Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/30112f-0e9d-4fc8-b854-b1565b255854/1/tWowK_aq-B1b2MJZdHUWdFsDPRI.roa
File: tWowK_aq-B1b2MJZdHUWdFsDPRI.roa (raw, json)
Hash identifier: j8vlzl1lgYlTe2g8S2Lb9XiM0jb3AITOXIdri69kpbI=
Subject key identifier: B5:6A:30:2B:F6:AA:F8:1D:5B:D8:C2:59:74:75:16:74:5B:03:3D:12
Certificate issuer: /CN=a5472b1473bc781b70440315c83d119c8abc86fc
Certificate serial: 01856C412C275BAF7C9B0CC885AA6FF62B11
Authority key identifier: A5:47:2B:14:73:BC:78:1B:70:44:03:15:C8:3D:11:9C:8A:BC:86:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pUcrFHO8eBtwRAMVyD0RnIq8hvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/30112f-0e9d-4fc8-b854-b1565b255854/1/tWowK_aq-B1b2MJZdHUWdFsDPRI.roa
Signing time: Sun 01 Jan 2023 07:34:48 +0000
ROA not before: Sun 01 Jan 2023 07:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15457
IP address blocks: 89.109.64.0/18 maxlen: 18
188.125.192.0/19 maxlen: 19
185.80.76.0/22 maxlen: 22
213.138.224.0/19 maxlen: 19
95.172.160.0/19 maxlen: 19
213.190.192.0/19 maxlen: 19
159.255.48.0/20 maxlen: 20
83.223.160.0/19 maxlen: 19
84.23.192.0/19 maxlen: 19
2a00:d180::/29 maxlen: 29
2a00:d180::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:2c:27:5b:af:7c:9b:0c:c8:85:aa:6f:f6:2b:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5472b1473bc781b70440315c83d119c8abc86fc
Validity
Not Before: Jan 1 07:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b56a302bf6aaf81d5bd8c259747516745b033d12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:38:3f:e0:4d:bf:19:03:71:24:24:f1:e1:51:
92:17:f3:10:cd:4d:f3:33:58:82:8d:c9:ee:53:e1:
4b:26:e3:c4:c2:ce:b7:7c:86:53:27:4b:96:cb:e2:
37:38:0a:a2:3d:d3:f1:92:9d:25:68:b2:d9:3b:e3:
03:91:76:53:9c:dd:67:dc:72:20:38:c1:df:68:b5:
6f:a6:2f:e2:3a:e8:32:b1:68:00:c9:f0:23:14:49:
6f:0c:ec:77:37:54:4a:08:bb:3e:f3:09:2e:3d:28:
d7:ea:6e:39:ed:da:5f:79:26:99:6c:18:4a:0c:6f:
59:d9:7a:69:49:e9:51:9f:79:ba:ae:94:c3:a3:32:
7c:21:f3:9a:be:a2:5c:a4:26:54:bf:27:27:48:1f:
9d:df:ab:37:e0:d1:a4:2a:9a:37:99:b6:12:42:dd:
e3:fb:a7:1c:bc:c7:30:99:ba:e8:71:e7:5d:9c:23:
a7:47:52:0d:6a:00:2c:59:24:19:58:fa:f4:01:3b:
3f:5b:d2:29:77:e9:67:8b:7a:4a:54:75:5d:f1:f2:
34:13:ef:32:9d:47:16:17:34:94:f8:01:66:84:eb:
d2:dd:00:c6:78:f1:64:8f:e6:36:62:32:b4:ad:db:
7c:de:81:b1:2c:49:c2:1f:3c:3c:1b:a2:f8:df:1e:
ae:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:6A:30:2B:F6:AA:F8:1D:5B:D8:C2:59:74:75:16:74:5B:03:3D:12
X509v3 Authority Key Identifier:
keyid:A5:47:2B:14:73:BC:78:1B:70:44:03:15:C8:3D:11:9C:8A:BC:86:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pUcrFHO8eBtwRAMVyD0RnIq8hvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/30112f-0e9d-4fc8-b854-b1565b255854/1/tWowK_aq-B1b2MJZdHUWdFsDPRI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/30112f-0e9d-4fc8-b854-b1565b255854/1/pUcrFHO8eBtwRAMVyD0RnIq8hvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.223.160.0/19
84.23.192.0/19
89.109.64.0/18
95.172.160.0/19
159.255.48.0/20
185.80.76.0/22
188.125.192.0/19
213.138.224.0/19
213.190.192.0/19
IPv6:
2a00:d180::/29
Signature Algorithm: sha256WithRSAEncryption
85:26:b7:ad:4d:fe:e5:79:bd:eb:7a:47:88:cb:5a:88:81:fa:
01:d8:91:ba:62:4f:a6:2f:43:93:4a:90:9d:c7:db:fd:b7:03:
c6:c1:ba:cb:4d:0f:e0:d3:8c:e7:d4:d2:61:b4:7b:42:e8:8d:
d3:6a:01:28:8b:14:dd:33:11:cb:51:2a:23:ae:05:46:3a:45:
84:09:7c:3a:79:45:e7:ea:5a:e3:ef:bc:b9:56:0a:20:56:43:
96:cb:e6:dc:a6:0f:81:ae:b6:93:05:33:a0:36:00:d4:df:1e:
c3:c5:38:18:6d:6d:66:72:ae:e9:09:9e:49:8b:6c:41:9f:d9:
b5:60:89:ba:86:9f:66:4b:43:e3:28:87:6f:ab:2c:e6:c6:3a:
24:f2:aa:7f:fb:dd:a2:99:73:21:e5:48:27:42:da:cd:d4:10:
63:39:ec:03:64:71:6c:fb:ba:79:d6:2c:80:5c:a2:83:6b:22:
f1:f6:3d:2c:48:67:78:a0:73:4a:aa:d4:d3:2b:e1:a3:0a:80:
40:0f:d9:8f:3e:b7:b5:77:56:c7:e0:17:35:46:c7:2e:c5:50:
31:fe:b8:b9:c2:36:1a:8f:98:7e:1d:d7:66:6c:15:34:2c:1b:
d0:61:38:9b:04:d7:4b:2f:ef:d7:f0:7b:3b:bb:07:1e:54:25:
cd:df:8c:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:50 2024 by rpki-client on console-ams.rpki-client.org