Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/WnxKn9mh-jtPv8bRejHDQrNwFHM.roa
File: WnxKn9mh-jtPv8bRejHDQrNwFHM.roa (raw, json)
Hash identifier: nVBSCj9arfRT9dzZrHbHNgOLvVnmgZTw506w9xYQM1Q=
Subject key identifier: 5A:7C:4A:9F:D9:A1:FA:3B:4F:BF:C6:D1:7A:31:C3:42:B3:70:14:73
Certificate issuer: /CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Certificate serial: 01856FF03FE84A3FF640792839A639943BA2
Authority key identifier: 69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/WnxKn9mh-jtPv8bRejHDQrNwFHM.roa
Signing time: Mon 02 Jan 2023 00:44:54 +0000
ROA not before: Mon 02 Jan 2023 00:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6903
IP address blocks: 213.189.192.0/24 maxlen: 24
213.189.196.0/23 maxlen: 23
213.189.198.0/24 maxlen: 24
213.189.200.0/24 maxlen: 24
213.189.207.0/24 maxlen: 24
213.189.208.0/23 maxlen: 23
213.189.211.0/24 maxlen: 24
213.189.212.0/23 maxlen: 23
213.189.214.0/24 maxlen: 24
62.113.120.0/21 maxlen: 21
195.2.82.0/23 maxlen: 23
62.113.124.0/22 maxlen: 22
195.2.87.0/24 maxlen: 24
195.2.88.0/22 maxlen: 22
195.2.94.0/23 maxlen: 23
62.113.80.0/22 maxlen: 22
62.113.86.0/24 maxlen: 24
62.113.89.0/24 maxlen: 24
62.113.90.0/24 maxlen: 24
62.113.95.0/24 maxlen: 24
195.2.64.0/23 maxlen: 23
195.2.68.0/23 maxlen: 23
195.2.72.0/24 maxlen: 24
195.2.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f0:3f:e8:4a:3f:f6:40:79:28:39:a6:39:94:3b:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Validity
Not Before: Jan 2 00:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a7c4a9fd9a1fa3b4fbfc6d17a31c342b3701473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:46:e7:85:18:cd:e8:69:9f:dd:f4:07:01:12:
68:b9:20:d2:49:f5:52:0b:c6:43:bd:a8:09:b2:3a:
9b:df:19:9a:88:ed:b1:a5:fe:e2:60:34:5a:90:84:
7d:0d:93:f5:13:91:36:c3:27:4c:7a:fa:98:9c:0a:
c1:2e:f9:93:cc:ff:b5:79:4c:c6:10:22:a0:00:16:
c9:53:b3:c8:d3:e4:0a:6b:53:f8:ac:81:e7:72:61:
cf:34:11:3e:4d:da:19:e3:c9:d4:c9:b2:8a:e1:34:
c3:58:c6:ac:a1:4e:4e:5b:68:69:6e:45:eb:3b:78:
b3:fe:c5:c0:09:ff:5b:ad:23:c4:2a:50:57:0c:94:
e1:9b:b7:42:6b:14:39:35:7c:0a:f9:55:74:0e:96:
d7:c4:e9:25:38:d0:72:28:db:d6:f0:55:cc:9a:10:
60:5d:71:66:a1:96:b5:cd:29:dd:b1:eb:c8:0e:a0:
77:aa:09:25:4c:ca:5f:77:67:47:04:4b:ca:77:b6:
b5:a1:e0:1e:42:91:35:34:3f:61:05:6b:88:49:7e:
e2:87:69:35:ef:0a:64:9c:44:91:43:76:cb:85:1f:
3d:54:d1:6c:76:88:2b:ce:fe:97:4a:0d:b4:06:5f:
42:b0:e7:a6:28:eb:ab:d4:cc:1e:de:2f:50:32:fb:
7f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:7C:4A:9F:D9:A1:FA:3B:4F:BF:C6:D1:7A:31:C3:42:B3:70:14:73
X509v3 Authority Key Identifier:
keyid:69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/WnxKn9mh-jtPv8bRejHDQrNwFHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.113.80.0/22
62.113.86.0/24
62.113.89.0-62.113.90.255
62.113.95.0/24
62.113.120.0/21
195.2.64.0/23
195.2.68.0/23
195.2.72.0/24
195.2.77.0/24
195.2.82.0/23
195.2.87.0-195.2.91.255
195.2.94.0/23
