Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/wgFGAMnKM30xGZGX__sW77LOijo.roa
File: wgFGAMnKM30xGZGX__sW77LOijo.roa (raw, json)
Hash identifier: r8AzZE1Kthbjc5mD4e6g9j5Ma2c+iM3ylJPswfJXxFM=
Subject key identifier: C2:01:46:00:C9:CA:33:7D:31:19:91:97:FF:FB:16:EF:B2:CE:8A:3A
Certificate issuer: /CN=72e81fb5cf0fb32c4575f8413acbd41aa84b82f4
Certificate serial: 018F0829CE39C2A20C2543AEADA4AA10C8C7
Authority key identifier: 72:E8:1F:B5:CF:0F:B3:2C:45:75:F8:41:3A:CB:D4:1A:A8:4B:82:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cugftc8PsyxFdfhBOsvUGqhLgvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/wgFGAMnKM30xGZGX__sW77LOijo.roa
Signing time: Mon 22 Apr 2024 23:35:08 +0000
ROA not before: Mon 22 Apr 2024 23:35:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15695
IP address blocks: 5.253.88.0/24 maxlen: 24
5.253.89.0/24 maxlen: 24
5.253.90.0/24 maxlen: 24
5.253.91.0/24 maxlen: 24
37.26.224.0/24 maxlen: 24
37.26.225.0/24 maxlen: 24
37.26.226.0/24 maxlen: 24
37.26.227.0/24 maxlen: 24
37.26.228.0/24 maxlen: 24
37.26.229.0/24 maxlen: 24
37.26.230.0/24 maxlen: 24
37.26.231.0/24 maxlen: 24
45.81.220.0/24 maxlen: 24
45.81.221.0/24 maxlen: 24
45.81.222.0/24 maxlen: 24
45.81.223.0/24 maxlen: 24
45.93.84.0/24 maxlen: 24
45.93.85.0/24 maxlen: 24
45.93.87.0/24 maxlen: 24
45.94.190.0/24 maxlen: 24
45.95.216.0/24 maxlen: 24
45.95.217.0/24 maxlen: 24
45.95.218.0/24 maxlen: 24
45.95.219.0/24 maxlen: 24
63.247.192.0/24 maxlen: 24
63.247.193.0/24 maxlen: 24
63.247.194.0/24 maxlen: 24
63.247.195.0/24 maxlen: 24
63.247.196.0/24 maxlen: 24
63.247.197.0/24 maxlen: 24
63.247.198.0/24 maxlen: 24
63.247.199.0/24 maxlen: 24
63.247.200.0/24 maxlen: 24
63.247.201.0/24 maxlen: 24
63.247.202.0/24 maxlen: 24
63.247.203.0/24 maxlen: 24
63.247.204.0/24 maxlen: 24
63.247.205.0/24 maxlen: 24
63.247.206.0/24 maxlen: 24
63.247.207.0/24 maxlen: 24
86.48.208.0/24 maxlen: 24
86.48.209.0/24 maxlen: 24
86.48.210.0/24 maxlen: 24
86.48.211.0/24 maxlen: 24
86.48.216.0/24 maxlen: 24
86.48.217.0/24 maxlen: 24
86.48.218.0/24 maxlen: 24
86.48.219.0/24 maxlen: 24
86.48.220.0/24 maxlen: 24
86.48.221.0/24 maxlen: 24
86.48.222.0/24 maxlen: 24
86.48.223.0/24 maxlen: 24
86.48.240.0/24 maxlen: 24
86.48.241.0/24 maxlen: 24
86.48.242.0/24 maxlen: 24
91.103.16.0/24 maxlen: 24
91.103.17.0/24 maxlen: 24
91.103.18.0/24 maxlen: 24
91.103.19.0/24 maxlen: 24
91.103.21.0/24 maxlen: 24
91.103.23.0/24 maxlen: 24
185.62.116.0/24 maxlen: 24
185.62.117.0/24 maxlen: 24
185.62.118.0/24 maxlen: 24
185.62.119.0/24 maxlen: 24
193.160.134.0/24 maxlen: 24
193.160.135.0/24 maxlen: 24
195.238.244.0/24 maxlen: 24
216.172.64.0/24 maxlen: 24
216.172.65.0/24 maxlen: 24
216.172.66.0/24 maxlen: 24
216.172.67.0/24 maxlen: 24
216.172.68.0/24 maxlen: 24
216.172.69.0/24 maxlen: 24
216.172.70.0/24 maxlen: 24
216.172.71.0/24 maxlen: 24
216.172.72.0/24 maxlen: 24
216.172.73.0/24 maxlen: 24
216.172.74.0/24 maxlen: 24
216.172.75.0/24 maxlen: 24
216.172.76.0/24 maxlen: 24
216.172.77.0/24 maxlen: 24
216.172.78.0/24 maxlen: 24
216.172.79.0/24 maxlen: 24
2a00:cb8:31::/48 maxlen: 48
2a00:cb8:33::/48 maxlen: 48
2a00:cb8:34::/48 maxlen: 48
2a00:cb8:39::/48 maxlen: 48
2a00:cb8:41::/48 maxlen: 48
2a00:cb8:44::/48 maxlen: 48
2a00:cb8:48::/48 maxlen: 48
