Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/wiFFUELKQwkaw5EAdnBlZFFCRQI.roa
File: wiFFUELKQwkaw5EAdnBlZFFCRQI.roa (raw, json)
Hash identifier: O9kBjVFIMohdhAxaNJG11wc90syFoDMSTWIodVDYieM=
Subject key identifier: C2:21:45:50:42:CA:43:09:1A:C3:91:00:76:70:65:64:51:42:45:02
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 0185730CCBB923B37B1A8541886C259C9DA6
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/wiFFUELKQwkaw5EAdnBlZFFCRQI.roa
Signing time: Mon 02 Jan 2023 15:14:56 +0000
ROA not before: Mon 02 Jan 2023 15:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1680
IP address blocks: 212.29.192.0/18 maxlen: 24
176.13.0.0/16 maxlen: 24
212.235.0.0/17 maxlen: 24
89.138.0.0/16 maxlen: 16
207.232.0.0/18 maxlen: 18
62.90.135.0/24 maxlen: 24
212.29.244.0/24 maxlen: 24
147.234.84.0/24 maxlen: 24
147.234.83.0/24 maxlen: 24
147.234.86.0/24 maxlen: 24
147.234.26.0/24 maxlen: 24
147.234.28.0/24 maxlen: 24
147.234.27.0/24 maxlen: 24
147.234.27.0/25 maxlen: 25
147.234.27.128/25 maxlen: 25
82.166.201.128/25 maxlen: 25
147.234.43.0/24 maxlen: 24
212.150.0.0/16 maxlen: 24
176.12.128.0/17 maxlen: 24
194.90.1.0/24 maxlen: 24
194.90.0.0/16 maxlen: 24
62.90.0.0/16 maxlen: 24
46.117.0.0/16 maxlen: 16
212.143.194.0/24 maxlen: 24
46.210.0.0/16 maxlen: 24
93.173.0.0/16 maxlen: 16
199.203.1.0/24 maxlen: 24
199.203.0.0/16 maxlen: 16
89.139.0.0/16 maxlen: 16
82.166.0.0/16 maxlen: 24
199.203.21.0/24 maxlen: 24
85.65.0.0/16 maxlen: 16
46.116.0.0/16 maxlen: 16
212.143.0.0/16 maxlen: 24
147.234.17.0/24 maxlen: 24
199.203.191.0/24 maxlen: 24
147.234.22.0/24 maxlen: 24
80.250.144.0/20 maxlen: 24
95.35.0.0/16 maxlen: 24
82.166.100.0/22 maxlen: 24
82.166.112.0/21 maxlen: 24
192.118.30.0/23 maxlen: 23
192.118.28.0/22 maxlen: 22
192.118.28.0/23 maxlen: 23
93.172.0.0/16 maxlen: 16
62.0.88.0/22 maxlen: 24
62.0.87.0/24 maxlen: 24
62.0.94.0/24 maxlen: 24
62.0.92.0/23 maxlen: 24
109.253.0.0/16 maxlen: 24
62.0.0.0/16 maxlen: 24
85.64.0.0/16 maxlen: 16
217.132.0.0/16 maxlen: 16
109.186.0.0/16 maxlen: 16
85.250.0.0/16 maxlen: 16
62.0.116.0/22 maxlen: 24
62.0.114.0/23 maxlen: 24
62.0.120.0/21 maxlen: 24
62.0.128.0/23 maxlen: 24
2001:4df0::/32 maxlen: 32
2a02:148::/32 maxlen: 32
2a02:149::/32 maxlen: 32
2001:4df2::/32 maxlen: 32
2001:4df3::/32 maxlen: 32
2a02:148::/29 maxlen: 32
2a02:14b::/32 maxlen: 32
2a02:14f::/32 maxlen: 32
2001:4df7::/32 maxlen: 32
2a02:14e::/32 maxlen: 32
2001:4df6::/32 maxlen: 32
2001:4df5::/32 maxlen: 32
2a02:14c::/32 maxlen: 32
2001:4df0::/29 maxlen: 32
2001:4df1::/32 maxlen: 32
2a02:14a::/32 maxlen: 32
2001:4df4::/32 maxlen: 32
