Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/W7ybk4o1MjR0fGOqCeuroRFwqkU.roa
File: W7ybk4o1MjR0fGOqCeuroRFwqkU.roa (raw, json)
Hash identifier: nlz/UO50gXATEZWy8JHH4rjTHVIzOTdVNJ776ZQBQCk=
Subject key identifier: 5B:BC:9B:93:8A:35:32:34:74:7C:63:AA:09:EB:AB:A1:11:70:AA:45
Certificate issuer: /CN=61b534437503668815add93cd17d0ad3e1b1a877
Certificate serial: 01857169CB0EA7B851F5AE85969E15410469
Authority key identifier: 61:B5:34:43:75:03:66:88:15:AD:D9:3C:D1:7D:0A:D3:E1:B1:A8:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/W7ybk4o1MjR0fGOqCeuroRFwqkU.roa
Signing time: Mon 02 Jan 2023 07:37:16 +0000
ROA not before: Mon 02 Jan 2023 07:37:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50266
IP address blocks: 82.172.0.0/17 maxlen: 17
143.178.0.0/17 maxlen: 24
87.210.0.0/16 maxlen: 24
95.98.0.0/15 maxlen: 24
94.157.0.0/16 maxlen: 24
62.250.128.0/17 maxlen: 24
87.208.0.0/16 maxlen: 24
81.59.0.0/17 maxlen: 17
87.209.0.0/16 maxlen: 24
143.177.0.0/16 maxlen: 24
87.212.0.0/16 maxlen: 24
31.20.0.0/16 maxlen: 24
143.178.128.0/17 maxlen: 24
31.21.0.0/16 maxlen: 24
143.179.0.0/16 maxlen: 16
95.99.0.0/16 maxlen: 16
188.88.0.0/14 maxlen: 24
31.187.128.0/17 maxlen: 24
82.174.0.0/16 maxlen: 24
62.166.128.0/17 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Sep 2023 10:12:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:cb:0e:a7:b8:51:f5:ae:85:96:9e:15:41:04:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b534437503668815add93cd17d0ad3e1b1a877
Validity
Not Before: Jan 2 07:37:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5bbc9b938a353234747c63aa09ebaba11170aa45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ad:aa:a7:02:70:30:40:1c:a6:8c:d2:b8:02:
f2:28:fe:46:7e:6d:28:59:34:9e:a1:72:6c:66:96:
1c:6c:d2:dd:9f:1d:c7:ac:74:50:0f:91:db:fa:4c:
bf:68:0e:c3:29:35:56:95:3d:df:ba:eb:63:4a:a4:
43:37:9b:89:7a:e7:a7:d9:4b:e6:44:79:71:57:28:
1a:db:d4:e2:cf:2b:ba:fc:ee:56:25:b0:7a:c9:8e:
8e:d6:1d:22:dd:77:a7:3a:f9:dd:ec:2d:01:97:06:
6e:48:86:b4:ac:6c:5e:0e:88:26:71:9f:3f:4d:a4:
0c:e5:2d:41:6a:c4:36:33:5a:7c:30:bd:42:74:0a:
37:aa:cb:1b:93:19:91:b7:46:67:a9:14:71:50:77:
ae:c8:e3:06:4e:5b:82:07:64:1b:5b:3e:9f:d9:c2:
2c:8f:55:53:c1:5b:85:32:64:1c:52:ba:18:b0:5c:
bc:04:11:42:94:d2:b0:9e:40:58:bc:73:24:a0:5e:
80:56:73:d8:01:4f:a9:4d:1e:4e:3d:a5:34:29:88:
7b:4b:7d:19:09:01:68:ee:83:00:7f:fc:45:b1:17:
e6:01:16:a4:fd:65:9b:1e:97:71:de:2d:32:c7:cc:
82:a8:fd:84:77:bc:a0:43:38:ed:c6:05:c2:c4:12:
69:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:BC:9B:93:8A:35:32:34:74:7C:63:AA:09:EB:AB:A1:11:70:AA:45
X509v3 Authority Key Identifier:
keyid:61:B5:34:43:75:03:66:88:15:AD:D9:3C:D1:7D:0A:D3:E1:B1:A8:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/W7ybk4o1MjR0fGOqCeuroRFwqkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/YbU0Q3UDZogVrdk80X0K0-GxqHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.20.0.0/15
31.187.128.0/17
62.166.128.0/17
62.250.128.0/17
81.59.0.0/17
82.172.0.0/17
82.174.0.0/16
87.208.0.0-87.210.255.255
87.212.0.0/16
94.157.0.0/16
95.98.0.0/15
143.177.0.0-143.179.255.255
188.88.0.0/14
Signature Algorithm: sha256WithRSAEncryption
6d:1f:1c:3f:23:7a:40:93:ae:04:ce:84:c9:64:c5:2c:bb:20:
47:14:16:37:e8:f3:88:6a:04:b3:f2:cb:18:05:45:77:7b:d2:
74:71:d8:cb:99:75:67:75:af:4c:d0:b0:0d:8c:22:36:0c:97:
95:3e:d5:b3:9d:c2:96:cf:82:5b:42:17:ae:d2:65:b6:be:fb:
e3:30:07:e0:08:d8:4c:6e:84:bc:b9:40:67:cb:0a:55:96:11:
f3:35:2a:f8:93:af:0a:37:3f:b4:7a:ab:ac:8d:fd:94:1f:c2:
9e:c0:19:fb:6e:fb:33:54:08:29:27:e7:19:8b:00:06:e3:00:
af:e8:1c:32:87:09:99:3b:ac:15:a8:b1:1f:c5:fc:58:47:6f:
f9:1e:c0:a9:c1:4e:d4:76:b8:ce:c2:ec:f0:6a:6a:ec:9d:00:
49:e6:17:f3:82:92:2d:a4:4a:9a:e7:b5:36:32:9f:06:11:e6:
9a:a1:02:f9:54:49:af:0a:27:1a:64:09:2b:9a:02:a6:67:c7:
74:af:0d:37:d2:b4:47:f2:5a:18:83:eb:2c:99:af:4a:9f:ae:
12:12:f5:cf:4b:81:d3:83:09:3f:29:1d:0f:f0:7c:39:2c:46:
4a:06:09:e4:f8:fa:24:8b:32:0a:2a:7a:12:6f:d7:9b:41:ae:
d9:fb:a3:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:07 2024 by rpki-client on console-fra.rpki-client.org