Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/wwcm249baaxLWMA87uukqBKyzWs.roa
File: wwcm249baaxLWMA87uukqBKyzWs.roa (raw, json)
Hash identifier: LLerXNAFVhcdseIT3TSQ7I2Z2U91U/7h2XRri1+TWHY=
Subject key identifier: C3:07:26:DB:8F:5B:69:AC:4B:58:C0:3C:EE:EB:A4:A8:12:B2:CD:6B
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018C8814F161A8045D3138CEFB59C331C0FB
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/wwcm249baaxLWMA87uukqBKyzWs.roa
Signing time: Wed 20 Dec 2023 16:35:23 +0000
ROA not before: Wed 20 Dec 2023 16:35:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 212.16.78.0/23 maxlen: 23
109.94.164.0/23 maxlen: 23
212.16.85.0/24 maxlen: 24
212.16.80.0/24 maxlen: 24
212.16.94.0/24 maxlen: 24
185.29.222.0/23 maxlen: 23
185.29.220.0/23 maxlen: 23
212.80.0.0/24 maxlen: 24
212.80.6.0/23 maxlen: 23
212.80.20.0/22 maxlen: 22
185.143.74.0/23 maxlen: 23
185.143.72.0/23 maxlen: 23
185.24.150.0/23 maxlen: 23
185.24.148.0/23 maxlen: 23
46.38.136.0/22 maxlen: 22
46.38.132.0/22 maxlen: 22
46.38.130.0/24 maxlen: 24
46.38.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Dec 2023 10:08:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:88:14:f1:61:a8:04:5d:31:38:ce:fb:59:c3:31:c0:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Dec 20 16:35:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c30726db8f5b69ac4b58c03ceeeba4a812b2cd6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c7:c6:8f:34:f6:9b:7f:bc:2f:a5:9b:eb:e9:
2f:df:88:e4:7f:04:d9:76:67:94:1f:b7:14:43:c6:
ef:ba:c6:e6:a9:60:39:9b:28:08:05:68:3a:bb:59:
00:48:c3:46:6b:74:f1:92:a9:86:68:9f:0d:50:6b:
53:16:e1:2d:83:ec:ce:be:ab:d5:f7:53:83:82:d1:
bd:25:5a:13:50:bc:92:7b:44:07:f4:fe:41:81:1e:
6a:ef:43:eb:cf:8e:4f:a1:2d:48:19:cf:90:19:8f:
d5:b1:04:e7:d0:a8:ef:64:e1:15:61:dc:9b:48:0b:
e7:b7:a8:2e:e7:e6:51:7e:32:a2:0d:b6:89:49:95:
6f:cb:0b:e5:9a:84:bf:df:b2:ae:2a:a7:11:dc:a6:
54:28:2c:f4:29:89:4a:13:1b:29:08:da:d3:29:86:
af:f7:46:16:15:65:3a:80:af:25:7b:14:11:8a:ba:
23:2b:4e:ee:f4:35:d6:7c:b1:59:ed:81:69:a4:0c:
9a:29:29:5a:c9:c6:7d:3d:ec:07:58:f8:36:d5:8e:
c1:6d:73:df:94:3e:0e:70:d6:4d:d4:77:da:c1:4e:
e9:94:95:e6:10:6f:a2:bf:05:aa:8d:d6:7a:0b:05:
84:a7:b3:3d:01:d3:5e:31:20:43:79:6e:a1:5b:27:
3e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:07:26:DB:8F:5B:69:AC:4B:58:C0:3C:EE:EB:A4:A8:12:B2:CD:6B
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/wwcm249baaxLWMA87uukqBKyzWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.128.0/24
46.38.130.0/24
46.38.132.0-46.38.139.255
109.94.164.0/23
185.24.148.0/22
185.29.220.0/22
185.143.72.0/22
212.16.78.0-212.16.80.255