2a02:14d::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 13 Nov 2023 16:53:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:cb:b9:23:b3:7b:1a:85:41:88:6c:25:9c:9d:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: Jan 2 15:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c221455042ca43091ac391007670656451424502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:03:4c:85:76:da:5c:bf:17:77:20:e4:15:af:
43:03:ef:9b:b9:bf:ac:c5:53:cc:5e:82:42:e9:5e:
bd:c5:ad:cf:6e:83:85:fb:04:e1:2d:16:a7:4e:4a:
77:73:9c:7b:97:06:ba:db:f2:40:19:b9:63:73:90:
33:25:2d:5a:7c:46:0c:34:9e:3b:a7:3e:7e:02:e8:
85:7a:3c:63:1a:53:e5:8c:1b:52:c9:3f:9b:99:bb:
3f:25:b7:e8:56:e0:1c:6e:82:98:a8:42:fb:db:46:
83:6d:24:7d:e3:52:b4:1c:e2:c2:9d:1e:9b:89:28:
44:a4:17:07:60:a3:16:ff:ce:62:37:6d:b4:f4:a0:
2e:8f:7e:ed:1d:65:27:59:90:98:b9:36:c4:4b:80:
eb:d2:41:aa:62:5c:8c:c2:0d:2d:06:9d:96:50:a4:
9b:8e:ec:b5:f1:0d:54:31:1a:6e:47:f5:7c:c9:81:
2e:0d:7b:3c:10:7a:96:1a:38:8c:e5:8d:8f:f6:10:
8b:7c:63:97:35:25:53:26:7d:c5:47:b3:83:d4:fe:
9d:0b:c2:1e:f0:b7:a8:09:e7:08:ba:98:a8:a6:19:
c3:24:ce:7c:16:8d:e9:30:de:0a:4c:4f:3d:dd:3a:
c8:f6:47:ce:7c:4a:0e:7c:8c:75:f9:d7:24:5b:e7:
4d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:21:45:50:42:CA:43:09:1A:C3:91:00:76:70:65:64:51:42:45:02
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/wiFFUELKQwkaw5EAdnBlZFFCRQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.116.0.0/15
46.210.0.0/16
62.0.0.0/16
62.90.0.0/16
80.250.144.0/20
82.166.0.0/16
85.64.0.0/15
85.250.0.0/16
89.138.0.0/15
93.172.0.0/15
95.35.0.0/16
109.186.0.0/16
109.253.0.0/16
147.234.17.0/24
147.234.22.0/24
147.234.26.0-147.234.28.255
147.234.43.0/24
147.234.83.0-147.234.84.255
147.234.86.0/24
176.12.128.0-176.13.255.255
192.118.28.0/22
194.90.0.0/16
199.203.0.0/16
207.232.0.0/18
212.29.192.0/18
212.143.0.0/16
212.150.0.0/16
212.235.0.0/17
217.132.0.0/16
IPv6:
2001:4df0::/29
2a02:148::/29
Signature Algorithm: sha256WithRSAEncryption
6b:8d:e4:df:5a:53:fa:6d:d7:70:00:e8:70:f7:b5:1d:63:f5:
fd:8d:6e:44:5b:b5:2b:a8:be:e5:1e:fc:04:82:14:5a:af:12:
63:89:6b:33:34:44:3d:d5:37:b0:b5:da:1e:65:f8:55:d7:c6:
52:10:da:58:50:49:f7:a1:ad:91:2b:4f:a6:ae:06:0e:9b:16:
b8:ba:a0:0a:c6:39:98:a1:66:57:ff:d8:97:43:7b:54:0f:5e:
91:05:60:b7:8a:6a:98:3b:82:16:47:66:bb:9b:98:15:3d:d2:
0e:cd:2c:77:68:93:27:f7:f7:fa:92:42:ee:ca:52:ee:e5:b1:
d7:56:34:bb:ed:56:97:b3:97:4f:c8:c9:4a:98:7e:a1:40:2d:
29:3b:e3:0c:bc:af:89:53:cf:00:20:d8:b9:5d:e0:a9:64:e7:
fd:82:2a:9d:1b:9f:a9:15:a3:55:9f:bf:60:b6:15:79:68:f5:
6e:f4:53:6f:43:57:69:5f:8c:f7:cd:4c:dd:21:b2:33:4f:bd:
1e:89:67:2e:02:39:a1:96:98:15:22:50:c0:03:27:df:ec:6c:
90:f6:c4:c9:62:81:27:af:a6:61:14:21:42:87:a4:98:16:6a:
66:bd:10:91:91:e1:c6:63:1b:2b:00:82:57:39:66:86:2b:43:
eb:cc:38:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:57 2024 by rpki-client on console-ams.rpki-client.org