Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/wom67lzNzztG5-Eelf1BTj8XmG4.roa
File: wom67lzNzztG5-Eelf1BTj8XmG4.roa (raw, json)
Hash identifier: XwkratTi8dIgFFAxK24nUGw8kmIUrCnIcJi2zcycOO0=
Subject key identifier: C2:89:BA:EE:5C:CD:CF:3B:46:E7:E1:1E:95:FD:41:4E:3F:17:98:6E
Certificate issuer: /CN=c84d61cd17ed92e54bb3397f1e5a6b3904ac6f05
Certificate serial: 01856CCADB01B4BA343627C7B117C146752E
Authority key identifier: C8:4D:61:CD:17:ED:92:E5:4B:B3:39:7F:1E:5A:6B:39:04:AC:6F:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yE1hzRftkuVLszl_HlprOQSsbwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/wom67lzNzztG5-Eelf1BTj8XmG4.roa
Signing time: Sun 01 Jan 2023 10:05:11 +0000
ROA not before: Sun 01 Jan 2023 10:05:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20860
IP address blocks: 185.49.236.0/22 maxlen: 24
109.69.80.0/21 maxlen: 24
185.71.24.0/22 maxlen: 24
195.189.124.0/22 maxlen: 24
45.145.180.0/22 maxlen: 24
185.33.184.0/22 maxlen: 24
185.11.240.0/22 maxlen: 24
195.94.112.0/20 maxlen: 24
94.199.184.0/21 maxlen: 24
151.236.208.0/21 maxlen: 24
185.68.0.0/22 maxlen: 24
94.190.240.0/21 maxlen: 24
93.95.8.0/21 maxlen: 24
185.122.216.0/22 maxlen: 24
31.210.128.0/21 maxlen: 24
185.31.252.0/22 maxlen: 24
37.35.88.0/21 maxlen: 24
87.237.64.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:db:01:b4:ba:34:36:27:c7:b1:17:c1:46:75:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c84d61cd17ed92e54bb3397f1e5a6b3904ac6f05
Validity
Not Before: Jan 1 10:05:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c289baee5ccdcf3b46e7e11e95fd414e3f17986e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b1:82:a4:c4:40:c7:22:52:2e:03:3f:db:50:
f3:e3:d5:59:7e:78:e8:50:11:35:c5:f7:82:7b:96:
9a:75:26:c4:d1:89:71:ac:b7:fa:40:70:a4:93:3a:
94:9c:a2:18:0e:9f:32:56:67:5a:75:e4:eb:ce:54:
1e:55:c8:c6:db:fb:fa:b7:28:8c:90:9e:64:41:68:
2e:e2:8f:47:10:f3:72:f5:63:72:b2:0b:62:c2:e4:
8c:38:2b:c4:03:ff:c6:e9:52:57:ec:0a:24:6a:38:
de:90:39:ce:85:bc:e0:ee:e2:2f:39:41:45:70:a4:
02:78:20:2a:d2:ca:f3:2e:f7:56:85:09:9c:9b:71:
32:2c:c8:c9:aa:73:f1:68:78:23:8e:fa:a5:81:db:
ad:bb:7b:28:05:6a:17:59:a0:fe:92:b7:08:6d:2c:
aa:96:e0:7a:a7:99:e7:0a:13:0f:f7:76:e3:04:78:
93:15:ae:c7:b4:21:68:b2:66:ed:86:e0:29:3e:b7:
19:67:3b:bd:8e:8c:68:5c:42:b2:77:11:61:6e:56:
c9:f6:a0:3a:f2:56:09:0d:3d:de:05:33:c9:58:5f:
0d:79:f5:17:75:3a:0f:1f:91:f9:a4:8b:23:79:45:
29:30:4a:0d:df:2f:b2:80:26:76:be:09:28:77:dd:
92:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:89:BA:EE:5C:CD:CF:3B:46:E7:E1:1E:95:FD:41:4E:3F:17:98:6E
X509v3 Authority Key Identifier:
keyid:C8:4D:61:CD:17:ED:92:E5:4B:B3:39:7F:1E:5A:6B:39:04:AC:6F:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yE1hzRftkuVLszl_HlprOQSsbwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/wom67lzNzztG5-Eelf1BTj8XmG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/yE1hzRftkuVLszl_HlprOQSsbwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.128.0/21
37.35.88.0/21
45.145.180.0/22
87.237.64.0/21
93.95.8.0/21
94.190.240.0/21
94.199.184.0/21
109.69.80.0/21
151.236.208.0/21
185.11.240.0/22
185.31.252.0/22
185.33.184.0/22
185.49.236.0/22
185.68.0.0/22
185.71.24.0/22
185.122.216.0/22
195.94.112.0/20
195.189.124.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:4d:48:ba:ad:f1:cc:19:86:34:d4:fb:b5:32:20:09:54:59:
bb:27:23:30:3c:09:8c:ed:8e:d3:d2:15:07:c8:52:29:22:9d:
bd:61:d6:93:9b:1d:3b:81:5a:94:01:54:dd:54:df:9a:b6:1d:
f8:47:7a:fe:29:e3:da:9f:f0:80:c9:0f:69:fe:84:53:cb:e8:
65:ac:b4:e5:9b:50:c2:e6:ee:24:cf:80:0a:0c:4b:db:45:6d:
96:b3:d8:a2:e5:44:f3:07:e6:3c:91:a3:1e:bc:de:aa:57:e9:
9b:58:36:60:81:8d:da:43:99:01:b1:94:19:a9:c6:c2:da:2b:
95:7a:3e:a9:f9:cf:e7:aa:ea:42:bc:71:6e:ba:6f:48:d5:74:
94:66:43:60:03:bc:74:47:a9:1a:64:02:4f:33:7c:56:fd:16:
8d:92:0f:e5:0c:9e:e7:ec:9f:2d:d4:be:2f:95:13:2e:59:c6:
ba:74:6e:9e:27:9e:d0:ee:08:bd:a8:73:92:76:1b:39:6d:15:
9e:79:e8:76:7a:8d:aa:98:b5:18:47:8b:10:f5:1a:96:cb:61:
2c:ad:61:95:21:d7:db:05:0c:a1:bc:43:ff:1d:36:41:d3:3a:
2c:24:1b:3a:d1:01:cb:98:e0:44:35:bc:f5:7a:75:a9:de:3a:
1c:e0:b2:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:17 2024 by rpki-client on console-fra.rpki-client.org