212.16.85.0/24
212.16.94.0/24
212.80.0.0/24
212.80.6.0/23
212.80.20.0/22
Signature Algorithm: sha256WithRSAEncryption
58:8d:63:96:3d:bc:29:ae:1a:4f:b6:3a:c6:36:55:b8:86:25:
1d:d0:2f:37:25:b8:c4:ea:14:c9:31:dc:b0:d9:44:e5:a1:8a:
19:90:29:27:4e:45:f2:9d:74:be:a0:89:04:4d:92:35:d9:cb:
84:76:0b:6a:65:c1:54:3e:7d:b3:84:7d:f2:04:cf:84:dc:a3:
20:31:f6:e2:79:20:c3:7e:85:61:d6:06:a6:bf:2b:fe:f6:d0:
12:76:a1:d1:c0:40:26:10:0f:6e:d7:4c:1b:40:bc:cf:d6:e3:
9f:8a:3f:ee:09:68:7c:f4:39:93:a2:63:5a:52:ae:a0:82:51:
88:92:15:59:2c:f4:7a:33:21:c8:ac:3b:9d:20:d8:c9:a8:5c:
ba:76:b5:2a:f7:f9:c5:b6:ec:4e:79:a4:6b:c4:28:f0:eb:f0:
34:45:81:33:25:36:76:94:a2:26:7a:07:08:65:35:bd:c9:9e:
57:64:60:c2:03:c0:00:b4:03:c4:07:c6:b6:72:44:ca:2e:f6:
72:6e:cc:71:aa:87:6d:2d:44:ce:25:0b:56:82:24:ce:c9:2d:
a5:b7:a6:2f:f6:18:ad:62:29:a9:58:52:e6:71:a9:c8:da:5f:
ac:49:d6:85:dc:a0:f6:d6:7b:cc:21:d5:34:6b:42:0d:78:a7:
69:67:75:8f
-----BEGIN CERTIFICATE-----
MIIFVTCCBD2gAwIBAgISAYyIFPFhqARdMTjO+1nDMcD7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3Mjk0NWY1NzEwMzE1M2EwNzg1NGU3NGUyMjdmMmFlYzFj
NWY0MzAwHhcNMjMxMjIwMTYzNTIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMzA3MjZkYjhmNWI2OWFjNGI1OGMwM2NlZWViYTRhODEyYjJjZDZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAssfGjzT2m3+8L6Wb6+kv34jkfwTZ
dmeUH7cUQ8bvusbmqWA5mygIBWg6u1kASMNGa3TxkqmGaJ8NUGtTFuEtg+zOvqvV
91ODgtG9JVoTULySe0QH9P5BgR5q70Prz45PoS1IGc+QGY/VsQTn0KjvZOEVYdyb
SAvnt6gu5+ZRfjKiDbaJSZVvywvlmoS/37KuKqcR3KZUKCz0KYlKExspCNrTKYav
90YWFWU6gK8lexQRirojK07u9DXWfLFZ7YFppAyaKSlaycZ9PewHWPg21Y7BbXPf
lD4OcNZN1HfawU7plJXmEG+ivwWqjdZ6CwWEp7M9AdNeMSBDeW6hWyc+xwIDAQAB
o4ICYTCCAl0wHQYDVR0OBBYEFMMHJtuPW2msS1jAPO7rpKgSss1rMB8GA1UdIwQY
MBaAFLcpRfVxAxU6B4VOdOIn8q7BxfQwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEt
MmEwOWNjNTNhODA1LzEvd3djbTI0OWJhYXhMV01BODd1dWtxQkt5eldzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEtMmEwOWNjNTNhODA1
LzEvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHcGCCsGAQUFBwEHAQH/BGgwZjBkBAIAATBeAwQALiaAAwQA
LiaCMAwDBAIuJoQDBAIuJogDBAFtXqQDBAK5GJQDBAK5HdwDBAK5j0gwDAMEAdQQ
TgMEANQQUAMEANQQVQMEANQQXgMEANRQAAMEAdRQBgMEAtRQFDANBgkqhkiG9w0B
AQsFAAOCAQEAWI1jlj28Ka4aT7Y6xjZVuIYlHdAvNyW4xOoUyTHcsNlE5aGKGZAp
J05F8p10vqCJBE2SNdnLhHYLamXBVD59s4R98gTPhNyjIDH24nkgw36FYdYGpr8r
/vbQEnah0cBAJhAPbtdMG0C8z9bjn4o/7glofPQ5k6JjWlKuoIJRiJIVWSz0ejMh
yKw7nSDYyahcuna1Kvf5xbbsTnmka8Qo8OvwNEWBMyU2dpSiJnoHCGU1vcmeV2Rg
wgPAALQDxAfGtnJEyi72cm7McaqHbS1EziULVoIkzsktpbemL/YYrWIpqVhS5nGp
yNpfrEnWhdyg9tZ7zCHVNGtCDXinaWd1jw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:07 2024 by rpki-client on console-ams.rpki-client.org