Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/WcKzhhHDVL5yPFAb6Vp4_30ItSg.roa
File: WcKzhhHDVL5yPFAb6Vp4_30ItSg.roa (raw, json)
Hash identifier: P3rc9tcPGH0OH8Bgkkg1y8It9ru8WJfVMk357mmojzA=
Subject key identifier: 59:C2:B3:86:11:C3:54:BE:72:3C:50:1B:E9:5A:78:FF:7D:08:B5:28
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018CC64AFA3CAB696CA379865AA1B3FFD9A4
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/WcKzhhHDVL5yPFAb6Vp4_30ItSg.roa
Signing time: Mon 01 Jan 2024 18:30:51 +0000
ROA not before: Mon 01 Jan 2024 18:30:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 81.181.57.0/24 maxlen: 24
81.181.55.0/24 maxlen: 24
81.181.56.0/24 maxlen: 24
81.181.54.0/24 maxlen: 24
81.181.58.0/24 maxlen: 24
81.181.63.0/24 maxlen: 24
81.181.61.0/24 maxlen: 24
81.181.59.0/24 maxlen: 24
81.181.62.0/24 maxlen: 24
81.181.60.0/24 maxlen: 24
85.122.192.0/19 maxlen: 24
85.122.224.0/22 maxlen: 24
85.122.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 19:33:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:fa:3c:ab:69:6c:a3:79:86:5a:a1:b3:ff:d9:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 18:30:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59c2b38611c354be723c501be95a78ff7d08b528
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:f2:94:8a:aa:13:7d:43:0c:14:50:56:2b:cc:
00:ce:f7:6d:43:e8:53:3e:18:e5:3b:cc:f2:f6:cc:
bf:96:c6:42:c1:9c:a3:65:51:1c:f9:d8:6d:ac:64:
3f:06:0d:36:20:71:3e:4e:5d:4d:a9:3c:ae:9b:ea:
02:41:61:c8:e1:09:83:5f:6a:13:e9:ae:8e:d2:bd:
51:3f:20:04:76:79:e3:aa:c6:3d:db:59:fe:ef:12:
6b:89:71:30:e9:5b:7f:a8:3d:ed:c9:03:57:e3:4c:
b4:c2:3c:f2:b4:ad:1e:c2:84:77:18:90:91:84:b0:
d4:e3:89:c2:14:6a:a4:a4:6a:a1:64:21:1e:ec:e5:
3d:e5:c7:c7:c4:be:f4:31:9d:49:42:ba:5c:1d:04:
6c:b3:98:be:0d:f1:04:4e:56:70:86:4a:65:e6:57:
ff:ac:a8:bd:cc:a7:1b:a5:57:fe:bb:bd:73:19:3e:
c1:ba:b2:7e:a9:ce:cd:fc:4a:81:2c:14:bf:40:69:
aa:30:95:d1:2d:bd:80:d5:8e:0c:7d:fc:30:8c:82:
79:40:2a:0d:84:4d:a6:ce:1d:97:65:4a:c5:6e:fa:
6e:92:b3:7a:96:33:97:2a:6e:46:a8:53:5a:ca:d7:
75:c4:33:ba:da:84:ac:b7:4d:ec:07:86:86:75:7f:
34:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:C2:B3:86:11:C3:54:BE:72:3C:50:1B:E9:5A:78:FF:7D:08:B5:28
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/WcKzhhHDVL5yPFAb6Vp4_30ItSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.181.54.0-81.181.63.255
85.122.192.0-85.122.228.255
