Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/WvRelWun23jIBV6QPfEb5rxSSts.roa
File: WvRelWun23jIBV6QPfEb5rxSSts.roa (raw, json)
Hash identifier: VyuJewybBpxq9u2AmOwrv72YOOj66muNJqIKdtN7CRI=
Subject key identifier: 5A:F4:5E:95:6B:A7:DB:78:C8:05:5E:90:3D:F1:1B:E6:BC:52:4A:DB
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019003E715DB61B0D6572A840AA9B0E999AF
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/WvRelWun23jIBV6QPfEb5rxSSts.roa
Signing time: Mon 10 Jun 2024 20:46:34 +0000
ROA not before: Mon 10 Jun 2024 20:46:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12586
IP address blocks: 5.83.128.0/20 maxlen: 32
5.83.151.0/24 maxlen: 32
5.175.128.0/17 maxlen: 32
5.175.255.0/24 maxlen: 32
5.230.0.0/15 maxlen: 32
5.230.6.0/24 maxlen: 32
5.230.11.0/24 maxlen: 32
5.230.102.0/24 maxlen: 32
5.230.224.0/24 maxlen: 32
5.231.233.0/24 maxlen: 32
77.90.0.0/18 maxlen: 32
77.90.4.0/24 maxlen: 24
83.243.80.0/21 maxlen: 32
85.93.0.0/19 maxlen: 32
85.93.20.0/24 maxlen: 32
85.118.160.0/21 maxlen: 32
87.239.128.0/21 maxlen: 32
89.106.64.0/19 maxlen: 32
89.144.0.0/18 maxlen: 32
94.103.160.0/20 maxlen: 32
94.249.128.0/17 maxlen: 32
95.215.32.0/22 maxlen: 32
178.18.144.0/20 maxlen: 32
178.18.151.0/24 maxlen: 32
185.13.156.0/22 maxlen: 32
185.47.140.0/24 maxlen: 32
185.47.141.0/24 maxlen: 32
185.121.71.0/24 maxlen: 32
193.28.251.0/24 maxlen: 32
195.110.14.0/23 maxlen: 32
217.69.160.0/20 maxlen: 32
2a00:12d8::/29 maxlen: 128
2a00:19d0::/29 maxlen: 128
2a00:cdc0::/32 maxlen: 128
2a01:bd40::/29 maxlen: 128
2a02:7a0::/29 maxlen: 128
2a02:2fc0::/29 maxlen: 128
Validation: Failed, certificate revoked on Sun 23 Jun 2024 04:19:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:03:e7:15:db:61:b0:d6:57:2a:84:0a:a9:b0:e9:99:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jun 10 20:46:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5af45e956ba7db78c8055e903df11be6bc524adb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:70:74:aa:ff:0a:4f:0f:0f:60:3d:08:27:63:
e4:9b:e8:81:e9:c6:a5:e3:92:75:2e:94:56:54:10:
87:26:fa:a2:fe:76:4c:c4:48:39:c9:f4:e7:9b:44:
d3:48:d2:1a:a0:b5:16:0e:00:77:f8:88:c9:6e:45:
b8:bf:bf:c2:07:b6:5e:20:2d:7a:79:7d:43:1c:04:
24:c1:c1:2a:45:bc:22:55:de:2d:b4:42:04:58:a9:
9d:04:ef:58:2d:e1:c9:68:40:a9:32:94:ad:4f:c6:
c9:81:be:40:89:35:6a:82:f8:b1:37:92:66:a5:f8:
37:fe:71:c0:27:2a:4d:52:e6:79:b3:b5:4f:13:6b:
2a:ae:50:d5:cc:68:cd:eb:64:5f:2e:a6:d9:26:01:
30:53:a9:55:ab:8c:66:fe:ec:79:47:09:dd:19:99:
01:37:0c:39:dc:fe:99:0e:2b:4e:f3:20:a1:24:0b:
69:09:82:66:bd:e5:c4:87:dd:98:38:5e:a7:ff:00:
27:24:83:b6:d5:07:ef:55:68:a2:85:b5:21:e9:8e:
39:3c:e6:77:2b:bd:b0:9f:d4:54:57:d7:1a:49:89:
a9:94:aa:f6:cd:88:67:a7:d2:65:17:e4:2b:d0:72:
50:0f:3b:8d:3a:f2:8c:df:c8:f9:e4:95:cd:be:db:
2a:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:F4:5E:95:6B:A7:DB:78:C8:05:5E:90:3D:F1:1B:E6:BC:52:4A:DB
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/WvRelWun23jIBV6QPfEb5rxSSts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.128.0/20
5.83.151.0/24
5.175.128.0/17
5.230.0.0/15
77.90.0.0/18
83.243.80.0/21
85.93.0.0/19
85.118.160.0/21
87.239.128.0/21
89.106.64.0/19
89.144.0.0/18
94.103.160.0/20
94.249.128.0/17
95.215.32.0/22
178.18.144.0/20
185.13.156.0/22
185.47.140.0/23
185.121.71.0/24
193.28.251.0/24
195.110.14.0/23
217.69.160.0/20
IPv6:
2a00:12d8::/29
2a00:19d0::/29
2a00:cdc0::/32
2a01:bd40::/29
2a02:7a0::/29
2a02:2fc0::/29
Signature Algorithm: sha256WithRSAEncryption
ac:9e:5c:6b:a8:8b:27:25:cb:a0:29:b9:3d:74:16:2c:62:04:
ac:a5:31:da:3f:09:52:ea:38:6c:8c:eb:ad:f6:02:8c:a1:5e:
98:df:4c:b6:7f:05:a8:5e:c3:02:ca:69:c1:31:1d:ed:ab:54:
25:f2:e5:2a:6e:78:d8:d9:e9:94:1c:3a:1d:ea:7e:ba:a8:f4:
71:9d:1a:6f:1e:8f:ad:25:12:ff:43:94:ac:f6:b1:da:e6:46:
78:57:04:c7:23:f7:72:a4:13:3d:4b:5e:82:3f:29:74:3c:12:
b5:cb:83:49:87:a9:18:05:07:18:e8:ce:d9:fe:ad:b9:61:e1:
53:d9:b0:92:5b:9e:b9:51:6b:ee:ac:94:69:f6:52:da:a4:67:
b6:35:54:2e:e7:ef:d0:e0:a9:a6:87:59:82:c6:05:7f:53:6a:
48:04:25:9d:14:74:fc:d9:be:8b:b5:42:80:7a:e6:08:a8:f2:
eb:1e:82:d4:e8:98:22:4b:57:49:c3:cb:0c:14:ad:f4:55:38:
11:59:28:1b:a3:25:b7:07:91:17:36:84:73:1f:00:92:06:fa:
8d:9f:4f:3f:f0:01:cd:8e:c0:a3:08:7c:5a:d6:d1:9e:cf:a9:
c9:03:18:42:d3:95:eb:9a:00:01:e8:e6:c9:e5:50:8f:e8:e9:
75:0f:f5:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 06:12:53 2024 by rpki-client on console-ams.rpki-client.org