Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/WbLhinSQzz72Q4BnrPcMHDdq6Es.roa
File: WbLhinSQzz72Q4BnrPcMHDdq6Es.roa (raw, json)
Hash identifier: itZ4x7yGEZFIGvjq9Q0BBc36Sy9wG+RPXFjlzeQZcRo=
Subject key identifier: 59:B2:E1:8A:74:90:CF:3E:F6:43:80:67:AC:F7:0C:1C:37:6A:E8:4B
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 01885791FC24D734649D63E0A2548CE17C74
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/WbLhinSQzz72Q4BnrPcMHDdq6Es.roa
Signing time: Fri 26 May 2023 10:19:24 +0000
ROA not before: Fri 26 May 2023 10:19:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30938
IP address blocks: 45.12.216.0/24 maxlen: 24
45.12.217.0/24 maxlen: 24
45.12.219.0/24 maxlen: 24
45.12.218.0/24 maxlen: 24
5.39.248.0/24 maxlen: 24
5.39.251.0/24 maxlen: 24
5.39.252.0/24 maxlen: 24
5.39.250.0/24 maxlen: 24
5.39.253.0/24 maxlen: 24
185.5.36.0/22 maxlen: 22
31.192.240.0/21 maxlen: 21
5.178.98.0/24 maxlen: 24
5.178.97.0/24 maxlen: 24
5.178.96.0/24 maxlen: 24
5.144.176.0/21 maxlen: 21
5.178.99.0/24 maxlen: 24
5.178.101.0/24 maxlen: 24
5.178.105.0/24 maxlen: 24
5.178.104.0/24 maxlen: 24
5.178.106.0/24 maxlen: 24
5.178.107.0/24 maxlen: 24
5.39.254.0/24 maxlen: 24
5.39.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 25 Jun 2023 17:09:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:57:91:fc:24:d7:34:64:9d:63:e0:a2:54:8c:e1:7c:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: May 26 10:19:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59b2e18a7490cf3ef6438067acf70c1c376ae84b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:4c:8a:13:56:98:4f:df:28:de:56:09:f2:db:
1b:88:bc:78:da:64:93:66:5a:35:79:22:b8:47:5f:
1f:10:ae:a9:d7:95:97:81:7d:7f:24:30:ed:eb:e2:
43:8e:9f:87:69:d0:d8:5e:c8:c4:90:f1:a9:22:2e:
92:a1:81:df:ce:64:b2:8f:ec:45:d4:83:fc:4e:7a:
b0:ac:24:10:9a:2f:a9:7f:24:e5:95:28:9d:5a:25:
d4:e5:fd:28:46:7a:ce:a9:60:60:cb:7f:55:17:24:
4c:c4:e5:f4:b6:a2:bd:e5:e4:66:2d:d6:29:5a:fa:
b4:61:d7:5f:15:33:ee:88:0e:ce:0b:34:29:15:a3:
d5:44:c6:f3:58:03:42:b9:64:cb:2c:3a:5b:0f:79:
da:ed:ff:6e:ee:fb:7a:3b:91:36:ef:f6:ad:9d:27:
e7:7c:4d:d8:80:57:fb:f3:17:24:d6:12:d6:7d:1c:
bc:8f:ad:4b:70:c0:88:34:d6:38:c3:e0:ad:97:e9:
26:47:c1:44:f3:26:fd:f1:f9:44:ec:c5:41:bb:57:
24:4a:9c:fa:2e:37:12:d5:87:14:f1:05:a7:03:bb:
6b:fe:a2:53:b8:96:ab:db:52:b5:54:16:27:9e:4d:
67:1b:22:36:67:a2:2a:0e:67:25:32:0a:9c:a3:33:
89:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B2:E1:8A:74:90:CF:3E:F6:43:80:67:AC:F7:0C:1C:37:6A:E8:4B
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/WbLhinSQzz72Q4BnrPcMHDdq6Es.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.248.0/24
5.39.250.0-5.39.255.255
5.144.176.0/21
5.178.96.0/22
5.178.101.0/24
5.178.104.0/22
31.192.240.0/21
45.12.216.0/22
185.5.36.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:5f:95:f3:c5:4a:c7:79:8f:eb:d8:8e:3d:c1:fd:1c:9b:c0:
ed:0d:57:80:3c:4b:fe:b5:e5:4a:2c:26:1d:00:d6:33:91:72:
4d:35:58:45:11:f3:2a:e9:50:52:7e:6e:1e:85:c3:ed:81:29:
9c:7a:2a:6f:61:c9:f5:31:f8:8c:08:84:33:20:08:89:2f:e9:
de:88:6e:c9:37:1c:ce:a4:d6:d3:9d:ff:1a:6f:02:c2:f3:e2:
ee:5c:a0:e6:e5:55:4f:39:52:fc:f2:9d:74:3f:d3:98:ba:cb:
6d:16:6f:e7:7c:25:69:2c:5a:40:83:d9:50:90:e2:a2:b9:32:
ba:26:28:b8:65:9c:b5:34:23:66:72:04:96:7f:e9:75:b4:ef:
36:83:5c:03:a6:fb:ae:74:18:0a:6d:64:93:ec:f5:8e:cc:ad:
3b:37:27:66:b2:3b:1a:cb:50:f2:7e:55:7d:d8:cb:25:c5:87:
25:ad:41:60:a5:6f:13:e1:98:7b:c5:a1:10:e9:80:67:44:47:
6b:67:f9:32:ba:5e:31:1b:ac:b2:5a:6f:27:03:f5:17:47:33:
8f:07:31:d8:e0:e8:4b:91:ed:7a:be:6e:95:fd:a6:0d:98:b4:
c4:f3:ea:2f:62:af:54:bd:1f:fc:2e:ad:03:2d:22:6d:b5:13:
97:89:dc:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:33 2024 by rpki-client on console-fra.rpki-client.org