Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/WnANchPE97O9y5FHhS437CViRYE.roa
File: WnANchPE97O9y5FHhS437CViRYE.roa (raw, json)
Hash identifier: qPbDfGEB5LDLg0sQgP4DPmfhRISvdnUWW99Xh74YdsA=
Subject key identifier: 5A:70:0D:72:13:C4:F7:B3:BD:CB:91:47:85:2E:37:EC:25:62:45:81
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018E144A0F09F1F4D823C38C182A14EEF794
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/WnANchPE97O9y5FHhS437CViRYE.roa
Signing time: Wed 06 Mar 2024 15:03:01 +0000
ROA not before: Wed 06 Mar 2024 15:03:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 2.56.112.0/24 maxlen: 24
2.56.113.0/24 maxlen: 24
5.183.128.0/24 maxlen: 24
31.222.248.0/24 maxlen: 24
62.68.83.0/24 maxlen: 24
62.204.57.0/24 maxlen: 24
62.233.35.0/24 maxlen: 24
62.233.49.0/24 maxlen: 24
80.91.210.0/24 maxlen: 24
91.213.117.0/24 maxlen: 24
91.242.225.0/24 maxlen: 24
91.242.238.0/24 maxlen: 24
94.158.191.0/24 maxlen: 24
130.193.79.0/24 maxlen: 24
130.255.169.0/24 maxlen: 24
146.19.137.0/24 maxlen: 24
146.19.148.0/24 maxlen: 24
146.19.194.0/24 maxlen: 24
176.56.38.0/24 maxlen: 24
178.211.140.0/24 maxlen: 24
185.122.206.0/24 maxlen: 24
185.218.1.0/24 maxlen: 24
185.232.47.0/24 maxlen: 24
193.3.22.0/24 maxlen: 24
193.141.53.0/24 maxlen: 24
193.239.209.0/24 maxlen: 24
194.26.216.0/24 maxlen: 24
194.26.221.0/24 maxlen: 24
194.32.243.0/24 maxlen: 24
195.64.106.0/24 maxlen: 24
195.64.109.0/24 maxlen: 24
195.64.112.0/24 maxlen: 24
195.64.117.0/24 maxlen: 24
195.93.249.0/24 maxlen: 24
195.96.146.0/24 maxlen: 24
195.96.155.0/24 maxlen: 24
195.96.157.0/24 maxlen: 24
212.18.103.0/24 maxlen: 24
212.52.5.0/24 maxlen: 24
217.114.32.0/24 maxlen: 24
217.119.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Mar 2024 15:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:14:4a:0f:09:f1:f4:d8:23:c3:8c:18:2a:14:ee:f7:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Mar 6 15:03:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a700d7213c4f7b3bdcb9147852e37ec25624581
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:07:99:ce:0a:94:ac:9a:4d:ba:03:25:d3:a5:
f0:51:3f:b1:6a:e3:d3:42:6b:a4:32:f5:de:7f:56:
82:9b:3e:44:86:ce:5b:5c:6d:b4:94:6d:f7:5b:04:
c4:dc:49:df:ab:23:84:e6:ff:78:78:60:5f:84:a7:
7d:15:db:a0:bb:ec:44:73:5f:88:dd:df:44:19:47:
03:c8:9f:c7:2f:40:ba:79:25:18:bd:6d:ee:c6:47:
c2:99:76:23:7c:05:60:20:c7:c3:12:58:91:57:82:
a9:09:20:2a:aa:a7:5b:af:e2:ea:ef:2e:e9:97:6e:
a6:82:7e:cc:65:96:cf:c1:cc:84:96:87:ef:d3:1b:
d9:e4:a4:3d:b8:08:15:df:9c:fc:62:a3:40:0c:85:
2e:5a:df:a3:a1:6d:d6:be:df:97:26:8f:5b:50:b9:
38:32:a9:15:5c:33:93:f3:84:54:2a:df:b6:86:02:
39:1b:f2:5a:89:0a:d9:5f:b2:a1:94:02:30:fb:a3:
7f:d0:6f:2a:16:ca:6e:b8:6d:cf:68:a9:ac:69:49:
be:78:48:58:ef:d3:70:e6:e0:fd:eb:d8:be:be:06:
88:01:ed:0e:8d:0a:bf:3d:c6:2d:8f:0f:e2:cc:d9:
3c:d9:f3:2d:86:13:46:11:7d:5b:cb:71:6b:91:0d:
ec:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:70:0D:72:13:C4:F7:B3:BD:CB:91:47:85:2E:37:EC:25:62:45:81
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/WnANchPE97O9y5FHhS437CViRYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.112.0/23
5.183.128.0/24
31.222.248.0/24
62.68.83.0/24
62.204.57.0/24
62.233.35.0/24
62.233.49.0/24
80.91.210.0/24
91.213.117.0/24
91.242.225.0/24
91.242.238.0/24
94.158.191.0/24
130.193.79.0/24
130.255.169.0/24
146.19.137.0/24
146.19.148.0/24
146.19.194.0/24
176.56.38.0/24
178.211.140.0/24
185.122.206.0/24
185.218.1.0/24
185.232.47.0/24
193.3.22.0/24
193.141.53.0/24
193.239.209.0/24
194.26.216.0/24
194.26.221.0/24
194.32.243.0/24
195.64.106.0/24
195.64.109.0/24
195.64.112.0/24
195.64.117.0/24
195.93.249.0/24
195.96.146.0/24
195.96.155.0/24
195.96.157.0/24
212.18.103.0/24
212.52.5.0/24
217.114.32.0/24
217.119.130.0/24
Signature Algorithm: sha256WithRSAEncryption
55:1f:39:b6:b5:ac:26:46:6e:a0:c1:d6:86:eb:2f:c9:f6:c9:
b8:fd:d4:ad:98:86:f7:b3:6a:9c:b1:7a:a7:10:94:53:ef:24:
33:6f:e3:cb:6d:4b:2f:38:b1:d2:83:b5:8e:53:f3:22:a9:f7:
f2:00:13:69:25:9b:7d:9c:05:06:f4:76:8b:94:fb:f7:48:58:
bd:f3:15:78:34:9e:c2:e4:f2:15:29:25:de:f0:0c:b8:f7:76:
16:37:30:c3:55:a1:44:a6:42:cf:70:7d:82:6c:46:ad:ad:cf:
29:58:7e:ba:3c:04:c1:d6:02:30:3d:38:45:22:d2:3d:db:da:
03:58:7c:86:df:8c:34:d4:f3:56:89:f4:56:1e:ea:df:ab:5d:
cd:48:3b:e5:98:a3:e7:49:fe:f4:29:bb:86:94:3f:a8:51:b9:
db:78:4e:d3:4b:60:2f:4f:a3:00:dd:c6:d7:f8:fe:31:11:57:
9c:1c:48:02:5e:ba:56:47:33:8e:e3:79:39:67:e1:ed:25:4c:
dc:17:e9:2b:0b:08:90:62:10:d9:81:49:b7:4b:0d:dc:24:1d:
82:cf:c3:a0:03:48:63:76:16:4e:d6:8b:13:f4:bc:5a:9b:49:
b7:06:05:59:4d:ce:ad:36:7a:42:bb:e6:8b:2e:26:9b:4d:0e:
80:95:8b:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org