2a00:cb8:49::/48 maxlen: 48
2a00:cb8:144::/48 maxlen: 48
2a00:cb8:353::/48 maxlen: 48
2a00:cb8:971::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 25 Apr 2024 06:52:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:08:29:ce:39:c2:a2:0c:25:43:ae:ad:a4:aa:10:c8:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e81fb5cf0fb32c4575f8413acbd41aa84b82f4
Validity
Not Before: Apr 22 23:35:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c2014600c9ca337d31199197fffb16efb2ce8a3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:ab:cb:a4:df:de:d8:68:fd:1f:56:4f:a8:90:
37:7f:a3:8c:ce:36:d6:1b:b3:b4:65:16:b2:ef:51:
ab:76:e2:cf:af:4a:be:a6:17:db:2f:16:a2:5e:2c:
dd:15:fc:04:8c:83:e5:ee:d7:37:b6:74:b4:93:05:
a9:f0:f4:b1:d1:e2:4d:b8:53:7d:9f:b4:37:a6:69:
64:91:a7:37:22:43:92:a9:58:bf:e3:c8:1a:6a:f4:
f5:56:80:c6:20:1e:93:77:5d:31:70:9b:67:22:92:
d3:a9:c3:6b:56:a9:d0:96:09:2b:3c:0f:b9:5b:6d:
b4:e5:21:5e:11:c1:29:d4:c8:11:d6:f8:db:2b:ba:
d7:bf:72:8c:31:10:f5:40:ed:fc:f7:79:4f:55:c5:
10:d6:99:d5:a4:a8:2b:a9:36:0f:fc:09:dc:d2:ad:
fa:4d:7e:95:f2:d2:32:d9:b5:a2:c9:89:f5:05:ee:
5a:77:95:43:1d:7d:e1:03:34:2e:fc:b5:5b:3a:d4:
b1:76:d7:89:c8:dd:56:85:ee:b5:6f:4c:c1:a0:58:
f2:d1:c6:a7:d7:61:9d:2a:c2:d0:79:55:44:1d:ec:
d6:e5:a8:74:fd:21:b3:e1:58:43:1b:d5:45:d2:3b:
5f:ce:ed:4c:35:b5:d6:ba:ec:0c:6c:14:2e:bb:2c:
7e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:01:46:00:C9:CA:33:7D:31:19:91:97:FF:FB:16:EF:B2:CE:8A:3A
X509v3 Authority Key Identifier:
keyid:72:E8:1F:B5:CF:0F:B3:2C:45:75:F8:41:3A:CB:D4:1A:A8:4B:82:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cugftc8PsyxFdfhBOsvUGqhLgvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/wgFGAMnKM30xGZGX__sW77LOijo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/cugftc8PsyxFdfhBOsvUGqhLgvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.88.0/22
37.26.224.0/21
45.81.220.0/22
45.93.84.0/23
45.93.87.0/24
45.94.190.0/24
45.95.216.0/22
63.247.192.0/20
86.48.208.0/22
86.48.216.0/21
86.48.240.0-86.48.242.255
91.103.16.0/22
91.103.21.0/24
91.103.23.0/24
185.62.116.0/22
193.160.134.0/23
195.238.244.0/24
216.172.64.0/20
IPv6:
2a00:cb8:31::/48
2a00:cb8:33::-2a00:cb8:34:ffff:ffff:ffff:ffff:ffff
2a00:cb8:39::/48
2a00:cb8:41::/48
2a00:cb8:44::/48
2a00:cb8:48::/47
2a00:cb8:144::/48
2a00:cb8:353::/48
2a00:cb8:971::/48
Signature Algorithm: sha256WithRSAEncryption
63:d0:52:8a:d5:cf:3f:8e:f0:37:35:fb:de:63:52:5f:47:80:
c1:c5:c2:2a:1d:83:52:a5:f4:aa:4d:f5:1a:2c:92:6d:ce:9d:
ff:a3:dc:48:1f:b2:81:68:c2:2d:de:3d:59:51:bf:28:7f:b9:
dc:21:ed:f9:4b:6e:2d:54:5f:77:b2:19:b6:f0:d0:ba:68:e9:
3d:fa:e1:42:72:f7:59:21:eb:4d:8d:19:d5:f4:0b:22:fc:5b:
89:31:18:b9:00:1a:d2:70:7a:fa:9a:17:c9:2c:ce:43:43:9f:
3a:d1:f4:be:6d:62:61:98:a9:ba:37:b8:f9:43:37:af:e5:c6:
1d:95:4f:d8:ad:87:1e:18:30:17:07:8b:1b:3a:39:a8:be:20:
e5:6f:1c:4f:ac:da:7f:4f:93:eb:81:eb:53:41:af:15:df:ae:
db:09:52:23:22:50:ad:13:f4:8e:40:fb:08:bf:81:63:0b:34:
65:ec:c7:2b:5f:47:08:9e:a1:69:15:7c:c5:7b:90:33:4d:fb:
03:76:02:cf:88:27:72:ab:24:ee:f9:f6:7f:94:59:ac:89:69:
de:c6:0b:cd:8f:e0:9a:36:c7:9a:86:18:55:d3:b4:9b:05:b6:
d4:7e:cc:6a:f1:1b:4d:f2:06:d3:9c:0d:77:37:ec:36:e0:b5:
93:52:d1:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 08:19:55 2024 by rpki-client on console-ams.rpki-client.org