Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/WgJOyAjzIlXLhAwNPHsiNY6Qi1s.roa
File: WgJOyAjzIlXLhAwNPHsiNY6Qi1s.roa (raw, json)
Hash identifier: sn2Svq4onLiV60y9mRiuI29ZVg4fZNEZ2HMu76mNcg4=
Subject key identifier: 5A:02:4E:C8:08:F3:22:55:CB:84:0C:0D:3C:7B:22:35:8E:90:8B:5B
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 01856D0A9BD17F45CC7C89CCE5197D1AEBF6
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/WgJOyAjzIlXLhAwNPHsiNY6Qi1s.roa
Signing time: Sun 01 Jan 2023 11:14:49 +0000
ROA not before: Sun 01 Jan 2023 11:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8517
IP address blocks: 193.140.244.0/22 maxlen: 22
193.140.248.0/22 maxlen: 22
193.140.252.0/23 maxlen: 23
193.255.58.0/24 maxlen: 24
193.140.183.0/24 maxlen: 24
193.140.4.0/22 maxlen: 22
193.140.1.0/24 maxlen: 24
193.140.2.0/23 maxlen: 23
193.140.0.0/16 maxlen: 24
193.140.24.0/22 maxlen: 22
193.140.35.0/24 maxlen: 24
193.255.0.0/16 maxlen: 24
193.140.134.0/24 maxlen: 24
193.140.152.0/22 maxlen: 22
193.140.159.0/24 maxlen: 24
193.140.68.0/23 maxlen: 23
193.140.83.0/24 maxlen: 24
79.123.128.0/17 maxlen: 24
193.140.88.0/24 maxlen: 24
193.140.98.0/23 maxlen: 23
194.27.232.0/22 maxlen: 22
194.27.236.0/23 maxlen: 23
95.183.128.0/17 maxlen: 24
194.27.43.0/24 maxlen: 24
185.7.0.0/22 maxlen: 22
194.27.0.0/16 maxlen: 24
2001:a98:1b0::/48 maxlen: 48
2001:a98:170::/48 maxlen: 48
2001:a98:230::/48 maxlen: 48
2001:a98:1f0::/48 maxlen: 48
2001:a98:130::/48 maxlen: 48
2001:a98:240::/48 maxlen: 48
2001:a98:1c0::/48 maxlen: 48
2001:a98:280::/48 maxlen: 48
2001:a98:180::/48 maxlen: 48
2001:a98:200::/48 maxlen: 48
2001:a98:600::/48 maxlen: 48
2001:a98:1e::/48 maxlen: 48
2001:a98:1050::/48 maxlen: 48
2001:a98:1d0::/48 maxlen: 48
2001:a98:150::/48 maxlen: 48
2001:a98:250::/48 maxlen: 48
2001:a98:290::/48 maxlen: 48
2001:a98:210::/48 maxlen: 48
2001:a98:190::/48 maxlen: 48
2001:a98::/32 maxlen: 32
2001:a98:20::/48 maxlen: 48
2001:a98:120::/48 maxlen: 48
2001:a98:220::/48 maxlen: 48
2001:a98:1a0::/48 maxlen: 48
2001:a98:1e0::/48 maxlen: 48
2001:a98:260::/48 maxlen: 48
2001:a98:160::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:9b:d1:7f:45:cc:7c:89:cc:e5:19:7d:1a:eb:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Jan 1 11:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a024ec808f32255cb840c0d3c7b22358e908b5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:6c:6b:09:dc:7d:48:70:ac:ea:7c:c0:90:7d:
ae:0d:f7:e8:b4:c1:85:3b:ee:10:7f:33:f4:08:5c:
f8:2a:cf:e1:42:8d:9f:b9:9f:5d:d1:37:e8:30:df:
4e:5a:8f:12:22:15:99:3e:29:71:fc:8c:08:60:91:
3e:72:d5:a1:e3:1b:27:65:f0:41:ff:7e:6b:8a:d0:
97:bd:0d:19:66:01:6f:1c:fe:72:17:b2:0a:ad:80:
65:db:44:b5:46:d3:25:3c:72:0b:33:10:ba:7f:80:
f5:ca:97:9a:b9:c6:52:29:cb:2f:38:28:88:0a:80:
a5:23:7c:6c:56:99:9a:9e:f4:c2:af:88:ad:82:a2:
fa:1d:db:b8:47:9e:25:9e:9d:50:9b:db:cc:73:39:
15:c0:fb:a7:23:0e:7a:4f:c1:b1:8f:92:54:89:9a:
12:2c:15:bf:a1:c1:4d:ab:08:ff:91:2e:82:8a:fd:
97:a9:86:da:c8:c0:3e:a5:2e:5b:c5:a7:7d:4e:3a:
46:4e:13:b8:f4:2c:76:6f:17:50:30:57:82:2b:c0:
ae:68:f9:b8:1f:f2:2a:2e:e1:b8:d6:14:19:92:cb:
45:85:81:a5:76:32:d0:b1:ea:3b:00:54:41:36:c3:
07:6f:ab:7f:dd:27:f6:9a:f5:6a:f9:cc:f4:00:c0:
46:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:02:4E:C8:08:F3:22:55:CB:84:0C:0D:3C:7B:22:35:8E:90:8B:5B
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/WgJOyAjzIlXLhAwNPHsiNY6Qi1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.123.128.0/17
95.183.128.0/17
185.7.0.0/22
193.140.0.0/16
193.255.0.0/16
194.27.0.0/16
IPv6:
2001:a98::/32
Signature Algorithm: sha256WithRSAEncryption
6a:d3:02:fe:9e:67:bf:44:f2:37:08:fc:72:05:6e:a0:3a:86:
7c:94:04:23:a3:dd:96:9a:59:00:19:6c:ce:3b:b1:42:e2:5f:
73:e0:fd:fc:5e:c0:f3:1a:46:fa:87:dd:ec:1e:41:ad:e4:fb:
e5:b8:fd:c6:96:d4:cf:bf:d7:ba:eb:08:eb:2b:ab:67:93:c7:
b8:7a:ae:65:bf:98:f8:14:a2:3e:76:a0:bd:b7:4c:96:8b:01:
62:ec:c2:9d:f8:97:56:cc:2e:a3:44:a2:19:25:75:97:bd:48:
e2:f2:94:06:14:68:86:19:ee:a6:a9:81:03:a1:f4:2c:ad:70:
fe:5b:b1:75:95:b5:33:09:12:57:48:20:8e:05:90:62:99:3c:
50:9a:83:d3:24:a3:e2:5d:35:5f:47:d0:63:a1:b9:34:83:0f:
e1:6f:a1:0f:57:1c:0b:4c:c4:8f:7d:66:eb:d7:f8:e7:fa:91:
80:fb:9d:86:29:af:4f:11:25:d0:4b:b2:e1:4b:7f:e0:97:8b:
ae:5e:26:6a:4b:ae:a2:c7:2d:03:d6:00:e8:74:e2:42:5f:08:
e5:cd:c5:8d:77:76:81:d8:24:5e:5f:1c:46:cf:35:55:dc:20:
8b:59:71:c1:b6:35:17:40:42:20:b8:f1:d6:81:50:fa:cc:7d:
da:e4:33:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:39 2024 by rpki-client on console-fra.rpki-client.org