Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/WT6ICikvHaNZ-nONY01QO834XBw.roa
File: WT6ICikvHaNZ-nONY01QO834XBw.roa (raw, json)
Hash identifier: gT29bbim9eSzaPedapn91ieaV+o9zi7TjjRa8W3z/2s=
Subject key identifier: 59:3E:88:0A:29:2F:1D:A3:59:FA:73:8D:63:4D:50:3B:CD:F8:5C:1C
Certificate issuer: /CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Certificate serial: 0185B1485F710123FC51EB0860B025A0E1F0
Authority key identifier: 64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/WT6ICikvHaNZ-nONY01QO834XBw.roa
Signing time: Sat 14 Jan 2023 17:16:28 +0000
ROA not before: Sat 14 Jan 2023 17:16:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49367
IP address blocks: 89.43.52.0/24 maxlen: 24
188.215.7.0/24 maxlen: 24
188.215.6.0/23 maxlen: 23
188.215.6.0/24 maxlen: 24
85.204.255.0/24 maxlen: 24
89.34.236.0/23 maxlen: 23
89.34.239.0/24 maxlen: 24
188.208.16.0/23 maxlen: 23
94.176.212.0/24 maxlen: 24
89.39.254.0/24 maxlen: 24
86.107.110.0/24 maxlen: 24
185.184.240.0/22 maxlen: 22
188.211.248.0/24 maxlen: 24
94.177.48.0/23 maxlen: 23
193.239.140.0/23 maxlen: 23
91.212.52.0/24 maxlen: 24
188.240.229.0/24 maxlen: 24
188.240.228.0/23 maxlen: 23
188.240.228.0/24 maxlen: 24
37.156.174.0/24 maxlen: 24
89.40.142.0/23 maxlen: 23
45.86.144.0/22 maxlen: 22
91.229.186.0/24 maxlen: 24
45.83.56.0/22 maxlen: 22
93.113.145.0/24 maxlen: 24
93.113.144.0/21 maxlen: 21
93.113.144.0/22 maxlen: 22
93.113.144.0/24 maxlen: 24
93.113.149.0/24 maxlen: 24
93.113.148.0/24 maxlen: 24
93.113.150.0/24 maxlen: 24
93.113.151.0/24 maxlen: 24
93.113.147.0/24 maxlen: 24
93.113.146.0/24 maxlen: 24
89.42.134.0/24 maxlen: 24
89.40.227.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:b1:48:5f:71:01:23:fc:51:eb:08:60:b0:25:a0:e1:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Validity
Not Before: Jan 14 17:16:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=593e880a292f1da359fa738d634d503bcdf85c1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8a:03:63:9f:87:0b:0e:6e:02:e0:db:b1:ee:
f7:cf:e0:ec:9e:21:f7:9f:20:7e:51:73:14:f1:d3:
91:c3:1c:df:a0:85:09:34:fd:ee:30:f6:c3:cc:b9:
03:07:96:07:60:7c:b7:fd:f6:a9:aa:b9:fc:8e:b8:
03:1a:3c:e3:4c:5d:a6:2b:26:af:82:a6:c9:f2:d3:
18:36:b1:0c:2a:bf:28:78:67:dc:48:2c:58:18:40:
5a:60:60:e1:52:2f:1f:07:b5:82:32:79:f4:17:cc:
ec:f7:af:3b:a0:88:b7:a2:57:a6:60:2b:fc:bd:5b:
16:09:49:e6:72:91:8b:20:4f:3e:47:80:08:52:a9:
c6:09:aa:75:ad:0c:83:1b:a5:96:e5:64:64:4e:88:
70:9f:2b:ea:0c:79:45:fc:52:cb:63:9c:28:ef:29:
c1:f5:a5:b8:bb:4b:bb:f1:89:59:7c:61:14:e4:5e:
96:07:02:2d:78:39:d1:38:f5:e0:27:75:8e:a5:3d:
32:6e:6b:38:14:50:68:3f:c7:b2:e3:6a:59:fa:0d:
23:4e:54:20:ad:b5:59:04:d9:9c:4c:2f:9a:be:73:
03:3f:ed:85:a0:f2:99:20:73:98:17:8c:d4:d1:3c:
98:10:a2:31:10:8d:19:c7:54:79:ea:58:8d:79:84:
32:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:3E:88:0A:29:2F:1D:A3:59:FA:73:8D:63:4D:50:3B:CD:F8:5C:1C
X509v3 Authority Key Identifier:
keyid:64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/WT6ICikvHaNZ-nONY01QO834XBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/ZPpm-4SngaBYT9DRwt85vaR2BRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.174.0/24
