Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/CWS1Oj3yqIJCdkqw0inJRt6ItG0.roa
File: CWS1Oj3yqIJCdkqw0inJRt6ItG0.roa (raw, json)
Hash identifier: FsxQpfeHnc+bvSAf19EGf4uH0ylmGmLBjZyAGUQplWw=
Subject key identifier: 09:64:B5:3A:3D:F2:A8:82:42:76:4A:B0:D2:29:C9:46:DE:88:B4:6D
Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Certificate serial: 018983F7930777AFFFAFA096D65D42B1A15E
Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/CWS1Oj3yqIJCdkqw0inJRt6ItG0.roa
Signing time: Sun 23 Jul 2023 18:16:27 +0000
ROA not before: Sun 23 Jul 2023 18:16:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59729
IP address blocks: 45.140.7.0/24 maxlen: 24
176.118.188.0/24 maxlen: 24
176.118.189.0/24 maxlen: 24
91.245.239.0/24 maxlen: 24
88.218.239.0/24 maxlen: 24
194.28.158.0/24 maxlen: 24
194.28.159.0/24 maxlen: 24
194.28.156.0/24 maxlen: 24
194.104.6.0/24 maxlen: 24
194.104.5.0/24 maxlen: 24
185.177.76.0/23 maxlen: 23
212.69.132.0/24 maxlen: 24
95.214.92.0/24 maxlen: 24
84.252.66.0/24 maxlen: 24
212.69.134.0/24 maxlen: 24
84.252.67.0/24 maxlen: 24
77.83.20.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 31 Jul 2023 22:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:83:f7:93:07:77:af:ff:af:a0:96:d6:5d:42:b1:a1:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Validity
Not Before: Jul 23 18:16:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0964b53a3df2a88242764ab0d229c946de88b46d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:84:bd:8c:46:af:c1:6e:2f:50:78:ae:0f:64:
d6:d9:11:d2:2a:a7:0c:77:c9:b7:bd:c0:9a:f3:3b:
10:ec:40:7e:b7:4d:2f:c2:33:23:da:f3:fe:94:f6:
20:b6:c0:67:c3:46:99:0e:3d:f7:15:c2:d6:a9:4f:
77:d6:76:59:b2:64:f0:26:bc:f6:7a:de:14:b5:e0:
9d:2d:94:ff:90:5b:dc:28:1d:e4:b1:db:2f:97:21:
f5:b1:0e:0f:14:a2:ae:7b:e4:36:09:1b:dd:ce:a6:
f6:8b:95:da:95:e7:15:03:57:cd:e2:72:e1:4b:b9:
4b:70:ce:c2:45:08:80:a0:ac:a0:cd:25:a4:8b:0b:
fe:b5:65:da:67:ba:91:72:ea:25:be:b4:55:91:e9:
c3:60:79:61:fe:9d:a6:fd:84:ba:23:c1:42:9f:1c:
3e:89:a0:84:9c:2a:08:90:e5:d2:28:02:68:53:14:
c6:0e:fe:d3:a7:3a:2c:63:3f:88:9a:9b:ae:4b:95:
79:a4:14:a8:c1:b0:75:a8:38:e8:f4:dd:60:e1:23:
11:d5:19:1a:5f:1a:9f:74:94:5d:4e:18:58:32:2b:
45:31:f7:77:c3:91:52:dc:66:b8:69:72:50:45:5b:
83:2b:35:a5:59:41:af:b9:e7:e5:09:4d:07:c3:9d:
42:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:64:B5:3A:3D:F2:A8:82:42:76:4A:B0:D2:29:C9:46:DE:88:B4:6D
X509v3 Authority Key Identifier:
keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/CWS1Oj3yqIJCdkqw0inJRt6ItG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.7.0/24
77.83.20.0/22
84.252.66.0/23
88.218.239.0/24
91.245.239.0/24
95.214.92.0/24
176.118.188.0/23
185.177.76.0/23
194.28.156.0/24
194.28.158.0/23
194.104.5.0-194.104.6.255
212.69.132.0/24
212.69.134.0/24
Signature Algorithm: sha256WithRSAEncryption
81:37:e1:07:5a:d5:bf:c5:e3:2a:ea:7a:92:bc:93:e9:5c:be:
b3:df:2f:13:3d:01:fa:f4:9b:00:c2:6b:3b:18:61:80:46:57:
83:f8:e4:0a:e4:c2:09:56:31:28:9a:17:2c:cd:93:3e:a1:ad:
3e:08:e8:0e:30:a4:bc:a9:68:8a:6a:f3:e2:ab:db:5a:de:10:
fe:da:d0:cb:bb:63:26:a7:1a:dc:d1:00:ec:d3:14:86:4d:b5:
a6:24:7b:eb:b9:63:15:e9:b5:a4:95:6d:96:21:e6:5b:90:01:
e7:49:fb:4e:7d:72:4a:8a:33:e9:d0:d4:19:e3:fb:08:bd:49:
42:bc:fa:18:66:03:ab:a5:3d:5c:e7:29:70:e5:9d:bd:b6:ff:
a7:b4:eb:fd:6c:fe:c6:d5:6d:ce:d5:01:3c:20:d1:e1:f9:75:
17:56:b3:13:a2:0e:3d:9e:8a:67:82:12:a0:46:5f:56:85:42:
71:f4:97:53:20:3c:4b:3a:10:e4:45:81:f5:21:60:6e:79:e4:
c3:dd:7e:a2:b0:7c:42:18:cd:f9:ee:fa:15:d1:70:bf:3e:59:
9a:1c:b7:09:d9:92:72:58:25:48:d3:84:3f:7e:82:d6:a0:ef:
9a:8f:bf:52:77:89:6e:4f:a1:d2:60:32:69:78:91:f2:14:40:
f4:d5:45:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:20 2024 by rpki-client on console-ams.rpki-client.org