213.189.192.0/24
213.189.196.0-213.189.198.255
213.189.200.0/24
213.189.207.0-213.189.209.255
213.189.211.0-213.189.214.255
Signature Algorithm: sha256WithRSAEncryption
c8:b8:bb:77:fb:10:26:49:42:49:96:ba:d5:6b:7d:73:94:77:
53:94:e2:16:91:50:a2:24:46:54:13:8d:53:8b:75:21:2e:b1:
9e:8c:71:38:b2:fb:6f:18:20:05:59:ab:bb:ed:bd:4f:7b:c7:
8f:55:9e:d4:b4:c4:39:e9:8d:73:75:63:37:a6:6f:d0:9e:57:
53:48:dc:6b:e5:7a:38:bf:24:5c:2a:25:e1:fc:df:1f:06:7d:
25:7a:d6:f2:e3:fc:43:d9:a5:8b:cb:61:d9:7e:55:fa:8f:fe:
83:ac:a8:1b:9c:c0:03:35:ef:88:52:bf:53:e2:03:72:cc:9b:
af:57:93:a5:21:97:55:d1:a6:a9:a9:58:c4:ae:9d:2b:27:b0:
5f:db:e0:d9:8e:e0:0c:9c:d7:4d:88:d7:76:bf:75:65:33:1e:
57:43:ff:a9:e9:f8:fa:25:40:f0:74:4f:e3:0c:f4:02:2a:e4:
cb:9d:8f:23:6f:fe:a6:16:b1:ca:b6:30:9f:9c:4b:74:51:2b:
93:6e:21:60:27:b5:b3:13:13:2c:45:a4:1c:2e:ae:e1:2f:b2:
01:ec:a5:35:af:0f:63:60:0f:f3:53:f4:40:70:bd:a8:04:34:
df:f1:dc:31:dc:ef:50:ad:c2:75:92:db:e0:ca:d5:cc:5b:0e:
c3:75:eb:87
-----BEGIN CERTIFICATE-----
MIIFijCCBHKgAwIBAgISAYVv8D/oSj/2QHkoOaY5lDuiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5YTRkNjkxNmI5MzE1OWFhODA5ODRhOWIzNzc0NjgzYmI1
NTBlYmQwHhcNMjMwMTAyMDA0NDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YTdjNGE5ZmQ5YTFmYTNiNGZiZmM2ZDE3YTMxYzM0MmIzNzAxNDczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1EbnhRjN6Gmf3fQHARJouSDSSfVS
C8ZDvagJsjqb3xmaiO2xpf7iYDRakIR9DZP1E5E2wydMevqYnArBLvmTzP+1eUzG
ECKgABbJU7PI0+QKa1P4rIHncmHPNBE+TdoZ48nUybKK4TTDWMasoU5OW2hpbkXr
O3iz/sXACf9brSPEKlBXDJThm7dCaxQ5NXwK+VV0DpbXxOklONByKNvW8FXMmhBg
XXFmoZa1zSndsevIDqB3qgklTMpfd2dHBEvKd7a1oeAeQpE1ND9hBWuISX7ih2k1
7wpknESRQ3bLhR89VNFsdogrzv6XSg20Bl9CsOemKOur1Mwe3i9QMvt/8QIDAQAB
o4ICljCCApIwHQYDVR0OBBYEFFp8Sp/Zofo7T7/G0Xoxw0KzcBRzMB8GA1UdIwQY
MBaAFGmk1pFrkxWaqAmEqbN3RoO7VQ69MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWFUV2tXdVRGWnFvQ1lTcHMzZEdnN3RWRHIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9jMDMxZTUtZmM2Ny00MWY1LThlYmUt
MzE5NzExMDA5N2M5LzEvV254S245bWgtanRQdjhiUmVqSERRck53RkhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC9jMDMxZTUtZmM2Ny00MWY1LThlYmUtMzE5NzExMDA5N2M5
LzEvYWFUV2tXdVRGWnFvQ1lTcHMzZEdnN3RWRHIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGrBggrBgEFBQcBBwEB/wSBmzCBmDCBlQQCAAEwgY4DBAI+
cVADBAA+cVYwDAMEAD5xWQMEAD5xWgMEAD5xXwMEAz5xeAMEAcMCQAMEAcMCRAME
AMMCSAMEAMMCTQMEAcMCUjAMAwQAwwJXAwQCwwJYAwQBwwJeAwQA1b3AMAwDBALV
vcQDBADVvcYDBADVvcgwDAMEANW9zwMEAdW90DAMAwQA1b3TAwQA1b3WMA0GCSqG
SIb3DQEBCwUAA4IBAQDIuLt3+xAmSUJJlrrVa31zlHdTlOIWkVCiJEZUE41Ti3Uh
LrGejHE4svtvGCAFWau77b1Pe8ePVZ7UtMQ56Y1zdWM3pm/QnldTSNxr5Xo4vyRc
KiXh/N8fBn0letby4/xD2aWLy2HZflX6j/6DrKgbnMADNe+IUr9T4gNyzJuvV5Ol
IZdV0aapqVjErp0rJ7Bf2+DZjuAMnNdNiNd2v3VlMx5XQ/+p6fj6JUDwdE/jDPQC
KuTLnY8jb/6mFrHKtjCfnEt0USuTbiFgJ7WzExMsRaQcLq7hL7IB7KU1rw9jYA/z
U/RAcL2oBDTf8dwx3O9QrcJ1ktvgytXMWw7DdeuH
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:05 2024 by rpki-client on console-fra.rpki-client.org