Signature Algorithm: sha256WithRSAEncryption
af:0b:36:5a:88:37:fb:23:b9:a7:49:62:b8:a3:2e:af:45:3f:
06:16:c7:bf:15:b8:ba:f1:6a:f8:8c:97:ee:43:32:05:c2:d1:
b3:59:2f:d3:26:68:c2:4f:b6:c6:c1:9a:a7:6a:5f:92:61:35:
f7:e1:43:30:e7:f1:ca:16:77:1b:c5:59:9b:83:e7:b0:8f:58:
b1:f3:51:08:8b:21:70:da:dd:e6:4b:28:ad:2f:ad:40:fa:4b:
96:e0:c0:a3:f6:de:a5:be:68:f1:d5:a1:9f:be:34:6a:bb:b5:
8a:51:65:c7:11:db:17:d6:4c:07:7f:15:24:7f:65:27:cb:19:
81:29:b2:0b:51:bd:2b:f9:ad:84:30:bc:fa:c6:ea:e1:24:a6:
f6:68:5b:21:47:25:40:22:ce:63:33:67:6f:b5:3b:09:b9:d0:
04:66:bd:65:a9:6e:d5:d0:ce:f4:c8:82:33:fc:5e:1c:08:e7:
53:4f:6f:47:3a:25:12:c6:c3:a1:20:4f:03:54:38:dc:fb:db:
bf:22:59:c6:4d:20:2a:6c:1c:b8:99:b2:ef:b0:8a:18:ba:c7:
d6:f7:88:e3:60:0a:3c:2b:7a:7b:cc:e5:d9:67:b4:14:d9:3e:
8e:b0:3c:60:0b:b7:2f:25:2f:2a:02:14:57:fb:eb:97:cb:b9:
83:af:a9:41
-----BEGIN CERTIFICATE-----
MIIFEzCCA/ugAwIBAgISAYzGSvo8q2lso3mGWqGz/9mkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh
MTU3MjIwHhcNMjQwMTAxMTgzMDUxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OWMyYjM4NjExYzM1NGJlNzIzYzUwMWJlOTVhNzhmZjdkMDhiNTI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiPKUiqoTfUMMFFBWK8wAzvdtQ+hT
PhjlO8zy9sy/lsZCwZyjZVEc+dhtrGQ/Bg02IHE+Tl1NqTyum+oCQWHI4QmDX2oT
6a6O0r1RPyAEdnnjqsY921n+7xJriXEw6Vt/qD3tyQNX40y0wjzytK0ewoR3GJCR
hLDU44nCFGqkpGqhZCEe7OU95cfHxL70MZ1JQrpcHQRss5i+DfEETlZwhkpl5lf/
rKi9zKcbpVf+u71zGT7BurJ+qc7N/EqBLBS/QGmqMJXRLb2A1Y4MffwwjIJ5QCoN
hE2mzh2XZUrFbvpukrN6ljOXKm5GqFNaytd1xDO62oSst03sB4aGdX80YwIDAQAB
o4ICHzCCAhswHQYDVR0OBBYEFFnCs4YRw1S+cjxQG+laeP99CLUoMB8GA1UdIwQY
MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt
ZjUyYzQ3YzIyNWRiLzEvV2NLemhoSERWTDV5UEZBYjZWcDRfMzBJdFNnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi
LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDUGCCsGAQUFBwEHAQH/BCYwJDAiBAIAATAcMAwDBAFRtTYD
BAZRtQAwDAMEBlV6wAMEAFV65DANBgkqhkiG9w0BAQsFAAOCAQEArws2Wog3+yO5
p0liuKMur0U/BhbHvxW4uvFq+IyX7kMyBcLRs1kv0yZowk+2xsGap2pfkmE19+FD
MOfxyhZ3G8VZm4PnsI9YsfNRCIshcNrd5ksorS+tQPpLluDAo/bepb5o8dWhn740
aru1ilFlxxHbF9ZMB38VJH9lJ8sZgSmyC1G9K/mthDC8+sbq4SSm9mhbIUclQCLO
YzNnb7U7CbnQBGa9Zalu1dDO9MiCM/xeHAjnU09vRzolEsbDoSBPA1Q43PvbvyJZ
xk0gKmwcuJmy77CKGLrH1veI42AKPCt6e8zl2We0FNk+jrA8YAu3LyUvKgIUV/vr
l8u5g6+pQQ==
-----END CERTIFICATE-----
Generated at Wed Mar 13 22:08:37 2024 by rpki-client on console-fra.rpki-client.org