Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/WiryRgyzN9vMm6AQp-ly5Zf9Q6w.roa
File: WiryRgyzN9vMm6AQp-ly5Zf9Q6w.roa (raw, json)
Hash identifier: r8/G8RW1L7zzj7fw5wPzp4kRlelxscYm2ik4Uwuf4xM=
Subject key identifier: 5A:2A:F2:46:0C:B3:37:DB:CC:9B:A0:10:A7:E9:72:E5:97:FD:43:AC
Certificate issuer: /CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Certificate serial: 01873C7EC86CD658FDE7265A5AD6E503027B
Authority key identifier: 83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/WiryRgyzN9vMm6AQp-ly5Zf9Q6w.roa
Signing time: Sat 01 Apr 2023 11:05:54 +0000
ROA not before: Sat 01 Apr 2023 11:05:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39150
IP address blocks: 95.85.83.0/24 maxlen: 24
95.85.83.128/25 maxlen: 25
95.85.83.0/25 maxlen: 25
91.196.139.0/24 maxlen: 24
91.196.138.0/24 maxlen: 24
91.196.137.0/24 maxlen: 24
91.196.136.0/24 maxlen: 24
109.196.133.0/24 maxlen: 24
93.179.94.0/24 maxlen: 24
93.179.93.0/24 maxlen: 24
93.179.121.0/24 maxlen: 24
195.182.8.0/24 maxlen: 24
93.179.69.0/24 maxlen: 24
93.179.68.0/23 maxlen: 23
93.179.66.0/24 maxlen: 24
95.181.213.0/24 maxlen: 24
95.181.212.0/23 maxlen: 23
2a04:8680::/32 maxlen: 32
2a09:d5c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 31 May 2023 11:35:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:3c:7e:c8:6c:d6:58:fd:e7:26:5a:5a:d6:e5:03:02:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Validity
Not Before: Apr 1 11:05:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a2af2460cb337dbcc9ba010a7e972e597fd43ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:12:91:1d:2e:de:e5:06:91:e7:34:54:bf:e0:
88:bf:40:1d:9d:cd:43:ac:ec:78:4a:61:cb:15:b8:
e3:e3:f6:1a:3a:3b:c2:d2:f6:ff:5a:dc:0a:dd:6c:
cf:a4:0b:d1:3a:f6:bf:33:1e:b0:da:2b:dc:a7:32:
89:11:1f:c5:5a:fc:3e:87:05:e3:1d:20:d1:af:41:
7e:11:19:85:33:5d:8d:a9:16:a6:8e:94:d6:49:25:
9b:14:1f:e3:17:a1:94:cc:01:ce:1c:20:ea:59:41:
dd:61:74:8c:10:46:51:ba:bb:78:6b:44:8d:ac:6f:
a6:2d:4a:c2:61:bd:c9:9e:ea:f2:c2:76:f4:ef:18:
60:84:40:d2:51:b8:55:28:5b:87:59:f5:7c:9d:d7:
dc:13:68:34:f8:7f:0f:c7:6d:f1:1f:62:28:3b:cc:
be:2c:b0:47:43:ec:2c:84:31:11:62:fa:be:11:a4:
07:eb:94:9c:1c:a7:c7:bf:ea:a8:c5:89:82:59:c7:
ba:e2:45:14:73:45:67:d6:5f:d1:7a:cd:7d:ea:18:
a3:0d:7b:dc:e8:7e:34:50:a8:7c:f7:7e:ad:53:47:
62:c6:a7:ea:aa:b9:66:5d:cf:3c:14:6d:88:fb:c3:
91:38:07:88:26:72:dc:08:9c:3f:ea:1f:ef:1b:b9:
2c:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:2A:F2:46:0C:B3:37:DB:CC:9B:A0:10:A7:E9:72:E5:97:FD:43:AC
X509v3 Authority Key Identifier:
keyid:83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/WiryRgyzN9vMm6AQp-ly5Zf9Q6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.136.0/22
93.179.66.0/24
93.179.68.0/23
93.179.93.0-93.179.94.255
93.179.121.0/24
95.85.83.0/24
95.181.212.0/23
109.196.133.0/24
195.182.8.0/24
IPv6:
2a04:8680::/32
2a09:d5c0::/32
Signature Algorithm: sha256WithRSAEncryption
7f:40:04:8e:31:8b:32:83:2b:62:fc:6b:ba:86:4a:35:73:44:
e7:32:f3:c1:fe:c9:1b:98:5c:6a:0d:bc:3b:9f:cc:3d:0c:43:
41:9c:96:7c:32:d5:80:40:1c:27:5e:99:34:10:b9:5e:26:54:
8d:4a:fb:6c:15:17:df:b2:f6:19:14:0c:82:3e:32:8d:b5:3e:
d9:f8:96:e6:b3:dc:36:8d:79:7c:6e:49:25:69:90:87:bf:82:
25:ad:84:51:e5:6c:8e:f3:6b:90:4f:2a:be:88:b1:ad:87:cf:
50:d1:84:47:2e:71:e8:d4:8d:99:9a:b6:7a:d6:5c:fd:8c:be:
af:1a:17:a7:de:77:e9:30:ee:cc:be:84:f7:4d:45:bb:09:de:
15:81:53:30:61:cd:bc:0b:07:fa:a4:bc:dc:95:59:f7:aa:c2:
5a:0c:f2:82:71:1c:c9:e9:92:21:8e:80:4b:bb:e2:e5:9c:dd:
19:c8:27:f6:13:d2:be:fa:0f:55:43:54:52:62:98:4c:6e:0c:
bd:dc:d3:cd:cb:45:dc:a4:92:e0:b8:46:0e:db:21:09:55:58:
c3:af:0d:67:b3:65:b1:78:c0:72:fc:13:2b:b2:b2:b2:55:d6:
17:b4:4f:14:1a:90:23:6f:12:0c:e4:ba:da:ad:ce:20:24:c7:
fe:da:14:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:22 2024 by rpki-client on console-ams.rpki-client.org