45.83.56.0/22
45.86.144.0/22
85.204.255.0/24
86.107.110.0/24
89.34.236.0/23
89.34.239.0/24
89.39.254.0/24
89.40.142.0/23
89.40.227.0/24
89.42.134.0/24
89.43.52.0/24
91.212.52.0/24
91.229.186.0/24
93.113.144.0/21
94.176.212.0/24
94.177.48.0/23
185.184.240.0/22
188.208.16.0/23
188.211.248.0/24
188.215.6.0/23
188.240.228.0/23
193.239.140.0/23
Signature Algorithm: sha256WithRSAEncryption
da:bd:10:3e:d0:1f:36:d2:9c:48:d1:cd:78:d1:85:60:1f:49:
fd:04:4d:3c:a4:9e:70:dc:ba:b2:bb:53:62:26:2a:d0:73:e6:
b4:77:0a:c6:64:2b:de:04:33:d0:3d:81:5c:cc:18:b0:00:17:
19:af:2e:36:fa:79:0d:e2:a1:67:8c:b5:5a:9b:7f:31:ba:f3:
54:0f:f6:e0:c4:6b:c3:24:6c:df:a2:f8:da:0b:04:ea:19:77:
e8:fe:f6:94:3f:3a:de:b7:3e:ef:ec:2a:0f:3d:0a:ce:67:f4:
96:0e:d1:22:e5:17:58:a5:bc:0d:ef:1d:e5:e9:cb:6e:c0:a7:
40:23:c6:9b:68:8b:fb:89:9b:c5:e2:c1:22:fb:5e:94:bb:f3:
69:bc:ac:b5:57:01:9e:68:8d:47:02:24:21:95:12:3c:d4:53:
b6:1d:03:04:8f:e5:6b:39:ec:f6:e3:cb:dc:ca:6f:ff:22:4a:
ac:8c:f0:1c:ec:ae:df:dc:c8:6b:2b:94:4c:d5:6f:78:68:e8:
01:ec:82:d8:8d:02:28:07:a6:fc:e5:23:3c:d1:cb:80:7c:5f:
53:99:18:21:f2:8b:0a:1e:5f:9a:af:08:36:95:7d:ac:2d:ef:
5b:bd:63:ab:6b:83:5c:3d:09:ee:7e:b7:0e:13:72:fe:4e:36:
ad:f3:cb:79
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgISAYWxSF9xASP8UesIYLAloOHwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0ZmE2NmZiODRhNzgxYTA1ODRmZDBkMWMyZGYzOWJkYTQ3
NjA1MTkwHhcNMjMwMTE0MTcxNjI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OTNlODgwYTI5MmYxZGEzNTlmYTczOGQ2MzRkNTAzYmNkZjg1YzFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0IoDY5+HCw5uAuDbse73z+DsniH3
nyB+UXMU8dORwxzfoIUJNP3uMPbDzLkDB5YHYHy3/fapqrn8jrgDGjzjTF2mKyav
gqbJ8tMYNrEMKr8oeGfcSCxYGEBaYGDhUi8fB7WCMnn0F8zs9687oIi3olemYCv8
vVsWCUnmcpGLIE8+R4AIUqnGCap1rQyDG6WW5WRkTohwnyvqDHlF/FLLY5wo7ynB
9aW4u0u78YlZfGEU5F6WBwIteDnROPXgJ3WOpT0ybms4FFBoP8ey42pZ+g0jTlQg
rbVZBNmcTC+avnMDP+2FoPKZIHOYF4zU0TyYEKIxEI0Zx1R56liNeYQyBQIDAQAB
o4ICkjCCAo4wHQYDVR0OBBYEFFk+iAopLx2jWfpzjWNNUDvN+FwcMB8GA1UdIwQY
MBaAFGT6ZvuEp4GgWE/Q0cLfOb2kdgUZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWlBwbS00U25nYUJZVDlEUnd0ODV2YVIyQlJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi82NjNiNGQtYjgwZS00OTQ2LTg0YzQt
NzQwOGViOGJjNTg2LzEvV1Q2SUNpa3ZIYU5aLW5PTlkwMVFPODM0WEJ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi82NjNiNGQtYjgwZS00OTQ2LTg0YzQtNzQwOGViOGJjNTg2
LzEvWlBwbS00U25nYUJZVDlEUnd0ODV2YVIyQlJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGnBggrBgEFBQcBBwEB/wSBlzCBlDCBkQQCAAEwgYoDBAAl
nK4DBAItUzgDBAItVpADBABVzP8DBABWa24DBAFZIuwDBABZIu8DBABZJ/4DBAFZ
KI4DBABZKOMDBABZKoYDBABZKzQDBABb1DQDBABb5boDBANdcZADBABesNQDBAFe
sTADBAK5uPADBAG80BADBAC80/gDBAG81wYDBAG88OQDBAHB74wwDQYJKoZIhvcN
AQELBQADggEBANq9ED7QHzbSnEjRzXjRhWAfSf0ETTyknnDcurK7U2ImKtBz5rR3
CsZkK94EM9A9gVzMGLAAFxmvLjb6eQ3ioWeMtVqbfzG681QP9uDEa8MkbN+i+NoL
BOoZd+j+9pQ/Ot63Pu/sKg89Cs5n9JYO0SLlF1ilvA3vHeXpy27Ap0Ajxptoi/uJ
m8XiwSL7XpS782m8rLVXAZ5ojUcCJCGVEjzUU7YdAwSP5Ws57Pbjy9zKb/8iSqyM
8Bzsrt/cyGsrlEzVb3ho6AHsgtiNAigHpvzlIzzRy4B8X1OZGCHyiwoeX5qvCDaV
fawt71u9Y6trg1w9Ce5+tw4Tcv5ONq3zy3k=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:48 2023 by rpki-client on console-ams.rpki-client.org