Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/WPaKzXabbLRd75R14TZ6P7QMkW8.roa
File: WPaKzXabbLRd75R14TZ6P7QMkW8.roa (raw, json)
Hash identifier: SUJWBCrMVEHWWjkqvLDSy8E34nvJPeSXRRU5mIGk0s4=
Subject key identifier: 58:F6:8A:CD:76:9B:6C:B4:5D:EF:94:75:E1:36:7A:3F:B4:0C:91:6F
Certificate issuer: /CN=caaee579e013218f571386413e2c5b2bc245a836
Certificate serial: 018E37106521DAAF6FF74A8F24D4416B5AAF
Authority key identifier: CA:AE:E5:79:E0:13:21:8F:57:13:86:41:3E:2C:5B:2B:C2:45:A8:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yq7leeATIY9XE4ZBPixbK8JFqDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/WPaKzXabbLRd75R14TZ6P7QMkW8.roa
Signing time: Wed 13 Mar 2024 09:06:44 +0000
ROA not before: Wed 13 Mar 2024 09:06:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208349
IP address blocks: 31.10.7.0/24 maxlen: 24
45.134.124.0/22 maxlen: 22
45.134.124.0/24 maxlen: 24
45.134.125.0/24 maxlen: 24
45.134.126.0/24 maxlen: 24
45.134.127.0/24 maxlen: 24
77.105.156.0/24 maxlen: 24
77.105.157.0/24 maxlen: 24
77.105.158.0/24 maxlen: 24
77.105.159.0/24 maxlen: 24
185.31.133.0/24 maxlen: 24
2a0e:7e40::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 27 Apr 2024 08:23:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:37:10:65:21:da:af:6f:f7:4a:8f:24:d4:41:6b:5a:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caaee579e013218f571386413e2c5b2bc245a836
Validity
Not Before: Mar 13 09:06:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=58f68acd769b6cb45def9475e1367a3fb40c916f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:bd:1d:7a:45:17:98:7a:b2:95:ab:43:2f:5b:
c6:c9:06:71:17:ec:a4:9b:b4:e6:45:c9:e2:7c:e8:
cf:6f:23:1b:64:c8:69:dc:45:a1:09:92:68:f7:8c:
56:dc:68:b2:42:5a:55:e4:3b:2e:a9:a1:8b:61:98:
a7:2f:f4:11:58:87:10:a1:e6:c8:8f:09:20:75:cb:
01:e0:ac:e0:8d:5e:a9:98:0e:b3:7a:7d:ec:d4:d7:
a5:11:9b:e5:65:4a:eb:50:48:c2:75:5d:76:d4:7f:
ce:13:5c:8a:d3:fc:ad:9e:8c:59:f5:c3:c0:ad:77:
f9:4f:ba:d5:73:fa:4d:9f:8f:1f:c3:88:c4:b5:ea:
8b:1a:45:f7:fb:9d:58:b5:6d:6d:a6:19:13:0a:fd:
13:f4:04:95:99:cc:37:0c:2d:0c:e1:0e:be:bc:43:
53:98:5a:fc:2d:e4:88:ce:67:6e:1a:30:86:fd:f3:
ac:85:5c:90:ca:5c:49:3c:39:67:ba:a7:e3:ab:3a:
fd:61:40:52:95:60:ef:27:dc:91:7d:76:5c:6f:14:
ca:3b:6d:07:1a:8c:d6:71:d4:d3:d5:ba:50:05:65:
f5:29:73:3f:47:be:ee:a5:ce:6d:8c:87:80:d7:96:
59:e6:f6:29:3c:32:1d:0e:d5:ec:8b:10:25:b8:66:
dd:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:F6:8A:CD:76:9B:6C:B4:5D:EF:94:75:E1:36:7A:3F:B4:0C:91:6F
X509v3 Authority Key Identifier:
keyid:CA:AE:E5:79:E0:13:21:8F:57:13:86:41:3E:2C:5B:2B:C2:45:A8:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yq7leeATIY9XE4ZBPixbK8JFqDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/WPaKzXabbLRd75R14TZ6P7QMkW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/yq7leeATIY9XE4ZBPixbK8JFqDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.10.7.0/24
45.134.124.0/22
77.105.156.0/22
185.31.133.0/24
IPv6:
2a0e:7e40::/29
Signature Algorithm: sha256WithRSAEncryption
55:42:ec:fe:28:9d:f1:53:71:2c:8b:99:2a:b8:46:72:c1:d6:
9b:46:49:15:89:9a:49:c6:a3:c5:bf:01:75:17:98:b9:20:49:
4f:3e:b7:52:f9:00:dc:33:08:7d:0e:6d:93:23:30:5b:ac:9b:
30:7d:f3:6c:f6:bf:4a:50:63:d6:12:c0:59:47:72:48:71:09:
b8:13:3e:66:75:42:34:ae:08:97:c6:de:ca:b3:2d:e9:72:9a:
e1:cc:fe:14:27:60:e1:0b:89:e5:1a:3f:95:9d:e2:57:b5:20:
07:42:1b:78:71:6e:19:da:f5:20:72:5e:a7:4c:6c:5b:95:ba:
81:80:d4:4c:b0:4f:63:f8:62:92:52:c3:d8:97:5b:88:b3:9e:
a8:2a:60:49:b5:88:d9:f3:1a:10:78:3a:85:1f:fb:fa:86:03:
2a:9f:17:5f:cb:b0:16:d7:82:7c:51:aa:9d:f6:c7:b5:80:e3:
54:c4:94:83:3f:50:de:00:80:65:51:a0:65:1c:9d:4e:89:23:
59:9f:a6:4f:55:39:dd:e7:b5:2a:35:86:85:b0:10:5e:6d:20:
d4:61:f7:ae:a5:16:ac:4d:fb:1c:97:1a:98:e9:2a:fa:09:7d:
33:0e:3e:00:e0:c5:ef:de:c2:c2:21:94:64:26:37:46:7a:db:
b5:50:64:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:15 2024 by rpki-client on console-ams.rpki-client.org