Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/WvNjrp2mpXHFXxDBU-Pv_A5wN38.roa
File: WvNjrp2mpXHFXxDBU-Pv_A5wN38.roa (raw, json)
Hash identifier: 8N0qb35enBGMsdpm1MjVAAjwGeCBoy1KEgHMptRmwxA=
Subject key identifier: 5A:F3:63:AE:9D:A6:A5:71:C5:5F:10:C1:53:E3:EF:FC:0E:70:37:7F
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 0189830B5B874F75418E26FD2857BADEBE22
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/WvNjrp2mpXHFXxDBU-Pv_A5wN38.roa
Signing time: Sun 23 Jul 2023 13:58:26 +0000
ROA not before: Sun 23 Jul 2023 13:58:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58305
IP address blocks: 198.105.124.0/23 maxlen: 24
45.43.64.0/19 maxlen: 24
45.43.66.0/23 maxlen: 24
45.43.74.0/23 maxlen: 24
45.43.76.0/22 maxlen: 24
45.43.80.0/22 maxlen: 24
198.105.96.0/19 maxlen: 24
198.105.116.0/23 maxlen: 24
155.254.32.0/22 maxlen: 24
155.254.32.0/19 maxlen: 24
155.254.48.0/23 maxlen: 23
155.254.62.0/24 maxlen: 24
107.161.160.0/24 maxlen: 24
107.161.161.0/24 maxlen: 24
107.161.162.0/24 maxlen: 24
107.161.168.0/24 maxlen: 24
107.161.169.0/24 maxlen: 24
107.161.170.0/24 maxlen: 24
107.161.171.0/24 maxlen: 24
107.181.128.0/19 maxlen: 24
107.181.138.0/23 maxlen: 24
107.181.144.0/23 maxlen: 24
162.220.240.0/24 maxlen: 24
162.220.242.0/24 maxlen: 24
162.220.240.0/21 maxlen: 24
162.220.241.0/24 maxlen: 24
113.20.156.0/22 maxlen: 24
107.161.174.0/23 maxlen: 24
162.217.250.0/24 maxlen: 24
162.217.251.0/24 maxlen: 24
2a05:9f40::/29 maxlen: 48
2a07:9944:20::/48 maxlen: 48
2a07:9942:39d7::/48 maxlen: 48
2a07:9944:2222::/48 maxlen: 48
2a07:9940::/29 maxlen: 48
2a07:9944:10::/48 maxlen: 48
2a02:2ca0::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:83:0b:5b:87:4f:75:41:8e:26:fd:28:57:ba:de:be:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Jul 23 13:58:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5af363ae9da6a571c55f10c153e3effc0e70377f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:68:1f:b5:7b:f7:1b:e9:91:83:b7:6d:1c:9e:
79:ed:91:60:f0:4d:fc:e9:d2:a0:68:82:ba:02:cf:
00:33:ce:1a:98:74:ee:e3:3a:74:33:43:79:15:c2:
5c:6e:64:b3:67:e0:e6:a0:d8:3d:4c:98:87:aa:4d:
96:75:63:74:47:9a:b4:ca:52:21:11:ef:5b:bb:ef:
51:ce:51:34:06:06:65:7e:ef:12:f8:04:14:ec:2b:
97:1d:94:aa:cc:8f:b1:f6:9a:c9:e6:6f:19:48:ca:
1a:ae:93:a7:24:37:cd:7c:f9:75:a0:fd:99:66:b2:
00:97:52:d2:09:7e:70:6e:fd:8c:6f:91:5b:8e:c0:
1c:8b:a8:0b:39:30:c5:c8:c6:3e:82:5d:aa:d4:33:
6d:e2:5c:bf:67:ec:cb:1c:6f:5c:6a:36:15:94:75:
33:61:3f:de:ac:e2:b2:13:d9:e8:63:97:7a:d8:b5:
bc:f0:5e:54:8e:ce:a6:b9:17:35:20:44:4c:b2:a6:
70:19:e0:b1:62:ac:4c:b1:7c:c0:6a:02:b7:6a:59:
8a:17:71:ab:15:65:82:4c:36:d1:fd:0a:ea:97:f0:
c2:ba:08:13:48:ae:75:fc:ed:df:54:0e:4b:83:ac:
bc:90:c9:2e:2d:b2:57:42:17:c9:bc:85:fb:59:54:
5c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:F3:63:AE:9D:A6:A5:71:C5:5F:10:C1:53:E3:EF:FC:0E:70:37:7F
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/WvNjrp2mpXHFXxDBU-Pv_A5wN38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.64.0/19
107.161.160.0-107.161.162.255
107.161.168.0/22
107.161.174.0/23
107.181.128.0/19
113.20.156.0/22
155.254.32.0/19
162.217.250.0/23
162.220.240.0/21
198.105.96.0/19
IPv6:
2a02:2ca0::/29
2a05:9f40::/29
2a07:9940::/29
Signature Algorithm: sha256WithRSAEncryption
1f:15:32:90:1f:fe:e6:73:f7:9d:d4:39:fc:86:2c:37:3e:d0:
45:4a:19:f3:e2:05:ad:dd:81:a4:4c:f0:f8:c2:21:06:35:c6:
f3:7a:38:63:72:62:9b:36:77:c5:b9:2a:3f:f9:03:98:50:79:
51:d5:b0:32:03:a7:ff:69:7a:e0:51:4f:b1:00:f4:18:41:03:
3f:8e:de:ea:35:c0:b6:4d:f3:6a:2e:63:1f:6d:b9:1f:01:f8:
18:89:a7:aa:e6:1e:b2:c4:9f:a8:e9:7a:88:7b:24:85:bd:39:
64:ae:65:de:10:e6:23:e3:53:2f:51:81:a1:b6:28:08:e9:9c:
45:4b:d7:f3:0a:27:06:23:d2:6b:e6:5c:f4:9b:68:8e:e7:6c:
b6:2b:9c:f5:d9:51:52:71:88:89:db:27:79:4c:07:8a:dc:79:
00:5c:60:2a:13:03:c1:59:d5:14:6e:bd:2e:e5:84:45:65:ce:
fd:20:7e:61:7c:14:45:3a:ab:3f:a2:fd:31:cf:ef:d4:ec:36:
86:73:1d:14:db:fd:94:e0:4c:78:e3:c0:82:2c:a4:72:f6:a8:
fa:d0:e6:41:67:1a:93:b8:8c:97:ff:78:f0:32:56:c1:aa:b8:
35:ae:4b:48:70:7e:20:48:f6:76:29:c8:5e:78:d4:28:ae:da:
be:df:53:71
-----BEGIN CERTIFICATE-----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Generated at Sun Jul 23 19:02:35 2023 by rpki-client on console-ams.rpki-client.org