvdWFdRUH
oPTuf7KNUpMYFFiL+s0SBjNfzzZLiKHV0H0ExcBvA13ny87jrOvwBBZWwQIDAQAB
o4ICaTCCAmUwHQYDVR0OBBYEFFsMORWNIL88SIva/mQaMT9ljdmaMB8GA1UdIwQY
MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt
YTNjYTBkYjgzMjU0LzEvV3d3NUZZMGd2enhJaTlyLVpCb3hQMldOMlpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0
LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH8GCCsGAQUFBwEHAQH/BHAwbjBsBAIAATBmAwQAAjj3AwQA
Bf32AwQAJd1cAwQAJd1eAwQALQ3jAwQALVTEAwQALVTGAwQALYNsAwQALYNvAwQA
LYnJAwQALYnLAwQALY5oAwQALY5rAwQALZMHAwQALZc4AwQAXHbPAwQAuXUDMA0G
CSqGSIb3DQEBCwUAA4IBAQB+YQNIdURN72knWfmmmirYhv6qxG12Jrzxz++FqKPB
jDWKy+/HttNSydkvOjEOaKYBXO2uqdPtioNKZ3VpL/ZHxJxrfHULctksAa5djy+o
Y8eOm9ww0LlHGNp72nnjjaiOWImemtLi9HL6Su0ti96S65nHaoe0TwzqF+g3xnKb
LoPinOsD1ddn9l4mwVTpFisLtMKSF7/+uq0fjlyYlazo4MvwCH4b6xTx8iJ/M/4s
s1bt8ee2WLP7KOsnV2SkMBx+S7Hib+5+IYwhHBsto5ra/zuVMhhpV0mc5rTRiWiR
MCa9BAYUBB1fVQMRzEquJvLrVCF/WeuvbYAwO9jk/USy
-----END CERTIFICATE-----
Generated at Thu Mar 28 22:36:58 2024 by rpki-client on console-fra.rpki-client.org