Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/WL0YX9V3K8tAoLeAadp2nE8lW2U.roa
File: WL0YX9V3K8tAoLeAadp2nE8lW2U.roa (raw, json)
Hash identifier: 3NjgbBFkiK2IfoL8ZKc3HnMrk5X782ilwoVEzezjYho=
Subject key identifier: 58:BD:18:5F:D5:77:2B:CB:40:A0:B7:80:69:DA:76:9C:4F:25:5B:65
Certificate issuer: /CN=c42708df93954aac601aef1835bd5d69245fb02f
Certificate serial: 0187279AE8E5AB53E157E603F80F64CC45DD
Authority key identifier: C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/WL0YX9V3K8tAoLeAadp2nE8lW2U.roa
Signing time: Tue 28 Mar 2023 09:44:36 +0000
ROA not before: Tue 28 Mar 2023 09:44:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 45012
IP address blocks: 193.22.255.0/24 maxlen: 24
185.80.92.0/24 maxlen: 24
185.80.93.0/24 maxlen: 24
185.80.94.0/23 maxlen: 23
185.137.168.0/22 maxlen: 24
91.220.49.0/24 maxlen: 24
128.127.65.0/24 maxlen: 24
128.127.66.0/24 maxlen: 24
194.145.226.0/24 maxlen: 24
91.203.108.0/22 maxlen: 24
178.250.170.0/24 maxlen: 24
178.250.174.0/24 maxlen: 24
93.90.178.0/24 maxlen: 24
37.218.252.0/24 maxlen: 24
37.218.248.0/22 maxlen: 22
91.203.212.0/22 maxlen: 24
37.218.254.0/24 maxlen: 24
195.82.152.0/23 maxlen: 24
178.20.96.0/21 maxlen: 24
188.64.46.0/23 maxlen: 24
5.44.108.0/22 maxlen: 24
192.162.87.0/24 maxlen: 24
185.207.230.0/24 maxlen: 24
185.207.228.0/22 maxlen: 24
185.207.228.0/24 maxlen: 24
31.47.240.0/20 maxlen: 24
195.5.120.0/23 maxlen: 24
81.88.16.0/24 maxlen: 24
89.22.100.0/22 maxlen: 24
81.88.28.0/22 maxlen: 24
89.22.106.0/24 maxlen: 24
89.22.108.0/24 maxlen: 24
89.22.110.0/23 maxlen: 24
89.22.112.0/22 maxlen: 24
89.22.116.0/22 maxlen: 24
89.22.122.0/23 maxlen: 24
89.22.124.0/22 maxlen: 24
5.44.100.0/23 maxlen: 24
5.44.102.0/23 maxlen: 24
5.44.104.0/22 maxlen: 24
2a00:fa40:2000::/36 maxlen: 64
2a00:fa40:3000::/36 maxlen: 36
2a00:fa40:4000::/36 maxlen: 36
2a02:a60:8000::/33 maxlen: 64
2a01:64c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 21 Apr 2023 09:11:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:27:9a:e8:e5:ab:53:e1:57:e6:03:f8:0f:64:cc:45:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c42708df93954aac601aef1835bd5d69245fb02f
Validity
Not Before: Mar 28 09:44:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58bd185fd5772bcb40a0b78069da769c4f255b65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:7e:24:ee:0b:96:66:4e:b6:1b:7b:bf:f0:77:
42:d3:ba:b0:92:ed:f9:a7:ee:00:86:6b:f7:b5:b0:
c5:ed:97:6e:07:78:f6:62:d0:a5:7c:b2:b4:76:99:
21:44:d5:4a:2c:8b:b7:27:16:97:9b:cb:0b:d0:57:
