Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/WcRZfKLLQvQePsbEwaAXQxmdfNo.roa
File: WcRZfKLLQvQePsbEwaAXQxmdfNo.roa (raw, json)
Hash identifier: oLrSp4LWjEitxyAUJmwWKSTRw50chpnLDt3ePjxxIW0=
Subject key identifier: 59:C4:59:7C:A2:CB:42:F4:1E:3E:C6:C4:C1:A0:17:43:19:9D:7C:DA
Certificate issuer: /CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Certificate serial: 018EC7406E8C6FDC208ADA71C43AE04BC9B8
Authority key identifier: 1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/WcRZfKLLQvQePsbEwaAXQxmdfNo.roa
Signing time: Wed 10 Apr 2024 09:04:32 +0000
ROA not before: Wed 10 Apr 2024 09:04:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57910
IP address blocks: 31.214.176.0/20 maxlen: 24
37.10.72.0/21 maxlen: 24
37.152.88.0/21 maxlen: 24
45.149.228.0/22 maxlen: 24
46.18.72.0/21 maxlen: 24
87.117.96.0/20 maxlen: 24
91.132.116.0/22 maxlen: 24
95.214.0.0/22 maxlen: 24
109.69.48.0/21 maxlen: 24
185.11.236.0/22 maxlen: 24
185.161.12.0/22 maxlen: 24
185.226.236.0/22 maxlen: 24
193.57.36.0/22 maxlen: 24
194.56.236.0/22 maxlen: 24
194.127.158.0/23 maxlen: 24
194.127.162.0/23 maxlen: 24
2a00:b5c0::/32 maxlen: 32
2a02:2110::/32 maxlen: 32
2a0c:7a00::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c7:40:6e:8c:6f:dc:20:8a:da:71:c4:3a:e0:4b:c9:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Validity
Not Before: Apr 10 09:04:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59c4597ca2cb42f41e3ec6c4c1a01743199d7cda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:91:cc:26:2b:f8:86:f1:8b:97:55:6a:37:78:
b1:41:37:3d:6d:17:f8:56:a6:bc:32:c0:7c:3a:fa:
3f:3d:12:03:93:0d:23:ef:6d:bf:e7:cd:85:32:74:
f1:d5:b3:a3:68:d3:ed:fd:36:8b:fa:00:e4:72:7a:
4a:03:f0:e1:02:75:9d:53:ed:ff:36:d5:95:ed:7a:
3e:2f:25:87:9b:e6:53:ed:8d:0c:e8:9e:ed:d3:3b:
e8:12:9e:c8:cb:f7:25:0c:e5:1d:41:1b:6f:ae:27:
b7:b1:72:1d:d8:38:7a:0a:7f:6b:32:b8:5c:e9:68:
2b:1a:16:59:91:fa:0c:5d:52:91:83:19:94:bb:81:
a9:43:2c:96:7b:70:cb:b3:5b:2e:ec:bd:ec:69:50:
2e:da:52:61:a8:e2:73:f8:d0:aa:3e:f6:20:f5:5b:
ac:82:a5:e8:e2:8e:81:7c:b6:e7:23:00:46:4f:2d:
bc:a5:a5:8e:7a:a0:90:21:88:9f:83:aa:13:f6:dc:
d8:12:80:d7:fb:5e:de:16:13:09:30:26:2d:14:c8:
a2:9b:27:98:37:50:fe:47:25:a4:7e:4f:66:50:40:
11:b1:d0:aa:c9:f3:0a:74:5c:3d:30:8e:67:df:d6:
37:ac:22:43:6e:76:59:3b:69:52:5f:8d:8f:db:8f:
f1:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:C4:59:7C:A2:CB:42:F4:1E:3E:C6:C4:C1:A0:17:43:19:9D:7C:DA
X509v3 Authority Key Identifier:
keyid:1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/WcRZfKLLQvQePsbEwaAXQxmdfNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.214.176.0/20
37.10.72.0/21
37.152.88.0/21
45.149.228.0/22
46.18.72.0/21
87.117.96.0/20
91.132.116.0/22
95.214.0.0/22
109.69.48.0/21
185.11.236.0/22
185.161.12.0/22
185.226.236.0/22
193.57.36.0/22
194.56.236.0/22
194.127.158.0/23
194.127.162.0/23
IPv6:
2a00:b5c0::/32
2a02:2110::/32
2a0c:7a00::/29
Signature Algorithm: sha256WithRSAEncryption
2a:d1:7d:3a:2b:2c:4e:ad:70:71:4b:14:84:c0:5f:92:be:0e:
91:9d:3f:21:e3:15:34:5b:da:2f:08:46:c6:18:4c:e8:84:c8:
75:60:b1:c5:47:6b:ce:5f:24:a3:28:33:45:a5:47:05:8e:d8:
80:56:6a:4c:0c:e3:b3:ca:e8:a4:62:9a:5e:5f:6b:ea:a6:50:
e7:af:c1:b9:6c:3f:6d:50:50:48:8a:8b:ac:28:dc:64:d5:d4:
2a:2e:0a:7b:82:2a:02:3b:89:84:7b:ef:28:a7:6d:43:75:92:
bd:50:09:9c:b7:70:0f:f1:8a:b2:dd:cd:48:f9:1c:8e:65:d1:
36:42:ca:59:82:a8:05:f3:76:57:e7:04:86:68:1f:51:84:4f:
48:58:01:65:fc:21:f2:5f:69:3f:d1:19:a1:c1:df:9f:48:92:
4f:54:71:50:7e:68:fa:c0:6c:64:89:1d:48:04:8e:9a:ef:bf:
ab:3f:95:88:92:b1:94:c0:f9:3b:18:99:26:b0:43:f4:57:80:
09:4b:7a:b2:c7:ed:47:f7:94:f3:b7:68:93:f9:19:47:3f:4a:
c7:05:44:c3:22:8f:d0:cb:47:0f:38:9f:e0:04:2d:e9:3a:df:
f4:46:fb:73:90:1f:bc:81:6c:77:09:20:5c:29:c6:21:aa:93:
3b:f4:7c:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 14:33:19 2025 by rpki-client