Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/f25066-9eba-43ac-bbb4-7b1778ddf7a9/1/WsWG-Ux-FwJ2jOUywXcgYC6OVUk.roa
File: WsWG-Ux-FwJ2jOUywXcgYC6OVUk.roa (raw, json)
Hash identifier: 3KgepsFrc2Td8RImPzufQ96uGvAnDTRvc3dJeN3AcDY=
Subject key identifier: 5A:C5:86:F9:4C:7E:17:02:76:8C:E5:32:C1:77:20:60:2E:8E:55:49
Certificate issuer: /CN=19cdd8206c1e352c5065e481797ef77af0c3de8d
Certificate serial: 018570429ECBC235A0857C853F28458BF953
Authority key identifier: 19:CD:D8:20:6C:1E:35:2C:50:65:E4:81:79:7E:F7:7A:F0:C3:DE:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gc3YIGweNSxQZeSBeX73evDD3o0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/f25066-9eba-43ac-bbb4-7b1778ddf7a9/1/WsWG-Ux-FwJ2jOUywXcgYC6OVUk.roa
Signing time: Mon 02 Jan 2023 02:14:52 +0000
ROA not before: Mon 02 Jan 2023 02:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51669
IP address blocks: 176.120.176.0/22 maxlen: 22
176.120.176.0/20 maxlen: 20
176.120.180.0/22 maxlen: 22
176.120.184.0/22 maxlen: 22
176.120.188.0/22 maxlen: 22
176.120.190.0/24 maxlen: 24
178.159.48.0/20 maxlen: 20
178.159.48.0/22 maxlen: 22
178.159.56.0/22 maxlen: 22
178.159.52.0/22 maxlen: 22
178.159.60.0/22 maxlen: 22
31.129.128.0/22 maxlen: 22
31.129.132.0/22 maxlen: 22
31.129.128.0/19 maxlen: 19
31.129.133.0/24 maxlen: 24
185.63.217.0/24 maxlen: 24
185.63.216.0/23 maxlen: 23
185.63.216.0/24 maxlen: 24
31.129.136.0/22 maxlen: 22
185.63.218.0/23 maxlen: 23
185.63.219.0/24 maxlen: 24
185.63.218.0/24 maxlen: 24
31.129.144.0/22 maxlen: 22
31.129.140.0/22 maxlen: 22
31.129.148.0/22 maxlen: 22
31.129.152.0/22 maxlen: 22
31.129.156.0/22 maxlen: 22
31.129.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:9e:cb:c2:35:a0:85:7c:85:3f:28:45:8b:f9:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19cdd8206c1e352c5065e481797ef77af0c3de8d
Validity
Not Before: Jan 2 02:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ac586f94c7e1702768ce532c17720602e8e5549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:b7:e3:cf:50:52:9e:5e:90:9f:2d:76:b2:b9:
56:6f:42:1b:35:2c:b1:3e:1c:0b:7d:ce:68:17:98:
70:81:29:d2:d7:c1:d6:21:8b:d9:c1:22:96:c2:89:
20:58:27:2d:b3:25:f5:ef:d5:2a:a9:70:c4:09:b6:
58:7f:c3:e0:41:51:74:d0:38:17:e3:89:94:9f:74:
22:f1:93:82:3c:14:2e:d0:c9:2f:6a:d5:85:4b:0d:
a3:ee:d0:7b:9d:f0:fc:ba:a3:5c:53:81:21:74:1d:
5f:9c:49:b9:80:d8:a8:10:eb:4b:12:70:ea:6c:cb:
f2:07:be:75:4b:29:07:02:60:1f:50:ef:d3:b0:e7:
ad:d6:26:9f:70:da:20:d7:1c:cd:1a:f4:51:8a:fe:
2d:d2:91:de:c6:7c:28:5a:1f:bb:63:1a:ea:73:0d:
0d:96:fb:b1:88:9d:9b:66:e8:c6:d6:b9:4d:7a:94:
82:70:59:98:77:3d:1c:cc:b2:59:18:b3:22:49:2e:
51:9b:fa:47:b2:cf:b2:11:bb:5e:80:15:c4:ad:62:
ab:23:03:4f:55:bb:57:7f:d7:25:40:50:fb:b7:82:
50:e4:db:7e:be:5d:94:d3:d6:f4:6b:c1:92:a7:f8:
84:89:12:8d:1c:ba:2c:e8:df:b3:8d:e9:b7:36:fd:
79:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:C5:86:F9:4C:7E:17:02:76:8C:E5:32:C1:77:20:60:2E:8E:55:49
X509v3 Authority Key Identifier:
keyid:19:CD:D8:20:6C:1E:35:2C:50:65:E4:81:79:7E:F7:7A:F0:C3:DE:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gc3YIGweNSxQZeSBeX73evDD3o0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/f25066-9eba-43ac-bbb4-7b1778ddf7a9/1/WsWG-Ux-FwJ2jOUywXcgYC6OVUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/f25066-9eba-43ac-bbb4-7b1778ddf7a9/1/Gc3YIGweNSxQZeSBeX73evDD3o0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.129.128.0/19
176.120.176.0/20
178.159.48.0/20
185.63.216.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:48:76:ae:e8:87:2c:3a:74:24:a9:a7:37:b5:88:91:e5:6e:
b8:b9:cb:5a:30:81:41:fa:77:bc:de:17:d5:df:d8:d4:f8:4d:
94:b5:90:8f:56:01:e5:93:47:ba:1f:c5:2c:de:b5:1b:37:ee:
40:83:f1:9a:55:9c:ef:0a:5f:f4:c5:d4:96:d7:11:16:3c:30:
15:18:01:96:ba:e9:82:00:fd:3c:35:07:fc:79:aa:57:2b:53:
15:a1:65:b6:61:e1:29:9e:48:d2:09:d8:1d:e1:15:ee:88:9d:
51:f0:56:70:bb:2c:1e:9c:3e:8e:ba:5c:df:2e:f0:2d:86:13:
c5:a4:68:24:16:03:53:bd:d9:aa:24:3b:c2:4d:22:22:c9:0e:
41:48:72:d7:38:ef:2d:96:73:f6:92:4d:13:54:f7:20:9d:05:
ae:c6:b1:a6:0c:ae:4b:40:c3:55:47:15:03:12:20:38:8e:a7:
23:ca:68:93:ab:51:96:93:c6:a7:f4:02:6a:d0:9b:89:98:9f:
11:e9:69:cd:84:31:6c:87:e5:48:a7:a2:45:1c:27:3f:5d:ea:
a8:a8:f1:8e:8a:1f:9d:26:c7:21:11:f2:ba:59:d7:2e:d3:92:
35:86:7b:37:6e:b5:a6:66:60:c2:ae:4e:68:a3:ab:80:a0:3b:
8b:06:e6:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:58 2024 by rpki-client on console-ams.rpki-client.org