f9:f2:c4:d0:f7:4f:df:96:57:1f:a6:ee:b5:75:37:
93:97:f0:a3:f3:df:77:97:b8:fa:f7:f2:00:bb:0d:
0e:2b:18:73:60:46:4d:25:09:07:97:71:c3:d8:e0:
e4:19:1e:65:7b:35:25:37:5c:df:b1:5a:16:99:cd:
2f:9c:ba:4c:33:e3:05:a3:7b:0c:e5:4a:73:bf:16:
ac:43:9f:97:a4:24:a4:51:e5:25:de:af:03:1e:bc:
ee:cf:d0:19:9c:91:86:18:98:2e:32:40:60:a0:5e:
17:3f:12:d0:00:42:d4:ee:1c:dc:54:32:df:70:ba:
bb:04:bf:d5:27:87:c9:88:c7:d4:73:f5:9b:ab:4a:
cd:dc:23:11:2a:54:57:96:98:2e:6a:30:ac:5e:ac:
d3:61:11:50:da:86:41:34:ca:0e:ec:fd:ba:f7:b9:
32:db:d5:18:ff:68:0c:a0:af:dd:69:1d:bc:93:08:
c2:de:57:dd:65:79:f4:0b:fd:c9:d4:7e:35:62:7a:
a4:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:BD:18:5F:D5:77:2B:CB:40:A0:B7:80:69:DA:76:9C:4F:25:5B:65
X509v3 Authority Key Identifier:
keyid:C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/WL0YX9V3K8tAoLeAadp2nE8lW2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/xCcI35OVSqxgGu8YNb1daSRfsC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.100.0-5.44.111.255
31.47.240.0/20
37.218.248.0-37.218.252.255
37.218.254.0/24
81.88.16.0/24
81.88.28.0/22
89.22.100.0/22
89.22.106.0/24
89.22.108.0/24
89.22.110.0-89.22.119.255
89.22.122.0-89.22.127.255
91.203.108.0/22
91.203.212.0/22
91.220.49.0/24
93.90.178.0/24
128.127.65.0-128.127.66.255
178.20.96.0/21
178.250.170.0/24
178.250.174.0/24
185.80.92.0/22
185.137.168.0/22
185.207.228.0/22
188.64.46.0/23
192.162.87.0/24
193.22.255.0/24
194.145.226.0/24
195.5.120.0/23
195.82.152.0/23
IPv6:
2a00:fa40:2000::-2a00:fa40:4fff:ffff:ffff:ffff:ffff:ffff
2a01:64c0::/32
2a02:a60:8000::/33
Signature Algorithm: sha256WithRSAEncryption
26:56:38:ca:1b:03:54:0d:af:20:1e:4e:fc:f1:ec:e8:9e:23:
62:f0:a4:27:73:b3:f0:6a:ee:1a:90:47:cc:b3:27:65:f2:b1:
56:21:43:02:68:20:5b:03:c8:ed:4a:87:7a:5a:75:84:69:92:
86:6b:dd:18:5e:9c:e7:73:03:0e:30:69:39:98:41:ee:f8:84:
d5:7a:52:05:cb:4c:70:9a:4f:7d:da:0c:50:61:7f:ad:76:f5:
ca:08:86:90:74:62:af:c9:5f:4f:e1:c9:f2:7b:40:b8:39:cc:
cd:9e:cf:85:1b:a7:5b:28:f7:ab:04:bd:04:2c:78:2a:0f:91:
e9:87:f7:81:1b:4f:3b:96:ce:34:b8:d5:85:02:56:da:0f:32:
69:39:89:e6:80:62:00:62:74:f7:5a:0c:33:96:89:c2:0d:0e:
75:87:3a:53:5e:36:6c:8d:a7:c9:5b:00:20:49:59:6e:c1:2a:
27:92:08:a6:10:92:06:32:f2:51:00:e9:e8:4b:b9:7c:66:4c:
11:a2:f9:f2:9e:41:70:1a:81:c8:5b:a8:48:45:2a:da:43:29:
60:30:af:12:ab:72:d8:23:87:8c:4b:e8:f6:5c:f8:14:a3:da:
ff:b3:06:00:eb:c6:97:31:0e:11:03:65:c3:5f:99:6b:b5:8f:
85:fc:62:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:44 2024 by rpki-client on console-ams.rpki-client.org