Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/wgIoyWJUbVJnU3FJNtydp7LH9ak.roa
File: wgIoyWJUbVJnU3FJNtydp7LH9ak.roa (raw, json)
Hash identifier: GDp/NrJNsurrPuwyIk+F6ILbuXkJYgGpgRXO01i2njw=
Subject key identifier: C2:02:28:C9:62:54:6D:52:67:53:71:49:36:DC:9D:A7:B2:C7:F5:A9
Certificate issuer: /CN=52b9b9e256580c4344bb241445b4d52e54fdd50b
Certificate serial: 01856FD52524B4702B0D2F010E6D00B8AC65
Authority key identifier: 52:B9:B9:E2:56:58:0C:43:44:BB:24:14:45:B4:D5:2E:54:FD:D5:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Urm54lZYDENEuyQURbTVLlT91Qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/wgIoyWJUbVJnU3FJNtydp7LH9ak.roa
Signing time: Mon 02 Jan 2023 00:15:17 +0000
ROA not before: Mon 02 Jan 2023 00:15:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15895
IP address blocks: 81.23.16.0/24 maxlen: 24
81.23.16.0/20 maxlen: 20
85.223.128.0/17 maxlen: 17
37.229.0.0/16 maxlen: 16
176.8.0.0/16 maxlen: 16
188.163.0.0/17 maxlen: 17
212.109.32.0/19 maxlen: 19
188.163.0.0/16 maxlen: 16
46.185.0.0/17 maxlen: 17
134.249.0.0/16 maxlen: 16
94.153.0.0/16 maxlen: 16
212.82.192.0/19 maxlen: 19
62.64.64.0/18 maxlen: 18
77.247.216.0/21 maxlen: 21
109.162.0.0/17 maxlen: 17
193.239.128.0/23 maxlen: 23
94.153.164.0/22 maxlen: 22
94.27.0.0/17 maxlen: 17
46.118.0.0/15 maxlen: 15
83.170.192.0/18 maxlen: 18
193.41.60.0/23 maxlen: 23
193.41.60.0/22 maxlen: 22
193.41.62.0/23 maxlen: 23
89.162.128.0/17 maxlen: 17
5.248.0.0/16 maxlen: 16
37.115.0.0/16 maxlen: 16
46.211.0.0/16 maxlen: 16
178.137.0.0/16 maxlen: 16
2a02:2378::/32 maxlen: 32
2a02:8a8::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:25:24:b4:70:2b:0d:2f:01:0e:6d:00:b8:ac:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52b9b9e256580c4344bb241445b4d52e54fdd50b
Validity
Not Before: Jan 2 00:15:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c20228c962546d526753714936dc9da7b2c7f5a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:1f:34:0a:2f:0d:11:08:eb:74:a3:bc:35:1c:
90:47:05:d7:38:0b:cd:01:05:37:03:58:a1:b4:21:
bf:04:51:68:dd:f7:9b:15:27:19:4f:59:47:38:e7:
8d:42:c0:ce:ac:c5:62:13:46:86:ea:bd:67:57:b1:
33:d3:15:9b:85:a5:3c:94:84:66:16:b4:c2:49:73:
d7:8c:20:81:2b:80:34:b3:4a:17:1f:34:09:38:ae:
70:cb:a1:6b:be:d8:e0:e7:c2:1c:a4:32:5d:8c:ed:
9b:b0:02:e8:0d:7f:cc:00:a1:87:00:7f:84:d6:53:
5a:f3:b5:4b:aa:62:d6:81:f5:ac:24:f5:8e:5b:4a:
ee:70:cb:6e:bd:9e:7b:1e:9b:03:f4:87:bc:07:d1:
bd:26:7c:ae:f6:80:6c:54:7f:bb:d9:68:2a:4e:fa:
e3:3e:c4:0f:a2:91:4d:4c:08:58:d8:5d:04:e9:f4:
0f:06:74:8b:2c:e8:a9:8e:bd:4f:f9:d5:b3:f8:87:
d4:c0:13:0d:5e:d5:2a:8c:90:81:82:4a:5f:68:97:
bc:91:27:7a:a9:8b:1e:bb:fc:8c:97:2e:c6:14:31:
ef:b1:1f:05:b0:c3:31:88:a2:6f:3a:18:7f:ea:32:
67:2c:2d:c3:51:b4:49:23:f5:88:ae:41:53:58:6d:
94:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:02:28:C9:62:54:6D:52:67:53:71:49:36:DC:9D:A7:B2:C7:F5:A9
X509v3 Authority Key Identifier:
keyid:52:B9:B9:E2:56:58:0C:43:44:BB:24:14:45:B4:D5:2E:54:FD:D5:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Urm54lZYDENEuyQURbTVLlT91Qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/wgIoyWJUbVJnU3FJNtydp7LH9ak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/Urm54lZYDENEuyQURbTVLlT91Qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.248.0.0/16
37.115.0.0/16
37.229.0.0/16
46.118.0.0/15
46.185.0.0/17
46.211.0.0/16
62.64.64.0/18
77.247.216.0/21
81.23.16.0/20
83.170.192.0/18
85.223.128.0/17
89.162.128.0/17
94.27.0.0/17
94.153.0.0/16
109.162.0.0/17
134.249.0.0/16
176.8.0.0/16
178.137.0.0/16
188.163.0.0/16
193.41.60.0/22
193.239.128.0/23
212.82.192.0/19
212.109.32.0/19
IPv6:
2a02:8a8::/32
2a02:2378::/32
Signature Algorithm: sha256WithRSAEncryption
2c:ba:26:ca:32:d5:10:ba:15:5b:7b:6a:19:a5:33:4b:06:30:
ab:12:80:fb:dc:cd:0d:84:7a:42:6e:a7:0f:a5:0d:a3:3e:6c:
d7:ea:70:83:dc:15:3f:57:da:ee:0c:a5:c0:ad:20:81:b4:28:
b9:67:ea:db:74:c8:e3:b9:a2:4d:6a:08:2a:9a:2b:27:de:98:
99:eb:59:a5:7b:99:6f:0b:86:96:62:6d:96:e5:7b:fe:a8:5c:
4a:94:77:82:67:7c:e5:d3:7b:b6:79:2d:9e:b6:ed:c8:a7:a0:
ef:fb:ac:7e:6a:99:42:41:e6:2f:38:28:f7:d3:ac:b2:be:d3:
8f:57:8a:12:c4:bd:2c:0a:58:4e:40:46:e8:fd:86:30:6e:69:
79:3f:02:ff:39:32:73:3d:ad:3f:86:ad:f3:dc:33:14:1c:39:
3f:71:e3:74:04:3d:48:a9:3f:d4:6c:3e:15:c8:d4:4a:0f:c0:
ae:db:fe:15:a6:e9:10:bb:91:98:2c:f9:32:32:fe:90:d7:dd:
68:79:80:f6:9d:25:b2:e0:d7:b8:0a:9d:eb:d1:7c:8b:2e:76:
fb:b7:50:2f:ee:68:5a:6d:97:80:e5:22:57:50:d2:00:43:62:
78:92:5b:c7:f4:1c:c0:8e:d0:48:30:ca:c7:90:c7:57:16:2b:
db:2e:ae:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:15:56 2024 by rpki-client on console-ams.rpki-client.org