Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/WiY7-QAxN2bOIQJf84NRvjinHmw.roa
File: WiY7-QAxN2bOIQJf84NRvjinHmw.roa (raw, json)
Hash identifier: Dns/4vmnZlV0xoLORdTqp2dJMoX8ob0+06c1dvUzkS8=
Subject key identifier: 5A:26:3B:F9:00:31:37:66:CE:21:02:5F:F3:83:51:BE:38:A7:1E:6C
Certificate issuer: /CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Certificate serial: 018B5FB45652E1DF49DA3A3F144B5773FAFB
Authority key identifier: C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/WiY7-QAxN2bOIQJf84NRvjinHmw.roa
Signing time: Tue 24 Oct 2023 03:22:15 +0000
ROA not before: Tue 24 Oct 2023 03:22:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48011
IP address blocks: 87.236.161.0/24 maxlen: 24
103.130.145.0/24 maxlen: 24
5.172.177.0/24 maxlen: 24
103.130.147.0/24 maxlen: 24
45.93.168.0/22 maxlen: 24
213.217.31.0/24 maxlen: 24
77.87.122.0/24 maxlen: 24
193.163.72.0/24 maxlen: 24
185.217.143.0/24 maxlen: 24
213.232.203.0/24 maxlen: 24
45.252.180.0/24 maxlen: 24
45.252.182.0/23 maxlen: 23
45.252.182.0/24 maxlen: 24
45.252.183.0/24 maxlen: 24
45.252.181.0/24 maxlen: 24
185.227.139.0/24 maxlen: 24
185.227.137.0/24 maxlen: 24
185.227.138.0/24 maxlen: 24
185.227.136.0/24 maxlen: 24
91.247.188.0/24 maxlen: 24
45.89.236.0/22 maxlen: 24
185.211.79.0/24 maxlen: 24
62.204.58.0/24 maxlen: 24
185.182.105.0/24 maxlen: 24
2a0c:6600:6::/48 maxlen: 48
2a0c:6600:1::/48 maxlen: 48
2a0c:6600:3::/48 maxlen: 48
2a0c:6600:8::/48 maxlen: 48
2a0c:6600:5::/48 maxlen: 48
2a0c:6600:2000::/48 maxlen: 48
2a0c:6600:3000::/48 maxlen: 48
2a0c:6600:4000::/48 maxlen: 48
2a0c:6600::/48 maxlen: 48
2a0c:6600:6600::/48 maxlen: 48
2a0c:6600:6000::/48 maxlen: 48
2a0c:6600:1000::/48 maxlen: 48
2a0c:6600:9::/48 maxlen: 48
2a0c:6600:4::/48 maxlen: 48
2a0c:6600:7::/48 maxlen: 48
2a0c:6600:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 26 Nov 2023 07:37:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5f:b4:56:52:e1:df:49:da:3a:3f:14:4b:57:73:fa:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Validity
Not Before: Oct 24 03:22:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a263bf900313766ce21025ff38351be38a71e6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3a:50:ae:4a:55:b9:e1:3e:91:13:37:51:88:
4c:3b:88:25:78:c8:7d:bf:4a:d3:a4:48:4c:af:d0:
f1:5a:5d:4f:f5:6a:c3:fb:5f:76:09:83:a6:7a:97:
29:8e:d4:ec:8d:cf:99:59:5a:8e:05:12:a1:1e:07:
37:3e:8c:48:34:0e:df:5e:ee:f5:64:5c:0f:29:04:
fc:52:d8:02:f0:be:cb:bb:00:66:7c:2a:08:e7:a5:
e7:c6:47:f1:b1:f3:c4:f8:3c:2d:62:6e:63:83:e4:
16:9a:4d:04:2e:90:55:1b:9c:76:07:f9:6d:a8:36:
79:12:4e:0e:62:09:4a:68:25:29:aa:4f:25:ad:44:
12:05:cb:f2:8e:38:7d:4d:64:fb:ef:fe:04:ca:57:
3b:d4:fd:c9:15:8e:b9:0a:f3:74:11:53:16:fa:be:
b7:0b:c9:db:47:af:93:00:25:b8:f2:39:39:ef:3e:
be:6d:f6:b6:58:2c:fd:b5:f8:e1:57:0c:c5:44:00:
77:e1:62:ec:b7:13:5c:09:48:a0:59:bf:3d:ef:52:
04:86:e6:dd:13:a8:61:d3:f8:b8:d7:e0:a6:f3:ca:
f9:94:f7:4e:0e:d7:41:01:32:10:be:b3:a5:d8:b5:
80:04:fb:82:0d:a7:bb:66:bb:ec:6d:44:f9:1b:f6:
96:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:26:3B:F9:00:31:37:66:CE:21:02:5F:F3:83:51:BE:38:A7:1E:6C
X509v3 Authority Key Identifier:
keyid:C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/WiY7-QAxN2bOIQJf84NRvjinHmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/xZvR6MWPZBvZRDBfEcVO_l86DOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.177.0/24
45.89.236.0/22
45.93.168.0/22
45.252.180.0/22
62.204.58.0/24
77.87.122.0/24
87.236.161.0/24
91.247.188.0/24
103.130.145.0/24
103.130.147.0/24
185.182.105.0/24
185.211.79.0/24
185.217.143.0/24
185.227.136.0/22
193.163.72.0/24
213.217.31.0/24
213.232.203.0/24
IPv6:
2a0c:6600::-2a0c:6600:9:ffff:ffff:ffff:ffff:ffff
2a0c:6600:1000::/48
2a0c:6600:2000::/48
2a0c:6600:3000::/48
2a0c:6600:4000::/48
2a0c:6600:6000::/48
2a0c:6600:6600::/48
Signature Algorithm: sha256WithRSAEncryption
a3:34:87:ff:98:98:76:58:37:16:49:38:ce:0a:72:08:b9:14:
01:8e:d4:08:63:05:3c:dd:24:14:4e:bf:38:79:fc:78:79:6d:
f5:9e:30:01:d1:38:8f:8d:4e:24:41:c8:8f:ed:c2:1a:24:5c:
73:f9:d8:8d:91:47:77:55:84:ad:bd:f9:cf:7b:8a:72:40:b9:
c2:7c:93:15:4e:9b:60:b4:c4:26:57:c4:d1:15:e9:96:67:df:
3a:df:79:b4:40:70:6d:10:6a:46:f3:81:26:1d:ef:b7:09:a9:
a5:f1:79:d5:de:70:1f:25:d7:ff:a9:55:79:f5:73:79:87:4e:
11:87:06:d7:71:be:90:a2:6d:fa:04:0e:8e:7c:c9:2c:8a:24:
96:1f:ea:2d:16:42:6b:f2:33:c0:15:61:58:68:0c:f1:d5:b9:
52:25:1d:15:ee:11:bf:04:13:d1:00:06:d6:d5:20:e8:b3:c7:
fd:1a:6f:a2:c8:d5:05:af:2e:96:19:99:15:83:a0:9b:e5:70:
fc:77:86:47:cf:e7:69:ea:03:c5:34:e4:60:2f:51:e9:51:03:
9d:98:40:e1:b3:17:56:4d:7f:b6:88:10:d0:28:a8:8d:39:28:
a1:a2:20:4a:52:ae:e7:41:32:46:49:6e:f4:a7:39:b1:84:6e:
17:97:e6:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:16 2024 by rpki-client on console-fra.rpki-client.org