Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/W5HoLN-rGK7Sknmg-TrUHUZpyyk.roa
File: W5HoLN-rGK7Sknmg-TrUHUZpyyk.roa (raw, json)
Hash identifier: y6Ucm85KRRLkHEK7veK3/jQFasaHZqTdNp1VX9gXMdc=
Subject key identifier: 5B:91:E8:2C:DF:AB:18:AE:D2:92:79:A0:F9:3A:D4:1D:46:69:CB:29
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0189DEBDFC7E0E518D3AC1EB1911309F62AF
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/W5HoLN-rGK7Sknmg-TrUHUZpyyk.roa
Signing time: Thu 10 Aug 2023 09:19:00 +0000
ROA not before: Thu 10 Aug 2023 09:19:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
185.238.188.0/22 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
93.88.200.0/21 maxlen: 24
193.163.85.0/24 maxlen: 24
193.163.86.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
45.148.116.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
77.81.50.0/23 maxlen: 24
185.232.117.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
109.61.104.0/21 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a04:ccc6::/32 maxlen: 48
2a0e:97c3:110::/44 maxlen: 48
2a0c:3b80::/32 maxlen: 48
2a04:ccc7::/32 maxlen: 48
2a04:ccc4::/32 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a10:2f00:193::/48 maxlen: 48
2a04:ccc5::/32 maxlen: 48
2a0e:b107:2220::/45 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a04:ccc3::/32 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a10:ccc0:420::/44 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0e:b107:21c0::/45 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a04:ccc0:ffff::/48 maxlen: 48
2a10:cc45:130::/44 maxlen: 44
2a0c:3b83::/32 maxlen: 48
2a04:ccc1::/32 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a0e:b107:2228::/45 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:de:bd:fc:7e:0e:51:8d:3a:c1:eb:19:11:30:9f:62:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Aug 10 09:19:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b91e82cdfab18aed29279a0f93ad41d4669cb29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:67:ac:ef:1e:9c:73:24:4e:cf:c2:12:e6:15:
3a:f0:d9:de:84:45:84:37:0c:09:aa:20:24:c6:ed:
d2:31:23:1f:fc:31:6d:21:2b:eb:e8:13:ea:bd:cd:
21:70:ad:c9:70:db:96:f8:bf:8a:82:97:d5:78:6e:
ac:ec:ef:6a:20:ea:32:4b:4e:17:3d:56:a8:85:d7:
0c:54:4e:85:9b:e8:6b:35:7e:3e:de:20:8b:ef:47:
a9:db:b7:66:e8:5a:f8:7e:d8:0a:fc:cd:04:99:97:
be:44:5d:b4:cf:c0:49:2c:fe:54:4a:e2:60:60:d1:
97:dc:4a:bc:aa:a2:a7:09:a7:cb:2a:cc:80:96:8d:
ee:af:c8:11:8d:e7:5a:f9:fa:07:66:34:3a:71:ef:
be:aa:47:43:20:c1:ed:03:dd:46:c2:16:76:98:d7:
8e:b3:5d:b4:d6:b2:97:5d:68:93:8b:1f:d4:06:5b:
12:c4:4b:66:94:41:22:de:5d:ea:79:2e:c7:04:28:
11:15:74:e6:f4:a5:90:cc:61:3a:81:0c:f0:44:5a:
ee:48:44:6f:a7:71:14:2b:27:a0:79:b2:82:9d:54:
09:7a:8c:6a:6a:ea:90:23:a3:7c:96:43:90:92:8c:
32:82:84:6f:a3:d1:06:d2:7c:c1:77:4b:75:e9:8f:
7a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:91:E8:2C:DF:AB:18:AE:D2:92:79:A0:F9:3A:D4:1D:46:69:CB:29
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/W5HoLN-rGK7Sknmg-TrUHUZpyyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.131.184.0/22
45.136.136.0/22
45.148.116.0/22
77.81.50.0/23
85.202.203.0/24
93.88.200.0/21
94.177.122.0/24
109.61.104.0/21
139.28.96.0/22
185.232.117.0/24
185.238.188.0/22
193.163.85.0-193.163.86.255
194.50.92.0/24
194.50.94.0/24
IPv6:
2a04:ccc0:ffff::-2a04:ccc1:ffff:ffff:ffff:ffff:ffff:ffff
2a04:ccc3::-2a04:ccc7:ffff:ffff:ffff:ffff:ffff:ffff
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:170::/48
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:100::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0e:b107:21c0::/45
2a0e:b107:2220::/44
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:2f00:193::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
2a10:ccc0:420::/44
Signature Algorithm: sha256WithRSAEncryption
7f:71:05:6c:9b:e1:cc:19:14:98:4a:4e:bb:f9:ba:ee:30:6c:
a2:9b:1e:f9:f6:8e:0c:fa:17:cf:26:7e:46:aa:80:f5:f2:73:
c1:a4:60:1d:88:ea:d0:fb:b9:64:49:db:69:c3:0a:61:20:ec:
3b:19:bc:8d:cd:c4:b6:7b:1e:41:5f:77:0d:5e:54:9a:41:e1:
7f:ee:a4:10:fa:7e:b4:31:f6:38:9c:41:ac:ff:6d:f7:17:02:
d4:5b:79:25:3a:d7:9b:5b:72:aa:d7:65:3d:f4:10:7f:2f:b4:
e6:48:32:2f:71:79:d6:72:58:ab:45:61:39:82:b2:57:c0:66:
d9:ce:7c:08:b4:89:5e:e9:d8:f2:d1:e4:3d:37:48:76:8b:ab:
fa:f1:07:3d:db:40:e5:ca:99:34:2e:18:39:ad:8c:22:e7:c9:
fa:63:f8:0c:bc:c5:79:1f:f3:99:0e:d8:c6:88:19:92:80:b7:
98:c8:cf:90:57:63:52:2b:22:7f:ca:25:d5:1e:11:13:2f:c3:
fe:4a:92:ef:47:87:8e:98:98:fd:2f:de:1e:19:7b:88:8c:26:
86:a3:dc:a1:4d:52:a1:67:27:d1:9f:42:2b:08:f3:32:8a:32:
a0:77:a4:06:ce:16:d1:b1:f5:86:21:72:52:2f:02:aa:1a:18:
14:f6:d8:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 25 16:43:16 2023 by rpki-client on console-fra.rpki-client.org