Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/WkMHau7csqfa7arqVmRIniS3oSc.roa
File: WkMHau7csqfa7arqVmRIniS3oSc.roa (raw, json)
Hash identifier: FU+4PONpMl2rqBY7urWNobKL7SKXvvZVWDUCr/NdwNs=
Subject key identifier: 5A:43:07:6A:EE:DC:B2:A7:DA:ED:AA:EA:56:64:48:9E:24:B7:A1:27
Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Certificate serial: 01869F2248CF13F297BE403087E00DD0B11F
Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/WkMHau7csqfa7arqVmRIniS3oSc.roa
Signing time: Wed 01 Mar 2023 21:44:29 +0000
ROA not before: Wed 01 Mar 2023 21:44:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5606
IP address blocks: 176.223.114.0/24 maxlen: 24
93.174.162.0/24 maxlen: 24
92.114.3.0/24 maxlen: 24
92.114.2.0/24 maxlen: 24
93.174.160.0/24 maxlen: 24
84.247.23.0/24 maxlen: 24
93.174.167.0/24 maxlen: 24
188.240.0.0/24 maxlen: 24
185.248.139.0/24 maxlen: 24
45.67.39.0/24 maxlen: 24
193.200.63.0/24 maxlen: 24
193.200.62.0/24 maxlen: 24
45.82.28.0/23 maxlen: 23
193.16.144.0/24 maxlen: 24
45.67.36.0/24 maxlen: 24
45.67.38.0/24 maxlen: 24
45.14.238.0/24 maxlen: 24
89.39.7.0/24 maxlen: 24
89.39.6.0/24 maxlen: 24
185.220.184.0/24 maxlen: 24
185.220.186.0/24 maxlen: 24
185.220.185.0/24 maxlen: 24
89.34.101.0/24 maxlen: 24
89.42.133.0/24 maxlen: 24
188.241.73.0/24 maxlen: 24
188.241.74.0/23 maxlen: 23
31.14.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 Mar 2023 07:22:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9f:22:48:cf:13:f2:97:be:40:30:87:e0:0d:d0:b1:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Validity
Not Before: Mar 1 21:44:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a43076aeedcb2a7daedaaea5664489e24b7a127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ac:9a:65:d8:75:68:d8:ac:9e:0b:25:ad:f8:
7d:5c:fa:22:92:c3:00:58:ef:a7:ec:50:a2:ab:cd:
7e:57:a0:04:fd:db:a8:ab:0b:5e:2b:24:ba:4a:46:
75:64:1f:e4:df:6a:86:4a:ff:1e:ab:73:ca:74:7d:
40:7e:1e:37:ff:f8:79:35:81:04:56:6f:aa:a5:45:
03:4c:7b:51:db:4e:7c:de:ff:b5:26:4e:7d:af:29:
63:7b:17:38:9d:03:86:59:c8:29:f8:36:a9:5d:c1:
39:4e:35:bf:99:7e:2b:42:44:9a:78:a2:54:80:5b:
98:e8:e4:55:70:55:24:35:55:f6:88:d5:4e:be:6c:
60:d2:4f:99:e9:69:6b:12:da:a7:55:7e:e3:f8:24:
73:ca:53:23:ac:8c:f3:fb:46:fe:20:17:b8:80:43:
89:0d:b5:1e:40:cf:cd:39:b2:52:27:91:7c:7e:96:
3a:54:11:fe:4a:50:00:e4:eb:56:f0:8f:09:07:3b:
bf:44:8b:a2:9d:67:7c:1d:fb:52:37:7a:a7:b5:10:
58:c0:4d:54:ae:e2:10:32:f5:ea:4c:a0:b7:a4:5f:
34:ad:28:d9:c2:a0:c0:23:8c:72:d6:6c:f9:2d:fe:
0c:bc:58:3d:dd:72:19:5f:24:e8:63:a5:0f:47:3a:
5b:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:43:07:6A:EE:DC:B2:A7:DA:ED:AA:EA:56:64:48:9E:24:B7:A1:27
X509v3 Authority Key Identifier:
keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/WkMHau7csqfa7arqVmRIniS3oSc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.21.0/24
45.14.238.0/24
45.67.36.0/24
45.67.38.0/23
45.82.28.0/23
84.247.23.0/24
89.34.101.0/24
89.39.6.0/23
89.42.133.0/24
92.114.2.0/23
93.174.160.0/24
93.174.162.0/24
93.174.167.0/24
176.223.114.0/24
185.220.184.0-185.220.186.255
185.248.139.0/24
188.240.0.0/24
188.241.73.0-188.241.75.255
193.16.144.0/24
193.200.62.0/23
Signature Algorithm: sha256WithRSAEncryption
43:5d:42:1f:be:3f:db:47:a1:ae:d3:fc:16:ca:4d:d2:a5:6e:
65:ed:ab:f3:15:03:f0:0d:b1:d0:33:9d:ce:5e:10:f0:a0:19:
1b:54:4a:4c:f3:79:71:49:3e:47:fd:a5:01:c0:aa:6f:cd:f1:
66:48:91:0f:85:eb:fe:2d:cb:e8:de:9f:2f:9c:52:46:5d:48:
2e:d3:45:ba:82:37:7d:23:b1:6c:5c:45:22:43:f2:1c:59:9b:
36:39:38:a0:40:b4:97:0a:8c:15:7b:fe:62:5d:97:9e:00:37:
ae:d5:35:2e:0e:a3:24:1c:8e:e6:88:05:03:00:51:7c:c4:9c:
d3:a2:33:f5:03:59:a7:27:4d:4f:45:d9:29:9f:95:c9:11:c3:
bf:a8:29:07:31:26:9f:fb:9b:52:2d:8d:6d:74:da:25:74:d2:
aa:4e:31:e2:1c:76:81:e2:03:8b:0c:c5:e3:49:a1:0a:e6:73:
2e:b6:2b:e8:b8:97:a5:7f:96:58:03:40:c9:df:01:30:94:57:
27:02:3b:08:66:c0:90:f4:8e:cf:ea:60:a2:35:07:fe:0b:c7:
97:29:84:41:96:37:03:2b:73:89:b0:64:e2:d2:ba:ce:ec:f3:
ba:58:b1:16:58:7b:27:29:6a:94:a7:1b:99:3a:c5:74:08:d2:
9f:f9:41:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:42 2024 by rpki-client on console-ams.rpki-client.org